OSINT

CISA: 2024 CWE Top 25 Most Dangerous Software Weaknesses

December 3, 2024

2024 CWE Top 25 Most Dangerous Software Weaknesses The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the Homeland...

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

December 3, 2024

CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA and Partners Release Update to BianLian Ransomware Cybersecurity Advisory

December 3, 2024

CISA and Partners Release Update to BianLian Ransomware Cybersecurity Advisory Today, CISA, the Federal Bureau of Investigation (FBI), and the...

CISA: USDA Releases Success Story Detailing the Implementation of Phishing-Resistant Multi-Factor Authentication

December 3, 2024

USDA Releases Success Story Detailing the Implementation of Phishing-Resistant Multi-Factor Authentication Today, the Cybersecurity and Infrastructure Security Agency (CISA) and...

CISA: Apple Releases Security Updates for Multiple Products

December 3, 2024

Apple Releases Security Updates for Multiple Products Apple released security updates to address vulnerabilities in multiple Apple products. A cyber...

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

December 3, 2024

CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector Organization

December 3, 2024

CISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector Organization Today, CISA released Enhancing Cyber Resilience:...

CISA: CISA Releases Seven Industrial Control Systems Advisories

December 3, 2024

CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on November 21, 2024. These...

CISA: CISA Releases Six Industrial Control Systems Advisories

December 3, 2024

CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on November 26, 2024. These...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

December 3, 2024

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CovenantC2 Detected – 45[.]61[.]133[.]20:7443

December 3, 2024

The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...

[RANSOMHUB] – Ransomware Victim: KHKKLOW[.]com

December 2, 2024

Ransomware Group: RANSOMHUB VICTIM NAME: KHKKLOWcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[FOG] – Ransomware Victim: Conlin’s Pharmacy (conlinspharmacy[.]com)

December 2, 2024

Ransomware Group: FOG VICTIM NAME: Conlin's Pharmacy (conlinspharmacycom) NOTE: No files or stolen information are by RedPacket Security. Any legal...

[LYNX] – Ransomware Victim: Mmaynewagemicro

December 2, 2024

Ransomware Group: LYNX VICTIM NAME: Mmaynewagemicro NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2024-53748

December 2, 2024

Vulnerability Summary: CVE-2024-53748 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Terry Lin WP Mermaid allows...

[MEDUSA] – Ransomware Victim: Wiley Metal Fabricating

December 2, 2024

Ransomware Group: MEDUSA VICTIM NAME: Wiley Metal Fabricating NOTE: No files or stolen information are by RedPacket Security. Any legal...

[MEDUSA] – Ransomware Victim: Avico Spice

December 2, 2024

Ransomware Group: MEDUSA VICTIM NAME: Avico Spice NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[MEDUSA] – Ransomware Victim: Down East Granite

December 2, 2024

Ransomware Group: MEDUSA VICTIM NAME: Down East Granite NOTE: No files or stolen information are by RedPacket Security. Any legal...

CVE Alert: CVE-2024-53744

December 2, 2024

Vulnerability Summary: CVE-2024-53744 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Skybootstrap Elementor Image Gallery Plugin...

CVE Alert: CVE-2024-53747

December 2, 2024

Vulnerability Summary: CVE-2024-53747 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NuttTaro Video Player for WPBakery...

CVE Alert: CVE-2024-53746

December 2, 2024

Vulnerability Summary: CVE-2024-53746 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FlickDevs Elementor Button Plus allows...

CVE Alert: CVE-2024-53745

December 2, 2024

Vulnerability Summary: CVE-2024-53745 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 코스모스팜 – Cosmosfarm 소셜 공유...

CVE Alert: CVE-2024-53743

December 2, 2024

Vulnerability Summary: CVE-2024-53743 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FlickDevs Countdown Timer for Elementor...

CVE Alert: CVE-2024-53750

December 2, 2024

Vulnerability Summary: CVE-2024-53750 Cross-Site Request Forgery (CSRF) vulnerability in Maeve Lander PayPal Responder allows Stored XSS.This issue affects PayPal Responder:...

OSINT

CISA: 2024 CWE Top 25 Most Dangerous Software Weaknesses

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA: CISA and Partners Release Update to BianLian Ransomware Cybersecurity Advisory

CISA: USDA Releases Success Story Detailing the Implementation of Phishing-Resistant Multi-Factor Authentication

CISA: Apple Releases Security Updates for Multiple Products

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA: CISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector Organization

CISA: CISA Releases Seven Industrial Control Systems Advisories

CISA: CISA Releases Six Industrial Control Systems Advisories

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CovenantC2 Detected – 45[.]61[.]133[.]20:7443

[RANSOMHUB] – Ransomware Victim: KHKKLOW[.]com

[FOG] – Ransomware Victim: Conlin’s Pharmacy (conlinspharmacy[.]com)

[LYNX] – Ransomware Victim: Mmaynewagemicro

CVE Alert: CVE-2024-53748

[MEDUSA] – Ransomware Victim: Wiley Metal Fabricating

[MEDUSA] – Ransomware Victim: Avico Spice

[MEDUSA] – Ransomware Victim: Down East Granite

CVE Alert: CVE-2024-53744

CVE Alert: CVE-2024-53747

CVE Alert: CVE-2024-53746

CVE Alert: CVE-2024-53745

CVE Alert: CVE-2024-53743

CVE Alert: CVE-2024-53750

[CLOP] – Ransomware Victim: IOVATE[.]COM

[BIANLIAN] – Ransomware Victim: Legal Aid Society of Salt Lake

[BIANLIAN] – Ransomware Victim: Ewald Consulting

[APOS] – Ransomware Victim: InternetWay

[APOS] – Ransomware Victim: Netcom-World

You may have missed