OSINT

CVE Alert: CVE-2024-46073

January 7, 2025

Vulnerability Summary: CVE-2024-46073 A reflected Cross-Site Scripting (XSS) vulnerability exists in the login page of IceHRM v32.4.0.OS. The vulnerability is...

CVE Alert: CVE-2024-55628

January 7, 2025

Vulnerability Summary: CVE-2024-55628 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to...

[8BASE] – Ransomware Victim: IRO PARIS

January 7, 2025

Ransomware Group: 8BASE VICTIM NAME: IRO PARIS NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[8BASE] – Ransomware Victim: Weininger Metall System GmbH

January 7, 2025

Ransomware Group: 8BASE VICTIM NAME: Weininger Metall System GmbH NOTE: No files or stolen information are by RedPacket Security. Any...

[8BASE] – Ransomware Victim: ASCOM S[.]p[.]A[.]

January 7, 2025

Ransomware Group: 8BASE VICTIM NAME: ASCOM SpA NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[8BASE] – Ransomware Victim: Omnitravel

January 7, 2025

Ransomware Group: 8BASE VICTIM NAME: Omnitravel NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[8BASE] – Ransomware Victim: CED Solutions Computer IT Training Centers

January 7, 2025

Ransomware Group: 8BASE VICTIM NAME: CED Solutions Computer IT Training Centers NOTE: No files or stolen information are by RedPacket...

[8BASE] – Ransomware Victim: HECTARE

January 7, 2025

Ransomware Group: 8BASE VICTIM NAME: HECTARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[8BASE] – Ransomware Victim: Lake Shore Public Schools

January 7, 2025

Ransomware Group: 8BASE VICTIM NAME: Lake Shore Public Schools NOTE: No files or stolen information are by RedPacket Security. Any...

[8BASE] – Ransomware Victim: SPORT BOUTIQ

January 7, 2025

Ransomware Group: 8BASE VICTIM NAME: SPORT BOUTIQ NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[FUNKSEC] – Ransomware Victim: senergy[.]net

January 7, 2025

Ransomware Group: FUNKSEC VICTIM NAME: senergynet NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RHYSIDA] – Ransomware Victim: Sunflower Medical Group

January 7, 2025

Ransomware Group: RHYSIDA VICTIM NAME: Sunflower Medical Group NOTE: No files or stolen information are by RedPacket Security. Any legal...

CVE Alert: CVE-2024-55529

January 7, 2025

Vulnerability Summary: CVE-2024-55529 Z-BlogPHP 1.7.3 is vulnerable to arbitrary code execution via \zb_users\theme\shell\template. Affected Endpoints: No affected endpoints listed. Published...

CVE Alert: CVE-2024-55074

January 7, 2025

Vulnerability Summary: CVE-2024-55074 The edit profile function of Grocy through 4.3.0 allows stored XSS and resultant privilege escalation by uploading...

CVE Alert: CVE-2024-55629

January 7, 2025

Vulnerability Summary: CVE-2024-55629 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to...

CVE Alert: CVE-2024-55626

January 7, 2025

Vulnerability Summary: CVE-2024-55626 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to...

CVE Alert: CVE-2024-55075

January 7, 2025

Vulnerability Summary: CVE-2024-55075 Grocy through 4.3.0 allows remote attackers to obtain sensitive information via direct requests to pages that are...

CVE Alert: CVE-2025-21620

January 7, 2025

Vulnerability Summary: CVE-2025-21620 Deno is a JavaScript, TypeScript, and WebAssembly runtime with secure defaults. When you send a request with...

CVE Alert: CVE-2024-46981

January 7, 2025

Vulnerability Summary: CVE-2024-46981 Redis is an open source, in-memory database that persists on disk. An authenticated user may use a...

CVE Alert: CVE-2024-51741

January 7, 2025

Vulnerability Summary: CVE-2024-51741 Redis is an open source, in-memory database that persists on disk. An authenticated with sufficient privileges may...

CVE Alert: CVE-2024-55076

January 7, 2025

Vulnerability Summary: CVE-2024-55076 Grocy through 4.3.0 has no CSRF protection, as demonstrated by changing the Administrator's password. Affected Endpoints: No...

CVE Alert: CVE-2025-21616

January 7, 2025

Vulnerability Summary: CVE-2025-21616 Plane is an open-source project management tool. A cross-site scripting (XSS) vulnerability has been identified in Plane...

Cobalt Strike Beacon Detected – 165[.]154[.]244[.]73:8443

January 7, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 185[.]43[.]4[.]80:8001

January 7, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

OSINT

CVE Alert: CVE-2024-46073

CVE Alert: CVE-2024-55628

[8BASE] – Ransomware Victim: IRO PARIS

[8BASE] – Ransomware Victim: Weininger Metall System GmbH

[8BASE] – Ransomware Victim: ASCOM S[.]p[.]A[.]

[8BASE] – Ransomware Victim: Omnitravel

[8BASE] – Ransomware Victim: CED Solutions Computer IT Training Centers

[8BASE] – Ransomware Victim: HECTARE

[8BASE] – Ransomware Victim: Lake Shore Public Schools

[8BASE] – Ransomware Victim: SPORT BOUTIQ

[FUNKSEC] – Ransomware Victim: senergy[.]net

[RHYSIDA] – Ransomware Victim: Sunflower Medical Group

CVE Alert: CVE-2024-55529

CVE Alert: CVE-2024-55074

CVE Alert: CVE-2024-55629

CVE Alert: CVE-2024-55626

CVE Alert: CVE-2024-55075

CVE Alert: CVE-2025-21620

CVE Alert: CVE-2024-46981

CVE Alert: CVE-2024-51741

CVE Alert: CVE-2024-55076

CVE Alert: CVE-2025-21616

Cobalt Strike Beacon Detected – 165[.]154[.]244[.]73:8443

Cobalt Strike Beacon Detected – 185[.]43[.]4[.]80:8001

CVE Alert: CVE-2025-23115

CVE Alert: CVE-2024-13358

CVE Alert: CVE-2024-13568

CVE Alert: CVE-2024-13518

CVE Alert: CVE-2025-1780

You may have missed