OSINT

CVE Alert: CVE-2024-10963

November 8, 2024

Vulnerability Summary: CVE-2024-10963 A vulnerability was found in pam_access due to the improper handling of tokens in access.conf, interpreted as...

Read More

CVE Alert: CVE-2024-48952

November 8, 2024

Vulnerability Summary: CVE-2024-48952 An issue was discovered in Logpoint before 7.5.0. SOAR uses a static JWT secret key to generate...

Read More

CVE Alert: CVE-2024-48953

November 8, 2024

Vulnerability Summary: CVE-2024-48953 An issue was discovered in Logpoint before 7.5.0. Endpoints for creating, editing, or deleting third-party authentication modules...

Read More

CVE Alert: CVE-2024-48954

November 8, 2024

Vulnerability Summary: CVE-2024-48954 An issue was discovered in Logpoint before 7.5.0. Unvalidated input during the EventHub Collector setup by an...

Read More

CVE Alert: CVE-2024-10964

November 8, 2024

Vulnerability Summary: CVE-2024-10964 A vulnerability classified as critical has been found in emqx neuron up to 2.10.0. Affected is the...

Read More

CVE Alert: CVE-2024-48951

November 8, 2024

Vulnerability Summary: CVE-2024-48951 An issue was discovered in Logpoint before 7.5.0. Server-Side Request Forgery (SSRF) on SOAR can be used...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 1[.]94[.]254[.]25:4433

November 8, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 47[.]92[.]140[.]190:443

November 8, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 1[.]94[.]254[.]25:8085

November 8, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 114[.]115[.]213[.]248:443

November 8, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 54[.]251[.]109[.]230:80

November 8, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 198[.]98[.]58[.]127:443

November 8, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

[APT73] – Ransomware Victim: www[.]botiga[.]com[.]uy

November 8, 2024

Ransomware Group: APT73 VICTIM NAME: wwwbotigacomuy NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Read More

[APT73] – Ransomware Victim: www[.]assurified[.]com

November 8, 2024

Ransomware Group: APT73 VICTIM NAME: wwwassurifiedcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Read More

hunt

Webinar: Learn How Storytelling Can Make Cybersecurity Training Fun and Effective

November 8, 2024

Let's face it—traditional security training can feel as thrilling as reading the fine print on a software update. It's routine,...

Read More

npm

Malicious NPM Packages Target Roblox Users with Data-Stealing Malware

November 8, 2024

A new campaign has targeted the npm package repository with malicious JavaScript libraries that are designed to infect Roblox users...

Read More

vciso

The vCISO Academy: Transforming MSPs and MSSPs into Cybersecurity Powerhouses

November 8, 2024

We've all heard a million times: growing demand for robust cybersecurity in the face of rising cyber threats is undeniable....

Read More

CVE Alert: CVE-2024-40715

November 8, 2024

Vulnerability Summary: CVE-2024-40715 A vulnerability in Veeam Backup & Replication Enterprise Manager has been identified, which allows attackers to perform...

Read More

CVE Alert: CVE-2020-11919

November 8, 2024

Vulnerability Summary: CVE-2020-11919 An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. There is no CSRF protection. Affected Endpoints: No affected...

Read More

CVE Alert: CVE-2024-48950

November 8, 2024

Vulnerability Summary: CVE-2024-48950 An issue was discovered in Logpoint before 7.5.0. An endpoint used by Distributed Logpoint Setup was exposed,...

Read More

CVE Alert: CVE-2020-11917

November 8, 2024

Vulnerability Summary: CVE-2020-11917 An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. It uses a default SSID value, which makes it...

Read More

CVE Alert: CVE-2020-11918

November 8, 2024

Vulnerability Summary: CVE-2020-11918 An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. When a backup file is created through the web...

Read More

CVE Alert: CVE-2024-51989

November 8, 2024

Vulnerability Summary: CVE-2024-51989 Password Pusher is an open source application to communicate sensitive information over the web. A cross-site scripting...

Read More

CVE Alert: CVE-2024-10967

November 8, 2024

Vulnerability Summary: CVE-2024-10967 A vulnerability was found in code-projects E-Health Care System 1.0. It has been classified as critical. Affected...

Read More

hackerone

HackerOne Bug Bounty Disclosure: -bypass-email-verification-for-monitoring-at-monitor-mozilla-org–d-amrr

January 22, 2025

[RANSOMHUB] – Ransomware Victim: www[.]americanstandard-us[.]com

January 22, 2025

[SPACEBEARS] – Ransomware Victim: Christian Community Aid

January 22, 2025

[CLOP] – Ransomware Victim: JOMARSOFTCORP[.]COM

January 22, 2025

hkcert

Microsoft Monthly Security Update (October 2024)

January 22, 2025