CVE Alert: CVE-2024-50592
Vulnerability Summary: CVE-2024-50592 An attacker with local access the to medical office computer can escalate his Windows user privileges to...
OSINT
CVE Alert: CVE-2024-46947
Vulnerability Summary: CVE-2024-46947 Northern.tech Mender before 3.6.6 and 3.7.x before 3.7.7 allows SSRF. Affected Endpoints: No affected endpoints listed. Published...
CVE Alert: CVE-2024-45765
Vulnerability Summary: CVE-2024-45765 Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an...
[LYNX] – Ransomware Victim: NEBRASKALAND
Ransomware Group: LYNX VICTIM NAME: NEBRASKALAND NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[LYNX] – Ransomware Victim: WimCoCorp
Ransomware Group: LYNX VICTIM NAME: WimCoCorp NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Bitcoin Fog Founder Sentenced to 12 Years for Cryptocurrency Money Laundering
The 36-year-old founder of the Bitcoin Fog cryptocurrency mixer has been sentenced to 12 years and six months in prison...
Palo Alto Advises Securing PAN-OS Interface Amid Potential RCE Threat Concerns
Palo Alto Networks on Friday issued an informational advisory urging customers to ensure that access to the PAN-OS management interface...
[SPACEBEARS] – Ransomware Victim: MENZIES CNAC (Jardine Aviation Services, Agility)
Ransomware Group: SPACEBEARS VICTIM NAME: MENZIES CNAC (Jardine Aviation Services, Agility) NOTE: No files or stolen information are by RedPacket...
CVE Alert: CVE-2024-45763
Vulnerability Summary: CVE-2024-45763 Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an...
CVE Alert: CVE-2024-21994
Vulnerability Summary: CVE-2024-21994 StorageGRID (formerly StorageGRID Webscale) versions prior to 11.9 are susceptible to a Denial of Service (DoS) vulnerability....
CVE Alert: CVE-2024-51997
Vulnerability Summary: CVE-2024-51997 Trustee is a set of tools and components for attesting confidential guests and providing secrets to them....
CVE Alert: CVE-2024-50966
Vulnerability Summary: CVE-2024-50966 dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/doAdminAction.php?act=addAdmin. Affected...
CVE Alert: CVE-2024-47190
Vulnerability Summary: CVE-2024-47190 Northern.tech Hosted Mender before 2024.07.11 allows SSRF. Affected Endpoints: No affected endpoints listed. Published Date: 11/8/2024, 4:15:24...
CVE Alert: CVE-2024-52001
Vulnerability Summary: CVE-2024-52001 Combodo iTop is a simple, web based IT Service Management tool. In affected versions portal users are...
CVE Alert: CVE-2024-11026
Vulnerability Summary: CVE-2024-11026 A vulnerability was found in Intelligent Apps Freenow App 12.10.0 on Android. It has been rated as...
CVE Alert: CVE-2024-52002
Vulnerability Summary: CVE-2024-52002 Combodo iTop is a simple, web based IT Service Management tool. Several url endpoints are subject to...
CVE Alert: CVE-2024-52000
Vulnerability Summary: CVE-2024-52000 Combodo iTop is a simple, web based IT Service Management tool. Affected versions are subject to a...
CVE Alert: CVE-2024-52007
Vulnerability Summary: CVE-2024-52007 HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java. XSLT...
CISA: CISA Releases Twenty-One Industrial Control Systems Advisories
CISA Releases Twenty-One Industrial Control Systems Advisories CISA released twenty-one Industrial Control Systems (ICS) advisories on October 10, 2024. These...
CISA: Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies
Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies CISA has observed cyber threat actors leveraging unencrypted...
CISA: CISA and FBI Release Fact Sheet on Protecting Against Iranian Targeting of Accounts Associated with National Political Organizations
CISA and FBI Release Fact Sheet on Protecting Against Iranian Targeting of Accounts Associated with National Political Organizations Today, CISA...
CISA: Avoid Scams After Disaster Strikes
Avoid Scams After Disaster Strikes As hurricanes and other natural disasters occur, CISA urges individuals to remain on alert for...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: Guidance: Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM)
Guidance: Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM) Today, CISA published the Framing Software Component Transparency, created...
