OSINT

CVE Alert: CVE-2025-21399

January 18, 2025

Vulnerability Summary: CVE-2025-21399 Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability Affected Endpoints: No affected endpoints listed. Published Date: 1/17/2025,...

CVE Alert: CVE-2025-21185

January 18, 2025

Vulnerability Summary: CVE-2025-21185 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability Affected Endpoints: No affected endpoints listed. Published Date: 1/17/2025, 8:15:30...

CVE Alert: CVE-2023-50738

January 18, 2025

Vulnerability Summary: CVE-2023-50738 A new feature to prevent Firmware downgrades was recently added to some Lexmark products. A method to...

CVE Alert: CVE-2024-57252

January 18, 2025

Vulnerability Summary: CVE-2024-57252 OtCMS

CVE Alert: CVE-2025-23208

January 18, 2025

Vulnerability Summary: CVE-2025-23208 zot is a production-ready vendor-neutral OCI image registry. The group data stored for users in the boltdb...

CVE Alert: CVE-2025-0541

January 18, 2025

Vulnerability Summary: CVE-2025-0541 A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical. This issue affects...

CVE Alert: CVE-2025-23039

January 18, 2025

Vulnerability Summary: CVE-2025-23039 Caido is a web security auditing toolkit. A Cross-Site Scripting (XSS) vulnerability was identified in Caido v0.45.0...

CVE Alert: CVE-2025-23207

January 18, 2025

Vulnerability Summary: CVE-2025-23207 KaTeX is a fast, easy-to-use JavaScript library for TeX math rendering on the web. KaTeX users who...

CVE Alert: CVE-2025-0540

January 18, 2025

Vulnerability Summary: CVE-2025-0540 A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. This vulnerability...

[LYNX] – Ransomware Victim: Kassin & Carrow

January 18, 2025

Ransomware Group: LYNX VICTIM NAME: Kassin & Carrow NOTE: No files or stolen information are by RedPacket Security. Any legal...

[SAFEPAY] – Ransomware Victim: gonzalesusd[.]net

January 18, 2025

Ransomware Group: SAFEPAY VICTIM NAME: gonzalesusdnet NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CISA: CISA Issues BOD 25-01, Implementing Secure Practices for Cloud Services

January 18, 2025

CISA Issues BOD 25-01, Implementing Secure Practices for Cloud Services Today, CISA issued Binding Operational Directive (BOD) 25-01, Implementing Secure...

CISA: CISA Releases Five Industrial Control Systems Advisories

January 18, 2025

CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on December 17, 2024. These...

CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog

January 18, 2025

CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA and ONCD Release Playbook for Strengthening Cybersecurity in Federal Grant Programs for Critical Infrastructure

January 18, 2025

CISA and ONCD Release Playbook for Strengthening Cybersecurity in Federal Grant Programs for Critical Infrastructure Today, CISA and the Office...

OSINT

CVE Alert: CVE-2025-21399

CVE Alert: CVE-2025-21185

CVE Alert: CVE-2023-50738

CVE Alert: CVE-2024-57252

CVE Alert: CVE-2025-23208

CVE Alert: CVE-2025-0541

CVE Alert: CVE-2025-23039

CVE Alert: CVE-2025-23207

CVE Alert: CVE-2025-0540

[LYNX] – Ransomware Victim: Kassin & Carrow

[SAFEPAY] – Ransomware Victim: gonzalesusd[.]net

CISA: CISA Issues BOD 25-01, Implementing Secure Practices for Cloud Services

CISA: CISA Releases Five Industrial Control Systems Advisories

CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA: CISA and ONCD Release Playbook for Strengthening Cybersecurity in Federal Grant Programs for Critical Infrastructure

CISA: CISA Releases Best Practice Guidance for Mobile Communications

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Releases Eight Industrial Control Systems Advisories

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: Fortinet Releases Security Updates for FortiManager

CISA: CISA Releases the Cybersecurity Performance Goals Adoption Report

CISA: CISA Adds One Vulnerability to the KEV Catalog

CISA: CISA Releases Two Industrial Control Systems Advisories

CVE Alert: CVE-2025-21627

CVE Alert: CVE-2024-11955

CVE Alert: CVE-2025-21626

CVE Alert: CVE-2025-26597

CVE Alert: CVE-2025-26598

You may have missed