Ransomware Task Force priorities see progress in first year
This blog is part of our live coverage from RSA Conference 2022: US President Joseph R. Biden Jr., The White...
Black Basta Ransomware Victim: Ragle Incorporated
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
CISA: CISA Provides Criteria and Process for Updates to the KEV Catalog
CISA Provides Criteria and Process for Updates to the KEV Catalog CISA has updated the Known Exploited Vulnerabilities (KEV) catalog webpage...
HackerOne Bug Bounty Disclosure: private-objects-exposed-through-project-importbysaltyyolk
Programme HackerOne GitLab GitLab Submitted by saltyyolk saltyyolk Report Private objects exposed through project import Full Report
HackerOne Bug Bounty Disclosure: stored-cross-site-scripting-at-http://www-grouplogic-com/admin/store/index-cfm?fa=disprocodebyub3rsick
Programme HackerOne Acronis Acronis Submitted by ub3rsick ub3rsick Report Stored Cross Site Scripting at http://www.grouplogic.com/ADMIN/store/index.cfm?fa=disprocode Full Report
HackerOne Bug Bounty Disclosure: steal-private-objects-of-other-projects-via-project-importbysaltyyolk
Programme HackerOne GitLab GitLab Submitted by saltyyolk saltyyolk Report Steal private objects of other projects via project import Full Report
HackerOne Bug Bounty Disclosure: store-admin-page-accessible-without-authentication-at-http://www-grouplogic-com/admin/store/index-cfmbyub3rsick
Programme HackerOne Acronis Acronis Submitted by ub3rsick ub3rsick Report Store Admin Page Accessible Without Authentication at http://www.grouplogic.com/ADMIN/store/index.cfm Full Report
HackerOne Bug Bounty Disclosure: path-traversal-in-nuget-package-registrybysaltyyolk
Programme HackerOne GitLab GitLab Submitted by saltyyolk saltyyolk Report Path traversal in Nuget Package Registry Full Report
HackerOne Bug Bounty Disclosure: path-traversal,-to-rcebysaltyyolk
Programme HackerOne GitLab GitLab Submitted by saltyyolk saltyyolk Report Path traversal, to RCE Full Report
CISA: Owl Labs Releases Security Updates for Meeting Owl Pro and Whiteboard Owl
Owl Labs Releases Security Updates for Meeting Owl Pro and Whiteboard Owl Owl Labs has released security updates to address...
Hackers can take over accounts you haven’t even created yet
Account hijacking has sadly become a regular, everyday occurrence. But when it comes to hijacking accounts before they are even...
Evil Corp gang starts using LockBit Ransomware to evade sanctions
Mandiant researchers associate multiple LockBit ransomware attacks with the notorious Evil Corp Cybercrime Group. Mandiant researchers have investigated multiple LOCKBIT ransomware attacks...
Rotten apples banned from the App store
Apple’s App Review process may have received ill wishes from many benevolent developers, but Apple has now revealed how effective...
Sentinel-Attack – Tools To Rapidly Deploy A Threat Hunting Capability On Azure Sentinel That Leverages Sysmon And MITRE ATT&CK
Sentinel ATT&CK aims to simplify the rapid deployment of a threat hunting capability that leverages Sysmon and MITRE ATT&CK on...
Cobalt Stike Beacon Detected – 121[.]5[.]233[.]126:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 159[.]203[.]107[.]97:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]5[.]195[.]89:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 18[.]163[.]195[.]225:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 83[.]51[.]126[.]90:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]243[.]187[.]201:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Black Basta ransomware operators leverage QBot for lateral movements
The QBot malware operation has partnered with Black Basta ransomware group to target organizations worldwide. Researchers from NCC Group spotted...
GitLab Enterprise Edition cross-site scripting | CVE-2022-1940
NAME GitLab Enterprise Edition cross-site scripting Platforms Affected:GitLab Enterprise Edition 14.9.4 GitLab Enterprise Edition 14.10.3 GitLab Enterprise Edition 15.0 GitLab...
Owl Labs Meeting Owl security bypass | CVE-2022-31463
NAME Owl Labs Meeting Owl security bypass Platforms Affected:Owl Labs Meeting Owl 5.2.0.15Risk Level:8.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Owl Labs Meeting Owl...
RealNetworks RealPlayer and RealPlayer Cloud directory traversal | CVE-2022-32270
NAME RealNetworks RealPlayer and RealPlayer Cloud directory traversal Platforms Affected:Realnetworks RealPlayer 16.0.3.51 RealNetworks RealPlayer Cloud 17.0.9.17 RealNetworks RealPlayer Cloud 20.0.7.309...