CISA: Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies
Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies CISA has observed cyber threat actors leveraging unencrypted...
OSINT
CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on October 17, 2024. These...
CISA: Oracle Releases Quarterly Critical Patch Update Advisory for October 2024
Oracle Releases Quarterly Critical Patch Update Advisory for October 2024 Oracle released its quarterly Critical Patch Update Advisory for October...
CISA: CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force
CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force Today,...
CISA: CISA and FBI Release Joint Guidance on Product Security Bad Practices for Public Comment
CISA and FBI Release Joint Guidance on Product Security Bad Practices for Public Comment Today, the Cybersecurity and Infrastructure Security...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CVE Alert: CVE-2024-4739
Vulnerability Summary: CVE-2024-4739 The lack of access restriction to a resource from unauthorized users makes MXsecurity software versions v1.1.0 and...
CVE Alert: CVE-2024-10079
Vulnerability Summary: CVE-2024-10079 The WP Easy Post Types plugin for WordPress is vulnerable to PHP Object Injection in versions up...
CVE Alert: CVE-2024-10078
Vulnerability Summary: CVE-2024-10078 The WP Easy Post Types plugin for WordPress is vulnerable to unauthorized access, modification, and loss of...
CVE Alert: CVE-2024-10080
Vulnerability Summary: CVE-2024-10080 The WP Easy Post Types plugin for WordPress is vulnerable to Stored Cross-Site Scripting via post meta...
CVE Alert: CVE-2024-10055
Vulnerability Summary: CVE-2024-10055 The Click to Chat – WP Support All-in-One Floating Widget plugin for WordPress is vulnerable to Stored...
CVE Alert: CVE-2024-10057
Vulnerability Summary: CVE-2024-10057 The RSS Feed Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's rfw-youtube-videos...
CVE Alert: CVE-2024-4740
Vulnerability Summary: CVE-2024-4740 MXsecurity software versions v1.1.0 and prior are vulnerable because of the use of hard-coded credentials. This vulnerability...
CVE Alert: CVE-2024-49225
Vulnerability Summary: CVE-2024-49225 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Swebdeveloper wpPricing Builder...
CVE Alert: CVE-2024-49231
Vulnerability Summary: CVE-2024-49231 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Peter CyClop WordPress...
CVE Alert: CVE-2024-49224
Vulnerability Summary: CVE-2024-49224 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mahesh Patel Mitm...
[HUNTERS] – Ransomware Victim: KMC Controls
Ransomware Group: HUNTERS VICTIM NAME: KMC Controls NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[HUNTERS] – Ransomware Victim: Michael J Gurfinkel
Ransomware Group: HUNTERS VICTIM NAME: Michael J Gurfinkel NOTE: No files or stolen information are by RedPacket Security. Any legal...
[CLOP] – Ransomware Victim: SPECTRUMCHEMICAL[.]COM
Ransomware Group: CLOP VICTIM NAME: SPECTRUMCHEMICALCOM NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: clinicia[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: cliniciacom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: starhealth[.]in
Ransomware Group: RANSOMHUB VICTIM NAME: starhealthin NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: paciente[.]sempremedico[.]com[.]br
Ransomware Group: RANSOMHUB VICTIM NAME: pacientesempremedicocombr NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[CICADA3301] – Ransomware Victim: T-Space
Ransomware Group: CICADA3301 VICTIM NAME: T-Space NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-49234
Vulnerability Summary: CVE-2024-49234 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in themeworm Plexx Elementor...