OSINT

CISA: Palo Alto Networks Emphasizes Hardening Guidance

November 30, 2024

Palo Alto Networks Emphasizes Hardening Guidance Updated November 15, 2024 Palo Alto Networks (PAN) has updated their informational bulletin, noting...

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

November 30, 2024

CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Releases Nineteen Industrial Control Systems Advisories

November 30, 2024

CISA Releases Nineteen Industrial Control Systems Advisories CISA released nineteen Industrial Control Systems (ICS) advisories on November 14, 2024. These...

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

November 30, 2024

CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: Apple Releases Security Updates for Multiple Products

November 30, 2024

Apple Releases Security Updates for Multiple Products Apple released security updates to address vulnerabilities in multiple Apple products. A cyber...

CISA: CISA and Partners Release Update to BianLian Ransomware Cybersecurity Advisory

November 30, 2024

CISA and Partners Release Update to BianLian Ransomware Cybersecurity Advisory Today, CISA, the Federal Bureau of Investigation (FBI), and the...

CISA: 2024 CWE Top 25 Most Dangerous Software Weaknesses

November 30, 2024

2024 CWE Top 25 Most Dangerous Software Weaknesses The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the Homeland...

CISA: USDA Releases Success Story Detailing the Implementation of Phishing-Resistant Multi-Factor Authentication

November 30, 2024

USDA Releases Success Story Detailing the Implementation of Phishing-Resistant Multi-Factor Authentication Today, the Cybersecurity and Infrastructure Security Agency (CISA) and...

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

November 30, 2024

CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector Organization

November 30, 2024

CISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector Organization Today, CISA released Enhancing Cyber Resilience:...

CISA: CISA Releases Six Industrial Control Systems Advisories

November 30, 2024

CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on November 26, 2024. These...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

November 30, 2024

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

November 30, 2024

CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Releases Seven Industrial Control Systems Advisories

November 30, 2024

CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on November 21, 2024. These...

CVE Alert: CVE-2024-49503

November 29, 2024

Vulnerability Summary: CVE-2024-49503 A Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SUSE manager...

CVE Alert: CVE-2024-52474

November 29, 2024

Vulnerability Summary: CVE-2024-52474 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LLC «TriIncom» Express...

CVE Alert: CVE-2024-11402

November 29, 2024

Vulnerability Summary: CVE-2024-11402 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP-speedup Block Editor Bootstrap Blocks...

CVE Alert: CVE-2024-52283

November 29, 2024

Vulnerability Summary: CVE-2024-52283 Missing sanitation of inputs allowed arbitrary users to conduct a stored XSS attack that triggers for users...

CVE Alert: CVE-2024-11620

November 29, 2024

Vulnerability Summary: CVE-2024-11620 Improper Control of Generation of Code ('Code Injection') vulnerability in Rank Math SEO allows Code Injection.This issue...

CVE Alert: CVE-2024-52496

November 29, 2024

Vulnerability Summary: CVE-2024-52496 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AbsolutePlugins...

CVE Alert: CVE-2024-52481

November 29, 2024

Vulnerability Summary: CVE-2024-52481 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Astoundify Jobify - Job...

CVE Alert: CVE-2024-52490

November 29, 2024

Vulnerability Summary: CVE-2024-52490 Unrestricted Upload of File with Dangerous Type vulnerability in Pathomation allows Upload a Web Shell to a...

CVE Alert: CVE-2024-52495

November 29, 2024

Vulnerability Summary: CVE-2024-52495 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eniture Technology Distance...

CVE Alert: CVE-2024-52475

November 29, 2024

Vulnerability Summary: CVE-2024-52475 Authentication Bypass Using an Alternate Path or Channel vulnerability in Automation Web Platform Wawp allows Authentication Bypass.This...

OSINT

CISA: Palo Alto Networks Emphasizes Hardening Guidance

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA: CISA Releases Nineteen Industrial Control Systems Advisories

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA: Apple Releases Security Updates for Multiple Products

CISA: CISA and Partners Release Update to BianLian Ransomware Cybersecurity Advisory

CISA: 2024 CWE Top 25 Most Dangerous Software Weaknesses

CISA: USDA Releases Success Story Detailing the Implementation of Phishing-Resistant Multi-Factor Authentication

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA: CISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector Organization

CISA: CISA Releases Six Industrial Control Systems Advisories

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA: CISA Releases Seven Industrial Control Systems Advisories

CVE Alert: CVE-2024-49503

CVE Alert: CVE-2024-52474

CVE Alert: CVE-2024-11402

CVE Alert: CVE-2024-52283

CVE Alert: CVE-2024-11620

CVE Alert: CVE-2024-52496

CVE Alert: CVE-2024-52481

CVE Alert: CVE-2024-52490

CVE Alert: CVE-2024-52495

CVE Alert: CVE-2024-52475

[QILIN] – Ransomware Victim: WELKER | World-Class Manufacturing

CVE Alert: CVE-2024-12696

CVE Alert: CVE-2024-13519

CVE Alert: CVE-2025-0515

CVE Alert: CVE-2025-0369

You may have missed