[LYNX] – Ransomware Victim: plowmancraven[.]co[.]uk
Ransomware Group: LYNX VICTIM NAME: plowmancravencouk NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Cobalt Strike Beacon Detected – 91[.]240[.]202[.]191:444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 193[.]112[.]112[.]137:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 42[.]193[.]19[.]184:8880
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 65[.]108[.]27[.]189:9089
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 1[.]117[.]79[.]251:1234
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 45[.]144[.]136[.]86:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 34[.]41[.]14[.]254:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 34[.]232[.]187[.]165:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]242[.]50[.]82:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 119[.]3[.]218[.]60:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 49[.]232[.]90[.]121:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 34[.]55[.]187[.]149:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[INTERLOCK] – Ransomware Victim: Winnebago Public School Foundation
Ransomware Group: INTERLOCK VICTIM NAME: Winnebago Public School Foundation NOTE: No files or stolen information are by RedPacket Security. Any...
5 Most Common Malware Techniques in 2024
Tactics, techniques, and procedures (TTPs) form the foundation of modern defense strategies. Unlike indicators of compromise (IOCs), TTPs are more...
A Hacker’s Guide to Password Cracking
Defending your organization's security is like fortifying a castle—you need to understand where attackers will strike and how they'll try...
SteelFox and Rhadamanthys Malware Use Copyright Scams, Driver Exploits to Target Victims
An ongoing phishing campaign is employing copyright infringement-related themes to trick victims into downloading a newer version of the Rhadamanthys...
China-Aligned MirrorFace Hackers Target EU Diplomats with World Expo 2025 Bait
The China-aligned threat actor known as MirrorFace has been observed targeting a diplomatic organization in the European Union, marking the...
Malicious PyPI Package ‘Fabrice’ Found Stealing AWS Keys from Thousands of Developers
Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) that has racked up thousands of downloads...
CVE Alert: CVE-2024-20531
Vulnerability Summary: CVE-2024-20531 A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read arbitrary...
CVE Alert: CVE-2024-20538
Vulnerability Summary: CVE-2024-20538 A vulnerability in the web-based management interface of Cisco ISE could allow an unauthenticated, remote attacker to...
CVE Alert: CVE-2024-20540
Vulnerability Summary: CVE-2024-20540 A vulnerability in the web-based management interface of Cisco Unified Contact Center Management Portal (Unified CCMP) could...
CVE Alert: CVE-2024-20537
Vulnerability Summary: CVE-2024-20537 A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to...
CVE Alert: CVE-2024-20539
Vulnerability Summary: CVE-2024-20539 A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to...
