Cobalt Strike Beacon Detected – 175[.]27[.]170[.]104:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
CVE Alert: CVE-2024-50504
Vulnerability Summary: CVE-2024-50504 Incorrect Privilege Assignment vulnerability in Matt Whiteman Bulk Change Role allows Privilege Escalation.This issue affects Bulk Change...
CVE Alert: CVE-2024-50506
Vulnerability Summary: CVE-2024-50506 Incorrect Privilege Assignment vulnerability in Azexo Marketing Automation by AZEXO allows Privilege Escalation.This issue affects Marketing Automation...
CVE Alert: CVE-2024-9632
Vulnerability Summary: CVE-2024-9632 A flaw was found in the X.org server. Due to improperly tracked allocation size in _XkbSetCompatMap, a...
CVE Alert: CVE-2024-50512
Vulnerability Summary: CVE-2024-50512 Generation of Error Message Containing Sensitive Information vulnerability in Posti Posti Shipping allows Retrieve Embedded Sensitive Data.This...
CVE Alert: CVE-2024-50511
Vulnerability Summary: CVE-2024-50511 Unrestricted Upload of File with Dangerous Type vulnerability in David DONISA WP donimedia carousel allows Upload a...
CVE Alert: CVE-2024-3935
Vulnerability Summary: CVE-2024-3935 In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an...
CVE Alert: CVE-2024-9388
Vulnerability Summary: CVE-2024-9388 The Black Widgets For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File...
CVE Alert: CVE-2024-8512
Vulnerability Summary: CVE-2024-8512 The W3SPEEDSTER plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and...
CVE Alert: CVE-2024-10525
Vulnerability Summary: CVE-2024-10525 In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted SUBACK packet...
CVE Alert: CVE-2024-50510
Vulnerability Summary: CVE-2024-50510 Unrestricted Upload of File with Dangerous Type vulnerability in Web and Print Design AR For Woocommerce allows...
[MEOW] – Ransomware Victim: Houston Housing Authority
Ransomware Group: MEOW VICTIM NAME: Houston Housing Authority NOTE: No files or stolen information are by RedPacket Security. Any legal...
LottieFiles Issues Warning About Compromised “lottie-player” npm Package
LottieFiles has revealed that its npm package "lottie-player" was compromised as part of a supply chain attack, prompting it to...
New LightSpy Spyware Version Targets iPhones with Increased Surveillance Tactics
Cybersecurity researchers have discovered an improved version of an Apple iOS spyware called LightSpy that not only expands on its...
[FOG] – Ransomware Victim: Askling Car (asklingbil[.]se)
Ransomware Group: FOG VICTIM NAME: Askling Car (asklingbilse) NOTE: No files or stolen information are by RedPacket Security. Any legal...
[RANSOMHUB] – Ransomware Victim: www[.]mabeglobal[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: wwwmabeglobalcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-28875
Vulnerability Summary: CVE-2024-28875 A security flaw involving hard-coded credentials in LevelOne WBR-6012's web services allows attackers to gain unauthorized access...
CVE Alert: CVE-2024-51304
Vulnerability Summary: CVE-2024-51304 In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling...
CVE Alert: CVE-2024-28052
Vulnerability Summary: CVE-2024-28052 The WBR-6012 is a wireless SOHO router. It is a low-cost device which functions as an internet...
CVE Alert: CVE-2024-24777
Vulnerability Summary: CVE-2024-24777 A cross-site request forgery (CSRF) vulnerability exists in the Web Application functionality of the LevelOne WBR-6012 R0.40e6....
CVE Alert: CVE-2024-23309
Vulnerability Summary: CVE-2024-23309 The LevelOne WBR-6012 router with firmware R0.40e6 has an authentication bypass vulnerability in its web application due...
CVE Alert: CVE-2024-33623
Vulnerability Summary: CVE-2024-33623 A denial of service vulnerability exists in the Web Application functionality of LevelOne WBR-6012 R0.40e6. A specially...
CVE Alert: CVE-2024-31152
Vulnerability Summary: CVE-2024-31152 The LevelOne WBR-6012 router with firmware R0.40e6 is vulnerable to improper resource allocation within its web application,...
CVE Alert: CVE-2024-33603
Vulnerability Summary: CVE-2024-33603 The LevelOne WBR-6012 router has an information disclosure vulnerability in its web application, which allows unauthenticated users...