CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on October 17, 2024. These...
CISA: CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force
CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force Today,...
CISA: Oracle Releases Quarterly Critical Patch Update Advisory for October 2024
Oracle Releases Quarterly Critical Patch Update Advisory for October 2024 Oracle released its quarterly Critical Patch Update Advisory for October...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
[CICADA3301] – Ransomware Victim: INDIBA Group
Ransomware Group: CICADA3301 VICTIM NAME: INDIBA Group NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2024-49295
Vulnerability Summary: CVE-2024-49295 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PressTigers Simple Testimonials...
CVE Alert: CVE-2024-49292
Vulnerability Summary: CVE-2024-49292 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Exclusive Addons Exclusive...
CVE Alert: CVE-2024-49289
Vulnerability Summary: CVE-2024-49289 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Gora Tech LLC...
CVE Alert: CVE-2024-49301
Vulnerability Summary: CVE-2024-49301 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Sinan Yorulmaz G...
CVE Alert: CVE-2024-49302
Vulnerability Summary: CVE-2024-49302 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Portfoliohub WordPress Portfolio...
CVE Alert: CVE-2024-49311
Vulnerability Summary: CVE-2024-49311 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WisdmLabs Edwiser Bridge...
CVE Alert: CVE-2024-49296
Vulnerability Summary: CVE-2024-49296 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Coder426 Custom Add...
CVE Alert: CVE-2024-49298
Vulnerability Summary: CVE-2024-49298 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Pepro Dev. Group...
CVE Alert: CVE-2024-49309
Vulnerability Summary: CVE-2024-49309 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Digitally allows Reflected...
CVE Alert: CVE-2024-49310
Vulnerability Summary: CVE-2024-49310 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themesflat Themesflat Addons...
[BLACKSUIT] – Ransomware Victim: Neighbors Credit Union
Ransomware Group: BLACKSUIT VICTIM NAME: Neighbors Credit Union NOTE: No files or stolen information are by RedPacket Security. Any legal...
[FOG] – Ransomware Victim: Fromm (FrommBeauty[.]com)
Ransomware Group: FOG VICTIM NAME: Fromm (FrommBeautycom) NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
HackerOne Bug Bounty Disclosure: race-condition-leads-to-add-more-than-email-at-data-breaches-monitor-system-at-hxxps-stage-firefoxmonitor-nonprod-cloudops-mozgcp-net-sushantd
Company Name: Mozilla Company HackerOne URL: https://hackerone.com/mozilla Submitted By:sushantd19Link to Submitters Profile:https://hackerone.com/sushantd19 Report Title:Race condition leads to add more than...
HackerOne Bug Bounty Disclosure: paypal-cleient-id-and-stripe-api-key-indexed-on-web-arcive-ghaazy
Company Name: Mozilla Company HackerOne URL: https://hackerone.com/mozilla Submitted By:ghaazyLink to Submitters Profile:https://hackerone.com/ghaazy Report Title:paypal cleient_id And stripe api key indexed...
HackerOne Bug Bounty Disclosure: unauthenticated-wordpress-database-repair-dos-wshadow
Company Name: WordPress Company HackerOne URL: https://hackerone.com/wordpress Submitted By:wshadowLink to Submitters Profile:https://hackerone.com/wshadow Report Title:Unauthenticated WordPress Database Repair DoSReport Link:https://hackerone.com/reports/2786591Date Submitted:18...
HackerOne Bug Bounty Disclosure: two-aws-access-key-and-secret-key-and-database-username-and-password-exposed-ghaazy
Company Name: Mozilla Company HackerOne URL: https://hackerone.com/mozilla Submitted By:ghaazyLink to Submitters Profile:https://hackerone.com/ghaazy Report Title:two aws access key and secret key...
HackerOne Bug Bounty Disclosure: sentry-auth-token-exposed-publicly-in-docker-hub-image-ghaazy
Company Name: Mozilla Company HackerOne URL: https://hackerone.com/mozilla Submitted By:ghaazyLink to Submitters Profile:https://hackerone.com/ghaazy Report Title:sentry Auth Token exposed publicly in docker...
[FOG] – Ransomware Victim: Ultra Tune (ultratune[.]com[.]au)
Ransomware Group: FOG VICTIM NAME: Ultra Tune (ultratunecomau) NOTE: No files or stolen information are by RedPacket Security. Any legal...
North Korean IT Workers in Western Firms Now Demanding Ransom for Stolen Data
North Korean information technology (IT) workers who obtain employment under false identities in Western companies are not only stealing intellectual...
