Cobalt Strike Beacon Detected – 150[.]158[.]19[.]54:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Strike Beacon Detected – 207[.]148[.]98[.]153:7443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 118[.]89[.]124[.]190:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[PLAY] – Ransomware Victim: Sunrise Express
Ransomware Group: PLAY VICTIM NAME: Sunrise Express NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[PLAY] – Ransomware Victim: Pelsue
Ransomware Group: PLAY VICTIM NAME: Pelsue NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[PLAY] – Ransomware Victim: Paul White Company
Ransomware Group: PLAY VICTIM NAME: Paul White Company NOTE: No files or stolen information are by RedPacket Security. Any legal...
[PLAY] – Ransomware Victim: Pureflow Airdog
Ransomware Group: PLAY VICTIM NAME: Pureflow Airdog NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[PLAY] – Ransomware Victim: iFocus Consulting
Ransomware Group: PLAY VICTIM NAME: iFocus Consulting NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[PLAY] – Ransomware Victim: Unlimited Lawn Care
Ransomware Group: PLAY VICTIM NAME: Unlimited Lawn Care NOTE: No files or stolen information are by RedPacket Security. Any legal...
[FLOCKER] – Ransomware Victim: C**********M
Ransomware Group: FLOCKER VICTIM NAME: C**********M NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-8587
Vulnerability Summary: CVE-2024-8587 A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Heap Based...
CVE Alert: CVE-2024-9988
Vulnerability Summary: CVE-2024-9988 The Crypto plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.15....
CVE Alert: CVE-2024-9989
Vulnerability Summary: CVE-2024-9989 The Crypto plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.15....
CVE Alert: CVE-2024-9990
Vulnerability Summary: CVE-2024-9990 The Crypto plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including,...
CVE Alert: CVE-2024-50459
Vulnerability Summary: CVE-2024-50459 Missing Authorization vulnerability in HM Plugin WordPress Stripe Donation and Payment Plugin allows Exploiting Incorrectly Configured Access...
CVE Alert: CVE-2024-50456
Vulnerability Summary: CVE-2024-50456 Missing Authorization vulnerability in The SEO Guys at SEOPress SEOPress allows Exploiting Incorrectly Configured Access Control Security...
CVE Alert: CVE-2024-10228
Vulnerability Summary: CVE-2024-10228 The Vagrant VMWare Utility Windows installer targeted a custom location with a non-protected path that could be...
CVE Alert: CVE-2024-50424
Vulnerability Summary: CVE-2024-50424 Missing Authorization vulnerability in Templately allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Templately: from...
CVE Alert: CVE-2024-50425
Vulnerability Summary: CVE-2024-50425 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Veribo, Roland Murg WP Booking...
CVE Alert: CVE-2024-50455
Vulnerability Summary: CVE-2024-50455 Missing Authorization vulnerability in The SEO Guys at SEOPress SEOPress allows Exploiting Incorrectly Configured Access Control Security...
[PLAYBOY] – Ransomware Victim: PlayBoy
Ransomware Group: PLAYBOY VICTIM NAME: PlayBoy NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CISA: Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation
Fortinet Updates Guidance and Indicators of Compromise following FortiManager Vulnerability Exploitation Fortinet has updated their security advisory addressing a critical...
[FOG] – Ransomware Victim: Jillamy (jillamy[.]com)
Ransomware Group: FOG VICTIM NAME: Jillamy (jillamycom) NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Malvertising Campaign Hijacks Facebook Accounts to Spread SYS01stealer Malware
Cybersecurity researchers have uncovered an ongoing malvertising campaign that abuses Meta's advertising platform and hijacked Facebook accounts to distribute information...