Cobalt Strike Beacon Detected – 43[.]143[.]167[.]169:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Strike Beacon Detected – 103[.]27[.]132[.]240:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 89[.]116[.]48[.]86:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 39[.]100[.]93[.]1:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 185[.]198[.]234[.]147:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 193[.]134[.]211[.]189:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining
The infamous cryptojacking group known as TeamTNT appears to be readying for a new large-scale campaign targeting cloud-native environments for...
Four REvil Ransomware Members Sentenced in Rare Russian Cybercrime Convictions
Four members of the now-defunct REvil ransomware operation have been sentenced to several years in prison in Russia, marking one...
CVE Alert: CVE-2024-10374
Vulnerability Summary: CVE-2024-10374 The WP-Members Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpmem_loginout...
CVE Alert: CVE-2024-10380
Vulnerability Summary: CVE-2024-10380 A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0....
CVE Alert: CVE-2024-49753
Vulnerability Summary: CVE-2024-49753 Zitadel is open-source identity infrastructure software. Versions prior to 2.64.1, 2.63.6, 2.62.8, 2.61.4, 2.60.4, 2.59.5, and 2.58.7...
CVE Alert: CVE-2024-49378
Vulnerability Summary: CVE-2024-49378 smartUp, a web browser mouse gestures extension, has a universal cross-site scripting issue in the Edge and...
CVE Alert: CVE-2024-10378
Vulnerability Summary: CVE-2024-10378 A vulnerability classified as critical has been found in ESAFENET CDG 5. Affected is the function actionViewCDGRenewFile...
CVE Alert: CVE-2024-48579
Vulnerability Summary: CVE-2024-48579 SQL Injection vulnerability in Best House rental management system project in php v.1.0 allows a remote attacker...
CVE Alert: CVE-2024-48580
Vulnerability Summary: CVE-2024-48580 SQL Injection vulnerability in Best courier management system in php v.1.0 allows a remote attacker to execute...
CVE Alert: CVE-2024-49757
Vulnerability Summary: CVE-2024-49757 The open-source identity infrastructure software Zitadel allows administrators to disable the user self-registration. Due to a missing...
CVE Alert: CVE-2024-48204
Vulnerability Summary: CVE-2024-48204 SQL injection vulnerability in Hanzhou Haobo network management system 1.0 allows a remote attacker to execute arbitrary...
CVE Alert: CVE-2022-30355
Vulnerability Summary: CVE-2022-30355 OvalEdge 5.2.8.0 and earlier is affected by an Account Takeover vulnerability via a POST request to /profile/updateProfile...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
SEC Charges 4 Companies Over Misleading SolarWinds Cyber Attack Disclosures
The U.S. Securities and Exchange Commission (SEC) has charged four current and former public companies for making "materially misleading disclosures"...
CERT-UA Identifies Malicious RDP Files in Latest Attack on Ukrainian Entities
The Computer Emergency Response Team of Ukraine (CERT-UA) has detailed a new malicious email campaign targeting government agencies, enterprises, and...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2022-30357
Vulnerability Summary: CVE-2022-30357 OvalEdge 5.2.8.0 and earlier is affected by an Account Takeover vulnerability via a POST request to /profile/updateProfile...