CISA: Threat Actors Continue to Exploit OT/ICS through Unsophisticated Means
Threat Actors Continue to Exploit OT/ICS through Unsophisticated Means CISA continues to respond to active exploitation of internet-accessible operational technology...
OSINT
CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on October 1, 2024. These...
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on September 26, 2024. These...
CISA: CISA’s VDP Platform 2023 Annual Report Showcases Success
CISA’s VDP Platform 2023 Annual Report Showcases Success Today, the Cybersecurity and Infrastructure Security Agency (CISA) released its Vulnerability Disclosure Policy...
CISA: ASD’s ACSC, CISA, and US and International Partners Release Guidance on Detecting and Mitigating Active Directory Compromises
ASD’s ACSC, CISA, and US and International Partners Release Guidance on Detecting and Mitigating Active Directory Compromises Today, the Australian...
CovenantC2 Detected – 154[.]44[.]10[.]197:7443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
[QILIN] – Ransomware Victim: United Animal Health
Ransomware Group: QILIN VICTIM NAME: United Animal Health NOTE: No files or stolen information are by RedPacket Security. Any legal...
CVE Alert: CVE-2024-42496
Vulnerability Summary: CVE-2024-42496 Smart-tab Android app installed April 2023 or earlier contains an issue with plaintext storage of a password....
CVE Alert: CVE-2024-8456
Vulnerability Summary: CVE-2024-8456 Certain switch models from PLANET Technology lack proper access control in firmware upload and download functionality, allowing...
CVE Alert: CVE-2024-8455
Vulnerability Summary: CVE-2024-8455 The swctrl service is used to detect and remotely manage PLANET Technology devices. For certain switch models,...
CVE Alert: CVE-2024-45200
Vulnerability Summary: CVE-2024-45200 In Nintendo Mario Kart 8 Deluxe before 3.0.3, the LAN/LDN local multiplayer implementation allows a remote attacker...
CVE Alert: CVE-2024-41999
Vulnerability Summary: CVE-2024-41999 Smart-tab Android app installed April 2023 or earlier contains an active debug code vulnerability. If this vulnerability...
CVE Alert: CVE-2024-8457
Vulnerability Summary: CVE-2024-8457 Certain switch models from PLANET Technology have a web application that does not properly validate specific parameters,...
CVE Alert: CVE-2024-8458
Vulnerability Summary: CVE-2024-8458 Certain switch models from PLANET Technology have a web application that is vulnerable to Cross-Site Request Forgery...
CVE Alert: CVE-2024-8454
Vulnerability Summary: CVE-2024-8454 The swctrl service is used to detect and remotely manage PLANET Technology devices. Certain switch models have...
CVE Alert: CVE-2024-8453
Vulnerability Summary: CVE-2024-8453 Certain switch models from PLANET Technology use an insecure hashing function to hash user passwords without being...
CVE Alert: CVE-2024-8459
Vulnerability Summary: CVE-2024-8459 Certain switch models from PLANET Technology store SNMPv3 users' passwords in plaintext within the configuration files, allowing...
[NITROGEN] – Ransomware Victim: Labib Funk Associates
Ransomware Group: NITROGEN VICTIM NAME: Labib Funk Associates NOTE: No files or stolen information are by RedPacket Security. Any legal...
[NITROGEN] – Ransomware Victim: Research Electronics International
Ransomware Group: NITROGEN VICTIM NAME: Research Electronics International NOTE: No files or stolen information are by RedPacket Security. Any legal...
[NITROGEN] – Ransomware Victim: Akromold
Ransomware Group: NITROGEN VICTIM NAME: Akromold NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[AKIRA] – Ransomware Victim: ShoreMaster
Ransomware Group: AKIRA VICTIM NAME: ShoreMaster NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[AKIRA] – Ransomware Victim: Cascade Columbia Distribution
Ransomware Group: AKIRA VICTIM NAME: Cascade Columbia Distribution NOTE: No files or stolen information are by RedPacket Security. Any legal...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on October 1, 2024. These...
