SEC Charges 4 Companies Over Misleading SolarWinds Cyber Attack Disclosures
The U.S. Securities and Exchange Commission (SEC) has charged four current and former public companies for making "materially misleading disclosures"...
OSINT
CERT-UA Identifies Malicious RDP Files in Latest Attack on Ukrainian Entities
The Computer Emergency Response Team of Ukraine (CERT-UA) has detailed a new malicious email campaign targeting government agencies, enterprises, and...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-10386
Vulnerability Summary: CVE-2024-10386 CVE-2024-10386 IMPACT An authentication vulnerability exists in the affected product. The vulnerability could allow a threat actor...
CVE Alert: CVE-2024-48581
Vulnerability Summary: CVE-2024-48581 File Upload vulnerability in Best courier management system in php v.1.0 allows a remote attacker to execute...
CVE Alert: CVE-2024-8036
Vulnerability Summary: CVE-2024-8036 ABB is aware of privately reported vulnerabilities in the product versions referenced in this CVE. An attacker...
CVE Alert: CVE-2023-26248
Vulnerability Summary: CVE-2023-26248 The Kademlia DHT (go-libp2p-kad-dht 0.20.0 and earlier) used in IPFS (0.18.1 and earlier) assigns routing information for...
CVE Alert: CVE-2022-30357
Vulnerability Summary: CVE-2022-30357 OvalEdge 5.2.8.0 and earlier is affected by an Account Takeover vulnerability via a POST request to /profile/updateProfile...
CVE Alert: CVE-2024-48654
Vulnerability Summary: CVE-2024-48654 Cross Site Scripting vulnerability in Blood Bank v.1 allows a remote attacker to execute arbitrary code via...
CVE Alert: CVE-2024-9585
Vulnerability Summary: CVE-2024-9585 The Image Map Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'save_project' function...
CVE Alert: CVE-2024-9584
Vulnerability Summary: CVE-2024-9584 The Image Map Pro plugin for WordPress is vulnerable to unauthorized modification of data and loss of...
CVE Alert: CVE-2024-10387
Vulnerability Summary: CVE-2024-10387 CVE-2024-10387 IMPACT A Denial-of-Service vulnerability exists in the affected product. The vulnerability could allow a threat actor...
CVE Alert: CVE-2024-47821
Vulnerability Summary: CVE-2024-47821 pyLoad is a free and open-source Download Manager. The folder `/.pyload/scripts` has scripts which are run when...
[BIANLIAN] – Ransomware Victim: Premier Work Support
Ransomware Group: BIANLIAN VICTIM NAME: Premier Work Support NOTE: No files or stolen information are by RedPacket Security. Any legal...
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[DONUTLEAKS] – Ransomware Victim: ATTENTION!
Ransomware Group: DONUTLEAKS VICTIM NAME: ATTENTION! NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RAWORLD] – Ransomware Victim: TR****GB
Ransomware Group: RAWORLD VICTIM NAME: TR****GB NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
digiDirect – 304,337 breached accounts
HIBP In September 2024, a data breach sourced from the Australian retailer digiDirect was published to a popular hacking forum....
[RAWORLD] – Ransomware Victim: ****
Ransomware Group: RAWORLD VICTIM NAME: **** NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CISA: CISA’s VDP Platform 2023 Annual Report Showcases Success
CISA’s VDP Platform 2023 Annual Report Showcases Success Today, the Cybersecurity and Infrastructure Security Agency (CISA) released its Vulnerability Disclosure Policy...
CISA: ASD’s ACSC, CISA, FBI, NSA, and International Partners Release Guidance on Principles of OT Cybersecurity for Critical Infrastructure Organizations
ASD’s ACSC, CISA, FBI, NSA, and International Partners Release Guidance on Principles of OT Cybersecurity for Critical Infrastructure Organizations Today,...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on October 1, 2024. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
