[RHYSIDA] – Ransomware Victim: Fylde Coast Academy Trust
Ransomware Group: RHYSIDA VICTIM NAME: Fylde Coast Academy Trust NOTE: No files or stolen information are by RedPacket Security. Any...
[RANSOMHUB] – Ransomware Victim: sundt[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: sundtcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Leveraging Wazuh for Zero Trust security
Zero Trust security changes how organizations handle security by doing away with implicit trust while continuously analyzing and validating access...
Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices
Taiwanese network-attached storage (NAS) appliance maker Synology has addressed a critical security flaw impacting DiskStation and BeePhotos that could lead...
CVE Alert: CVE-2024-45885
Vulnerability Summary: CVE-2024-45885 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in...
CVE Alert: CVE-2024-51681
Vulnerability Summary: CVE-2024-51681 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CodeRevolution WP Pocket...
CVE Alert: CVE-2024-45887
Vulnerability Summary: CVE-2024-45887 DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in...
CVE Alert: CVE-2024-45888
Vulnerability Summary: CVE-2024-45888 DrayTek Vigor3900 1.5.1.3 contains a command injection vulnerability. This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi`...
CVE Alert: CVE-2024-51682
Vulnerability Summary: CVE-2024-51682 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HasThemes HT Builder...
CVE Alert: CVE-2024-51685
Vulnerability Summary: CVE-2024-51685 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Michael Gangolf Accordion...
CVE Alert: CVE-2024-51678
Vulnerability Summary: CVE-2024-51678 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Marcel Pol Elo...
CVE Alert: CVE-2024-51680
Vulnerability Summary: CVE-2024-51680 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CrestaProject – Rizzo...
CVE Alert: CVE-2024-51683
Vulnerability Summary: CVE-2024-51683 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Michael Gangolf Custom...
CVE Alert: CVE-2024-10765
Vulnerability Summary: CVE-2024-10765 A vulnerability classified as critical was found in Codezips Online Institute Management System up to 1.0. This...
[EMBARGO] – Ransomware Victim: Memorial Hospital & Manor
Ransomware Group: EMBARGO VICTIM NAME: Memorial Hospital & Manor NOTE: No files or stolen information are by RedPacket Security. Any...
[MEDUSA] – Ransomware Victim: McMillan Electric Company
Ransomware Group: MEDUSA VICTIM NAME: McMillan Electric Company NOTE: No files or stolen information are by RedPacket Security. Any legal...
Malware Campaign Uses Ethereum Smart Contracts to Control npm Typosquat Packages
An ongoing campaign is targeting npm developers with hundreds of typosquat versions of their legitimate counterparts in an attempt to...
Canadian Suspect Arrested Over Snowflake Data Breach and Extortion Attacks
Canadian law enforcement authorities have arrested an individual who is suspected to have conducted a series of hacks stemming from...
CVE Alert: CVE-2024-10768
Vulnerability Summary: CVE-2024-10768 A vulnerability classified as problematic was found in PHPGurukul Online Shopping Portal 2.0. This vulnerability affects unknown...
CVE Alert: CVE-2024-10764
Vulnerability Summary: CVE-2024-10764 A vulnerability classified as critical has been found in Codezips Online Institute Management System 1.0. This affects...
CVE Alert: CVE-2024-10766
Vulnerability Summary: CVE-2024-10766 A vulnerability, which was classified as critical, has been found in Codezips Free Exam Hall Seating Management...
CVE Alert: CVE-2024-51328
Vulnerability Summary: CVE-2024-51328 Cross Site Scripting vulnerability in addcategory.php in projectworld's Travel Management System v1.0 allows remote attacker to inject...
CVE Alert: CVE-2024-48336
Vulnerability Summary: CVE-2024-48336 The install() function of ProviderInstaller.java in Magisk App before canary version 27007 does not verify the GMS...
CVE Alert: CVE-2024-45086
Vulnerability Summary: CVE-2024-45086 IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML external entity injection (XXE) attack...
