CVE Alert: CVE-2024-50592
Vulnerability Summary: CVE-2024-50592 An attacker with local access the to medical office computer can escalate his Windows user privileges to...
CVE Alert: CVE-2024-50378
Vulnerability Summary: CVE-2024-50378 Airflow versions before 2.10.3 have a vulnerability that allows authenticated users with audit log access to see...
CVE Alert: CVE-2024-45764
Vulnerability Summary: CVE-2024-45764 Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) a Missing Critical Step in Authentication vulnerability. An unauthenticated...
[LYNX] – Ransomware Victim: WimCoCorp
Ransomware Group: LYNX VICTIM NAME: WimCoCorp NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[LYNX] – Ransomware Victim: NEBRASKALAND
Ransomware Group: LYNX VICTIM NAME: NEBRASKALAND NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Palo Alto Advises Securing PAN-OS Interface Amid Potential RCE Threat Concerns
Palo Alto Networks on Friday issued an informational advisory urging customers to ensure that access to the PAN-OS management interface...
Bitcoin Fog Founder Sentenced to 12 Years for Cryptocurrency Money Laundering
The 36-year-old founder of the Bitcoin Fog cryptocurrency mixer has been sentenced to 12 years and six months in prison...
[SPACEBEARS] – Ransomware Victim: MENZIES CNAC (Jardine Aviation Services, Agility)
Ransomware Group: SPACEBEARS VICTIM NAME: MENZIES CNAC (Jardine Aviation Services, Agility) NOTE: No files or stolen information are by RedPacket...
CVE Alert: CVE-2024-47190
Vulnerability Summary: CVE-2024-47190 Northern.tech Hosted Mender before 2024.07.11 allows SSRF. Affected Endpoints: No affected endpoints listed. Published Date: 11/8/2024, 4:15:24...
CVE Alert: CVE-2024-50966
Vulnerability Summary: CVE-2024-50966 dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/doAdminAction.php?act=addAdmin. Affected...
CVE Alert: CVE-2024-51997
Vulnerability Summary: CVE-2024-51997 Trustee is a set of tools and components for attesting confidential guests and providing secrets to them....
CVE Alert: CVE-2024-21994
Vulnerability Summary: CVE-2024-21994 StorageGRID (formerly StorageGRID Webscale) versions prior to 11.9 are susceptible to a Denial of Service (DoS) vulnerability....
CVE Alert: CVE-2024-45763
Vulnerability Summary: CVE-2024-45763 Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an...
CVE Alert: CVE-2024-52007
Vulnerability Summary: CVE-2024-52007 HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. XSLT...
CVE Alert: CVE-2024-52000
Vulnerability Summary: CVE-2024-52000 Combodo iTop is a simple, web based IT Service Management tool. Affected versions are subject to a...
CVE Alert: CVE-2024-52002
Vulnerability Summary: CVE-2024-52002 Combodo iTop is a simple, web based IT Service Management tool. Several url endpoints are subject to...
CVE Alert: CVE-2024-11026
Vulnerability Summary: CVE-2024-11026 A vulnerability was found in Intelligent Apps Freenow App 12.10.0 on Android. It has been rated as...
CVE Alert: CVE-2024-52001
Vulnerability Summary: CVE-2024-52001 Combodo iTop is a simple, web based IT Service Management tool. In affected versions portal users are...
North Korean Actor Targets Crypto Firms with Novel Malware Campaign
A North Korean threat actor has launched a targeted malware campaign against crypto firms, utilizing a sophisticated multi-stage approach. SentinelLabs...
Ransomware Attack Disrupts Major Oilfield Supplier Operations
The recent ransomware attack on Newpark Resources has created significant disruptions in the operations of a vital supplier to the...
Pro-Russian Hacktivist Attacks on South Korea Intensify Amid North Korean Troop Deployment
Pro-Russian hacktivists are increasingly targeting South Korea following the involvement of North Korean troops in the Ukraine conflict, raising concerns...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: Avoid Scams After Disaster Strikes
Avoid Scams After Disaster Strikes As hurricanes and other natural disasters occur, CISA urges individuals to remain on alert for...
CISA: CISA and FBI Release Fact Sheet on Protecting Against Iranian Targeting of Accounts Associated with National Political Organizations
CISA and FBI Release Fact Sheet on Protecting Against Iranian Targeting of Accounts Associated with National Political Organizations Today, CISA...
