CISA: CISA and Partners Release Call to Action to Close the National Software Understanding Gap
CISA and Partners Release Call to Action to Close the National Software Understanding Gap Today, CISA—in partnership with the Defense Advanced...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA and FBI Release Updated Guidance on Product Security Bad Practices
CISA and FBI Release Updated Guidance on Product Security Bad Practices In partnership with the Federal Bureau of Investigation (FBI),...
CISA: CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook
CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook Today, CISA released the Microsoft Expanded Cloud Logs Implementation Playbook to help...
CISA: CISA Releases Twelve Industrial Control Systems Advisories
CISA Releases Twelve Industrial Control Systems Advisories CISA released twelve Industrial Control Systems (ICS) advisories on January 16, 2025. These...
CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on January 23, 2025. These...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on January 21, 2025. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications
CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications CISA, in partnership with...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
US-CERT Vulnerability Summary for the Week of January 20, 2025
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded in the past week. In some...
HackerOne Bug Bounty Disclosure: path-traversal-by-drive-name-in-windows-environment-taise
Company Name: Node.js Company HackerOne URL: https://hackerone.com/nodejs Submitted By:taiseLink to Submitters Profile:https://hackerone.com/taise Report Title:Path traversal by drive name in Windows...
[METAENCRYPTOR] – Ransomware Victim: Lee Hartman & Sons
Ransomware Group: METAENCRYPTOR VICTIM NAME: Lee Hartman & Sons NOTE: No files or stolen information are by RedPacket Security. Any...
[DRAGONFORCE] – Ransomware Victim: Mapping Solutions
Ransomware Group: DRAGONFORCE VICTIM NAME: Mapping Solutions NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[DRAGONFORCE] – Ransomware Victim: Aquasys
Ransomware Group: DRAGONFORCE VICTIM NAME: Aquasys NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[AKIRA] – Ransomware Victim: Grand Fire Protection
Ransomware Group: AKIRA VICTIM NAME: Grand Fire Protection NOTE: No files or stolen information are by RedPacket Security. Any legal...
[LYNX] – Ransomware Victim: Alo Center (hq[.]aloteknik[.]se)
Ransomware Group: LYNX VICTIM NAME: Alo Center (hqaloteknikse) NOTE: No files or stolen information are by RedPacket Security. Any legal...
[INCRANSOM] – Ransomware Victim: Prinston Pharmaceutical (huahaius[.]com)
Ransomware Group: INCRANSOM VICTIM NAME: Prinston Pharmaceutical (huahaiuscom) NOTE: No files or stolen information are by RedPacket Security. Any legal...
[AKIRA] – Ransomware Victim: Mark Resolve Inc
Ransomware Group: AKIRA VICTIM NAME: Mark Resolve Inc NOTE: No files or stolen information are by RedPacket Security. Any legal...
[INCRANSOM] – Ransomware Victim: lhps[.]org
Ransomware Group: INCRANSOM VICTIM NAME: lhpsorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: RDC Architects
Ransomware Group: QILIN VICTIM NAME: RDC Architects NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[FUNKSEC] – Ransomware Victim: qed[.]co[.]ug
Ransomware Group: FUNKSEC VICTIM NAME: qedcoug NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[FUNKSEC] – Ransomware Victim: treehotel[.]co[.]uk
Ransomware Group: FUNKSEC VICTIM NAME: treehotelcouk NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2022-49043
Vulnerability Summary: CVE-2022-49043 xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free. Affected Endpoints: No affected endpoints listed. Published...
