CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on October 24, 2024. These...
OSINT
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation
Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation Fortinet has updated their security advisory addressing a critical...
CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple released security updates to address vulnerabilities in multiple Apple products. A cyber...
CISA: JCDC’s Industry-Government Collaboration Speeds Mitigation of CrowdStrike IT Outage
JCDC’s Industry-Government Collaboration Speeds Mitigation of CrowdStrike IT Outage CISA, through the Joint Cyber Defense Collaborative (JCDC), enabled swift, coordinated...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on October 31, 2024. These...
CISA: Foreign Threat Actor Conducting Large-Scale Spear-Phishing Campaign with RDP Attachments
Foreign Threat Actor Conducting Large-Scale Spear-Phishing Campaign with RDP Attachments CISA has received multiple reports of a large-scale spear-phishing campaign...
Cobalt Strike Beacon Detected – 47[.]236[.]244[.]191:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 175[.]178[.]33[.]240:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 175[.]27[.]170[.]104:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2024-9632
Vulnerability Summary: CVE-2024-9632 A flaw was found in the X.org server. Due to improperly tracked allocation size in _XkbSetCompatMap, a...
CVE Alert: CVE-2024-50512
Vulnerability Summary: CVE-2024-50512 Generation of Error Message Containing Sensitive Information vulnerability in Posti Posti Shipping allows Retrieve Embedded Sensitive Data.This...
CVE Alert: CVE-2024-50511
Vulnerability Summary: CVE-2024-50511 Unrestricted Upload of File with Dangerous Type vulnerability in David DONISA WP donimedia carousel allows Upload a...
CVE Alert: CVE-2024-50504
Vulnerability Summary: CVE-2024-50504 Incorrect Privilege Assignment vulnerability in Matt Whiteman Bulk Change Role allows Privilege Escalation.This issue affects Bulk Change...
CVE Alert: CVE-2024-50506
Vulnerability Summary: CVE-2024-50506 Incorrect Privilege Assignment vulnerability in Azexo Marketing Automation by AZEXO allows Privilege Escalation.This issue affects Marketing Automation...
CVE Alert: CVE-2024-3935
Vulnerability Summary: CVE-2024-3935 In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an...
CVE Alert: CVE-2024-9388
Vulnerability Summary: CVE-2024-9388 The Black Widgets For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File...
CVE Alert: CVE-2024-8512
Vulnerability Summary: CVE-2024-8512 The W3SPEEDSTER plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and...
CVE Alert: CVE-2024-10525
Vulnerability Summary: CVE-2024-10525 In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted SUBACK packet...
CVE Alert: CVE-2024-50510
Vulnerability Summary: CVE-2024-50510 Unrestricted Upload of File with Dangerous Type vulnerability in Web and Print Design AR For Woocommerce allows...
[MEOW] – Ransomware Victim: Houston Housing Authority
Ransomware Group: MEOW VICTIM NAME: Houston Housing Authority NOTE: No files or stolen information are by RedPacket Security. Any legal...
LottieFiles Issues Warning About Compromised “lottie-player” npm Package
LottieFiles has revealed that its npm package "lottie-player" was compromised as part of a supply chain attack, prompting it to...
New LightSpy Spyware Version Targets iPhones with Increased Surveillance Tactics
Cybersecurity researchers have discovered an improved version of an Apple iOS spyware called LightSpy that not only expands on its...
[FOG] – Ransomware Victim: Askling Car (asklingbil[.]se)
Ransomware Group: FOG VICTIM NAME: Askling Car (asklingbilse) NOTE: No files or stolen information are by RedPacket Security. Any legal...
