OSINT

CVE Alert: CVE-2025-22963

January 14, 2025

Vulnerability Summary: CVE-2025-22963 Teedy through 1.11 allows CSRF for account takeover via POST /api/user/admin. Affected Endpoints: POST /api/user/admin Published Date:...

CVE Alert: CVE-2024-48883

January 14, 2025

Vulnerability Summary: CVE-2024-48883 An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990,...

CVE Alert: CVE-2024-57488

January 14, 2025

Vulnerability Summary: CVE-2024-57488 Code-Projects Online Car Rental System 1.0 is vulnerable to Cross Site Scripting (XSS) via the vehicalorcview parameter...

CVE Alert: CVE-2024-12211

January 14, 2025

Vulnerability Summary: CVE-2024-12211 Pega Platform versions 8.1 to Infinity 24.2.0 are affected by an Stored XSS issue with profile. Affected...

CVE Alert: CVE-2024-46919

January 14, 2025

Vulnerability Summary: CVE-2024-46919 An issue was discovered in Samsung Mobile Processor Exynos 9820, 9825, 980, 990, 850, 1080, 2100, and...

CVE Alert: CVE-2024-57487

January 14, 2025

Vulnerability Summary: CVE-2024-57487 In Code-Projects Online Car Rental System 1.0, the file upload feature does not validate file extensions or...

CVE Alert: CVE-2024-6352

January 14, 2025

Vulnerability Summary: CVE-2024-6352 A malformed packet can cause a buffer overflow in the APS layer of the Ember ZNet stack...

[FUNKSEC] – Ransomware Victim: bluai[.]ai

January 14, 2025

Ransomware Group: FUNKSEC VICTIM NAME: bluaiai NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[QILIN] – Ransomware Victim: Clnica CES

January 14, 2025

Ransomware Group: QILIN VICTIM NAME: Clnica CES NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[QILIN] – Ransomware Victim: Thilges & Bernhardt, Attorneys at Law

January 14, 2025

Ransomware Group: QILIN VICTIM NAME: Thilges & Bernhardt, Attorneys at Law NOTE: No files or stolen information are by RedPacket...

[SPACEBEARS] – Ransomware Victim: Sharm Reef Hotel

January 14, 2025

Ransomware Group: SPACEBEARS VICTIM NAME: Sharm Reef Hotel NOTE: No files or stolen information are by RedPacket Security. Any legal...

CVE Alert: CVE-2024-46920

January 14, 2025

Vulnerability Summary: CVE-2024-46920 An issue was discovered in Samsung Mobile Processor Exynos 9820, 9825, 980, 990, 850, 1080, 2100, and...

CVE Alert: CVE-2024-46481

January 14, 2025

Vulnerability Summary: CVE-2024-46481 The login page of Venki Supravizio BPM up to 18.1.1 is vulnerable to open redirect leading to...

CVE Alert: CVE-2024-54999

January 14, 2025

Vulnerability Summary: CVE-2024-54999 MonicaHQ v4.1.2 was discovered to contain a Client-Side Injection vulnerability via the last_name parameter the General Information...

CVE Alert: CVE-2024-46479

January 14, 2025

Vulnerability Summary: CVE-2024-46479 Venki Supravizio BPM through 18.0.1 was discovered to contain an arbitrary file upload vulnerability. An authenticated attacker...

CVE Alert: CVE-2024-5743

January 14, 2025

Vulnerability Summary: CVE-2024-5743 An attacker could exploit the 'Use of Password Hash With Insufficient Computational Effort' vulnerability in EveHome Eve...

CVE Alert: CVE-2025-23026

January 14, 2025

Vulnerability Summary: CVE-2025-23026 jte (Java Template Engine) is a secure and lightweight template engine for Java and Kotlin. In affected...

CVE Alert: CVE-2024-51491

January 14, 2025

Vulnerability Summary: CVE-2024-51491 notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project...

CVE Alert: CVE-2024-46480

January 14, 2025

Vulnerability Summary: CVE-2024-46480 An NTLM hash leak in Venki Supravizio BPM up to 18.0.1 allows authenticated attackers with Application Administrator...

CVE Alert: CVE-2025-22134

January 14, 2025

Vulnerability Summary: CVE-2025-22134 When switching to other buffers using the :all command and visual mode still being active, this may...

CVE Alert: CVE-2024-56138

January 14, 2025

Vulnerability Summary: CVE-2024-56138 notion-go is a collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project...

[RANSOMHUB] – Ransomware Victim: Intelservice[.]com

January 14, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: Intelservicecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Stealer Logs, Jan 2025 – 71,039,833 breached accounts

January 14, 2025

HIBP In January 2025, stealer logs with 71M email addresses were added to HIBP. Consisting of email address, password and...

[INCRANSOM] – Ransomware Victim: Spectrum

January 14, 2025

Ransomware Group: INCRANSOM VICTIM NAME: Spectrum NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

OSINT

CVE Alert: CVE-2025-22963

CVE Alert: CVE-2024-48883

CVE Alert: CVE-2024-57488

CVE Alert: CVE-2024-12211

CVE Alert: CVE-2024-46919

CVE Alert: CVE-2024-57487

CVE Alert: CVE-2024-6352

[FUNKSEC] – Ransomware Victim: bluai[.]ai

[QILIN] – Ransomware Victim: Clnica CES

[QILIN] – Ransomware Victim: Thilges & Bernhardt, Attorneys at Law

[SPACEBEARS] – Ransomware Victim: Sharm Reef Hotel

CVE Alert: CVE-2024-46920

CVE Alert: CVE-2024-46481

CVE Alert: CVE-2024-54999

CVE Alert: CVE-2024-46479

CVE Alert: CVE-2024-5743

CVE Alert: CVE-2025-23026

CVE Alert: CVE-2024-51491

CVE Alert: CVE-2024-46480

CVE Alert: CVE-2025-22134

CVE Alert: CVE-2024-56138

[RANSOMHUB] – Ransomware Victim: Intelservice[.]com

Stealer Logs, Jan 2025 – 71,039,833 breached accounts

[INCRANSOM] – Ransomware Victim: Spectrum

[RANSOMHUB] – Ransomware Victim: www[.]nasonptc[.]com

[RUNSOMEWARES] – Ransomware Victim: Gilbert

[RUNSOMEWARES] – Ransomware Victim: F&V Capital Management, LLC (FVCM)

[RUNSOMEWARES] – Ransomware Victim: Donna G[.] Rogers, CPA, P[.]A[.]

[RANSOMHUB] – Ransomware Victim: teamwass[.]com

You may have missed