Cobalt Strike Beacon Detected – 101[.]36[.]117[.]41:8880
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Strike Beacon Detected – 180[.]184[.]42[.]11:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 192[.]74[.]226[.]179:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 148[.]135[.]127[.]214:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]242[.]206[.]77:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[KILLSEC] – Ransomware Victim: Water Utilities Corporation
Ransomware Group: KILLSEC VICTIM NAME: Water Utilities Corporation NOTE: No files or stolen information are by RedPacket Security. Any legal...
[KILLSEC] – Ransomware Victim: Khalil Center
Ransomware Group: KILLSEC VICTIM NAME: Khalil Center NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2024-52897
Vulnerability Summary: CVE-2024-52897 IBM MQ Appliance 9.3 LTS, 9.3 CD, and 9.4 LTS web console could allow a remote attacker...
CVE Alert: CVE-2024-51471
Vulnerability Summary: CVE-2024-51471 IBM MQ Appliance 9.3 LTS, 9.3 CD, and 9.4 LTS web console could allow an authenticated user...
CVE Alert: CVE-2024-12793
Vulnerability Summary: CVE-2024-12793 A vulnerability, which was classified as problematic, has been found in PbootCMS up to 5.2.3. Affected by...
CVE Alert: CVE-2024-38819
Vulnerability Summary: CVE-2024-38819 Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal...
CVE Alert: CVE-2024-49336
Vulnerability Summary: CVE-2024-49336 IBM Security Guardium 11.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker...
CVE Alert: CVE-2024-12111
Vulnerability Summary: CVE-2024-12111 In a specific scenario a LDAP user can abuse the authentication process in OpenText Privileged Access Manager...
CVE Alert: CVE-2024-7137
Vulnerability Summary: CVE-2024-7137 The L2CAP receive data buffer for L2CAP packets is restricted to packet sizes smaller than the maximum...
CVE Alert: CVE-2024-7138
Vulnerability Summary: CVE-2024-7138 An assert may be triggered, causing a temporary denial of service when a peer device sends a...
CVE Alert: CVE-2024-56200
Vulnerability Summary: CVE-2024-56200 Altair is a fork of Misskey v12. Affected versions lack of request validation and lack of authentication...
CVE Alert: CVE-2020-6923
Vulnerability Summary: CVE-2020-6923 The HP Linux Imaging and Printing (HPLIP) software may potentially be affected by memory buffer overflow. Affected...
[CLOAK] – Ransomware Victim: Kai*************[.]de
Ransomware Group: CLOAK VICTIM NAME: Kai*************de NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[CLOAK] – Ransomware Victim: Fmp[.]gob[.]pe
Ransomware Group: CLOAK VICTIM NAME: Fmpgobpe NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[CLOAK] – Ransomware Victim: Ne***********[.]de
Ransomware Group: CLOAK VICTIM NAME: Ne***********de NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[PLAY] – Ransomware Victim: Krispy Kreme
Ransomware Group: PLAY VICTIM NAME: Krispy Kreme NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[SPACEBEARS] – Ransomware Victim: JRT Automatisation
Ransomware Group: SPACEBEARS VICTIM NAME: JRT Automatisation NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[INTERLOCK] – Ransomware Victim: City of Noblesville
Ransomware Group: INTERLOCK VICTIM NAME: City of Noblesville NOTE: No files or stolen information are by RedPacket Security. Any legal...
[QILIN] – Ransomware Victim: Compliance Solutions Inc
Ransomware Group: QILIN VICTIM NAME: Compliance Solutions Inc NOTE: No files or stolen information are by RedPacket Security. Any legal...
