OSINT

CISA: CISA Releases Best Practice Guidance for Mobile Communications

January 8, 2025

CISA Releases Best Practice Guidance for Mobile Communications Today, CISA released Mobile Communications Best Practice Guidance. The guidance was crafted...

CISA: CISA Releases Five Industrial Control Systems Advisories

January 8, 2025

CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on December 17, 2024. These...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

January 8, 2025

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

January 8, 2025

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

January 8, 2025

CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Releases Two Industrial Control Systems Advisories

January 8, 2025

CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on January 7, 2025. These...

CISA: Fortinet Releases Security Updates for FortiManager

January 8, 2025

Fortinet Releases Security Updates for FortiManager Fortinet released a security update to address a vulnerability in FortiManager. A remote cyber...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

January 8, 2025

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CovenantC2 Detected – 173[.]199[.]70[.]18:7443

January 8, 2025

The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...

[LYNX] – Ransomware Victim: jimthompson[.]com

January 7, 2025

Ransomware Group: LYNX VICTIM NAME: jimthompsoncom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[FUNKSEC] – Ransomware Victim: ndceg[.]com

January 7, 2025

Ransomware Group: FUNKSEC VICTIM NAME: ndcegcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[LYNX] – Ransomware Victim: astaphans[.]com

January 7, 2025

Ransomware Group: LYNX VICTIM NAME: astaphanscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[FOG] – Ransomware Victim: Saint-Bar (saintbar[.]be)

January 7, 2025

Ransomware Group: FOG VICTIM NAME: Saint-Bar (saintbarbe) NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

CVE Alert: CVE-2024-43064

January 7, 2025

Vulnerability Summary: CVE-2024-43064 Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global...

CVE Alert: CVE-2024-45541

January 7, 2025

Vulnerability Summary: CVE-2024-45541 Memory corruption when IOCTL call is invoked from user-space to read board data. Affected Endpoints: No affected...

CVE Alert: CVE-2024-45546

January 7, 2025

Vulnerability Summary: CVE-2024-45546 Memory corruption while processing FIPS encryption or decryption IOCTL call invoked from user-space. Affected Endpoints: No affected...

CVE Alert: CVE-2024-45559

January 7, 2025

Vulnerability Summary: CVE-2024-45559 Transient DOS can occur when GVM sends a specific message type to the Vdev-FastRPC backend. Affected Endpoints:...

CVE Alert: CVE-2024-45542

January 7, 2025

Vulnerability Summary: CVE-2024-45542 Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver. Affected...

CVE Alert: CVE-2024-12970

January 7, 2025

Vulnerability Summary: CVE-2024-12970 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in TUBITAK BILGEM...

CVE Alert: CVE-2024-45553

January 7, 2025

Vulnerability Summary: CVE-2024-45553 Memory corruption can occur when process-specific maps are added to the global list. If a map is...

CVE Alert: CVE-2024-45558

January 7, 2025

Vulnerability Summary: CVE-2024-45558 Transient DOS can occur when the driver parses the per STA profile IE and tries to access...

CVE Alert: CVE-2024-45550

January 7, 2025

Vulnerability Summary: CVE-2024-45550 Memory corruption occurs when invoking any IOCTL-calling application that executes all MCDM driver IOCTL calls. Affected Endpoints:...

CVE Alert: CVE-2024-45555

January 7, 2025

Vulnerability Summary: CVE-2024-45555 Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows...

[MORPHEUS] – Ransomware Victim: Pus Gmbh

January 7, 2025

Ransomware Group: MORPHEUS VICTIM NAME: Pus Gmbh NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

OSINT

CISA: CISA Releases Best Practice Guidance for Mobile Communications

CISA: CISA Releases Five Industrial Control Systems Advisories

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA: CISA Releases Two Industrial Control Systems Advisories

CISA: Fortinet Releases Security Updates for FortiManager

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CovenantC2 Detected – 173[.]199[.]70[.]18:7443

[LYNX] – Ransomware Victim: jimthompson[.]com

[FUNKSEC] – Ransomware Victim: ndceg[.]com

[LYNX] – Ransomware Victim: astaphans[.]com

[FOG] – Ransomware Victim: Saint-Bar (saintbar[.]be)

CVE Alert: CVE-2024-43064

CVE Alert: CVE-2024-45541

CVE Alert: CVE-2024-45546

CVE Alert: CVE-2024-45559

CVE Alert: CVE-2024-45542

CVE Alert: CVE-2024-12970

CVE Alert: CVE-2024-45553

CVE Alert: CVE-2024-45558

CVE Alert: CVE-2024-45550

CVE Alert: CVE-2024-45555

[MORPHEUS] – Ransomware Victim: Pus Gmbh

CVE Alert: CVE-2024-10860

CVE Alert: CVE-2025-1560

CVE Alert: CVE-2025-1570

CVE Alert: CVE-2025-1662

CVE Alert: CVE-2025-1319

You may have missed