THN Cybersecurity Recap: Top Threats, Tools and News (Oct 14 – Oct 20)
Hi there! Here's your quick update on the latest in cybersecurity. Hackers are using new tricks to break into systems...
OSINT
Chinese Nation-State Hackers APT41 Hit Gambling Sector for Financial Gain
The prolific Chinese nation-state actor known as APT41 (aka Brass Typhoon, Earth Baku, Wicked Panda, or Winnti) has been attributed...
CVE Alert: CVE-2024-49625
Vulnerability Summary: CVE-2024-49625 Deserialization of Untrusted Data vulnerability in Brandon Clark SiteBuilder Dynamic Components allows Object Injection.This issue affects SiteBuilder...
CVE Alert: CVE-2024-44061
Vulnerability Summary: CVE-2024-44061 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in WPFactory EU/UK VAT...
CVE Alert: CVE-2024-49621
Vulnerability Summary: CVE-2024-49621 Cross-Site Request Forgery (CSRF) vulnerability in Apa APA Register Newsletter Form allows SQL Injection.This issue affects APA...
CVE Alert: CVE-2024-49624
Vulnerability Summary: CVE-2024-49624 Deserialization of Untrusted Data vulnerability in Smartdevth Advanced Advertising System allows Object Injection.This issue affects Advanced Advertising...
CVE Alert: CVE-2024-49610
Vulnerability Summary: CVE-2024-49610 Unrestricted Upload of File with Dangerous Type vulnerability in Jack Zhu allows Upload a Web Shell to...
CVE Alert: CVE-2024-49605
Vulnerability Summary: CVE-2024-49605 Cross-Site Request Forgery (CSRF) vulnerability in Avchat.Net AVChat Video Chat allows Stored XSS.This issue affects AVChat Video...
CVE Alert: CVE-2024-47325
Vulnerability Summary: CVE-2024-47325 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeisle Multiple Page...
CVE Alert: CVE-2024-49335
Vulnerability Summary: CVE-2024-49335 Cross-Site Request Forgery (CSRF) vulnerability in Edush Maxim GoogleDrive folder list allows Stored XSS.This issue affects GoogleDrive...
CVE Alert: CVE-2024-49609
Vulnerability Summary: CVE-2024-49609 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Brandon White Author...
CVE Alert: CVE-2024-49616
Vulnerability Summary: CVE-2024-49616 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Nyasro Rate Own...
[FOG] – Ransomware Victim: Trimarc Financial (trimarc[.]com)
Ransomware Group: FOG VICTIM NAME: Trimarc Financial (trimarccom) NOTE: No files or stolen information are by RedPacket Security. Any legal...
Cobalt Strike Beacon Detected – 116[.]205[.]99[.]202:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 111[.]92[.]242[.]44:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 101[.]34[.]53[.]44:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 111[.]229[.]209[.]159:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[MEOW] – Ransomware Victim: Sanglier Limited
Ransomware Group: MEOW VICTIM NAME: Sanglier Limited NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[MEOW] – Ransomware Victim: Arango Billboard
Ransomware Group: MEOW VICTIM NAME: Arango Billboard NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2024-49614
Vulnerability Summary: CVE-2024-49614 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Dan Alexander SermonAudio...
CVE Alert: CVE-2024-49629
Vulnerability Summary: CVE-2024-49629 Cross-Site Request Forgery (CSRF) vulnerability in Fahad Mahmood Endless Posts Navigation allows Stored XSS.This issue affects Endless...
CVE Alert: CVE-2024-49615
Vulnerability Summary: CVE-2024-49615 Cross-Site Request Forgery (CSRF) vulnerability in Henrique Rodrigues SafetyForms allows Blind SQL Injection.This issue affects SafetyForms: from...
CVE Alert: CVE-2024-49613
Vulnerability Summary: CVE-2024-49613 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Lodel Geraldo Simple...
CVE Alert: CVE-2024-49612
Vulnerability Summary: CVE-2024-49612 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Infotuts SW Contact...
