Cobalt Strike Beacon Detected – 47[.]115[.]74[.]19:8089
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
[RANSOMHUB] – Ransomware Victim: enterpriseoutsourcing[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: enterpriseoutsourcingcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[ORCA] – Ransomware Victim: Transtec SAS
Ransomware Group: ORCA VICTIM NAME: Transtec SAS NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[QILIN] – Ransomware Victim: DPC DATA
Ransomware Group: QILIN VICTIM NAME: DPC DATA NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2024-0123
Vulnerability Summary: CVE-2024-0123 NVIDIA CUDA toolkit for Windows and Linux contains a vulnerability in the nvdisasm command line tool where...
CVE Alert: CVE-2024-8508
Vulnerability Summary: CVE-2024-8508 NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very...
CVE Alert: CVE-2024-0124
Vulnerability Summary: CVE-2024-0124 NVIDIA CUDA Toolkit for Windows and Linux contains a vulnerability in the nvdisam command line tool, where...
CVE Alert: CVE-2024-0125
Vulnerability Summary: CVE-2024-0125 NVIDIA CUDA Toolkit for Windows and Linux contains a vulnerability in the nvdisam command line tool, where...
CVE Alert: CVE-2024-45871
Vulnerability Summary: CVE-2024-45871 Bandisoft BandiView 7.05 is Incorrect Access Control via sub_0x232bd8 resulting in denial of service (DOS). Affected Endpoints:...
CVE Alert: CVE-2024-7826
Vulnerability Summary: CVE-2024-7826 Improper Check for Unusual or Exceptional Conditions vulnerability in Webroot SecureAnywhere - Web Shield on Windows, ARM,...
CVE Alert: CVE-2024-47762
Vulnerability Summary: CVE-2024-47762 Backstage is an open framework for building developer portals. Configuration supplied through APP_CONFIG_* environment variables, for example...
CVE Alert: CVE-2024-41595
Vulnerability Summary: CVE-2024-41595 DrayTek Vigor310 devices through 4.3.2.6 allow a remote attacker to change settings or cause a denial of...
CVE Alert: CVE-2024-7825
Vulnerability Summary: CVE-2024-7825 Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Webroot SecureAnywhere - Web Shield on Windows,...
CVE Alert: CVE-2024-41596
Vulnerability Summary: CVE-2024-41596 Buffer Overflow vulnerabilities exist in DrayTek Vigor310 devices through 4.3.2.6 (in the Vigor management UI) because of...
[DRAGONFORCE] – Ransomware Victim: Lyomark Pharma
Ransomware Group: DRAGONFORCE VICTIM NAME: Lyomark Pharma NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[CICADA3301] – Ransomware Victim: Conductive Containers, Inc
Ransomware Group: CICADA3301 VICTIM NAME: Conductive Containers, Inc NOTE: No files or stolen information are by RedPacket Security. Any legal...
CVE Alert: CVE-2024-41586
Vulnerability Summary: CVE-2024-41586 A stack-based Buffer Overflow vulnerability in DrayTek Vigor310 devices through 4.3.2.6 allows a remote attacker to execute...
CVE Alert: CVE-2024-41583
Vulnerability Summary: CVE-2024-41583 DrayTek Vigor3910 devices through 4.3.2.6 are vulnerable to stored Cross Site Scripting (XSS) by authenticated users due...
CVE Alert: CVE-2024-41589
Vulnerability Summary: CVE-2024-41589 DrayTek Vigor310 devices through 4.3.2.6 use unencrypted HTTP for authentication requests. Affected Endpoints: No affected endpoints listed....
CVE Alert: CVE-2024-41592
Vulnerability Summary: CVE-2024-41592 DrayTek Vigor3910 devices through 4.3.2.6 have a stack-based overflow when processing query string parameters because GetCGI mishandles...
CVE Alert: CVE-2024-41584
Vulnerability Summary: CVE-2024-41584 DrayTek Vigor3910 devices through 4.3.2.6 are vulnerable to reflected XSS by authenticated users, caused by missing validation...
CVE Alert: CVE-2024-9266
Vulnerability Summary: CVE-2024-9266 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Express. This vulnerability affects the use of the...
CVE Alert: CVE-2024-41925
Vulnerability Summary: CVE-2024-41925 The web service for ONS-S8 - Spectra Aggregation Switch includes functions which do not properly validate user...
CVE Alert: CVE-2024-45367
Vulnerability Summary: CVE-2024-45367 The web server for ONS-S8 - Spectra Aggregation Switch includes an incomplete authentication process, which can lead...
