OSINT

CVE Alert: CVE-2024-13696

January 30, 2025

Vulnerability Summary: CVE-2024-13696 The Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for later plugin for WordPress is vulnerable...

CVE Alert: CVE-2024-7695

January 30, 2025

Vulnerability Summary: CVE-2024-7695 Multiple switches are affected by an out-of-bounds write vulnerability. This vulnerability is caused by insufficient input validation,...

CVE Alert: CVE-2024-57965

January 30, 2025

Vulnerability Summary: CVE-2024-57965 In axios before 1.7.8, lib/helpers/isURLSameOrigin.js does not use a URL object when determining an origin, and has...

CVE Alert: CVE-2021-3978

January 30, 2025

Vulnerability Summary: CVE-2021-3978 When copying files with rsync, octorpki uses the "-a" flag 0, which forces rsync to copy binaries...

CVE Alert: CVE-2025-0762

January 30, 2025

Vulnerability Summary: CVE-2025-0762 Use after free in DevTools in Google Chrome prior to 132.0.6834.159 allowed a remote attacker to potentially...

CVE Alert: CVE-2024-13561

January 30, 2025

Vulnerability Summary: CVE-2024-13561 The Target Video Easy Publish plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...

CVE Alert: CVE-2024-41140

January 30, 2025

Vulnerability Summary: CVE-2024-41140 Zohocorp ManageEngine Applications Manager versions 174000 and prior are vulnerable to the incorrect authorization in the update...

CVE Alert: CVE-2025-0617

January 30, 2025

Vulnerability Summary: CVE-2025-0617 An attacker with access to an HX 10.0.0 and previous versions, may send specially-crafted data to the...

CVE Alert: CVE-2025-0353

January 30, 2025

Vulnerability Summary: CVE-2025-0353 The Divi Torque Lite – Best Divi Addon, Extensions, Modules & Social Modules plugin for WordPress is...

[PLAY] – Ransomware Victim: Night Hawk

January 30, 2025

Ransomware Group: PLAY VICTIM NAME: Night Hawk NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[MONTI] – Ransomware Victim: nenok[.]de

January 30, 2025

Ransomware Group: MONTI VICTIM NAME: nenokde NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[CLOAK] – Ransomware Victim: Centromedicoenova

January 30, 2025

Ransomware Group: CLOAK VICTIM NAME: Centromedicoenova NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CISA: CISA Releases Fact Sheet Detailing Embedded Backdoor Function of Contec CMS8000 Firmware

January 30, 2025

CISA Releases Fact Sheet Detailing Embedded Backdoor Function of Contec CMS8000 Firmware CISA released a fact sheet, , detailing an...

CISA: CISA Releases Eight Industrial Control Systems Advisories

January 30, 2025

CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on January 30, 2025. These...

[AKIRA] – Ransomware Victim: Perfect Plastic

January 30, 2025

Ransomware Group: AKIRA VICTIM NAME: Perfect Plastic NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[MONTI] – Ransomware Victim: FENSTERMAKER

January 30, 2025

Ransomware Group: MONTI VICTIM NAME: FENSTERMAKER NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: Benuta

January 30, 2025

Ransomware Group: AKIRA VICTIM NAME: Benuta NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[QILIN] – Ransomware Victim: Ottawa Family Physicians

January 30, 2025

Ransomware Group: QILIN VICTIM NAME: Ottawa Family Physicians NOTE: No files or stolen information are by RedPacket Security. Any legal...

CVE Alert: CVE-2024-57436

January 30, 2025

Vulnerability Summary: CVE-2024-57436 RuoYi v4.8.0 was discovered to allow unauthorized attackers to view the session ID of the admin in...

CVE Alert: CVE-2023-37413

January 30, 2025

Vulnerability Summary: CVE-2023-37413 IBM Aspera Faspex 5.0.0 through 5.0.10 could disclose sensitive username information due to an observable response discrepancy....

CVE Alert: CVE-2024-57439

January 30, 2025

Vulnerability Summary: CVE-2024-57439 An issue in the reset password interface of ruoyi v4.8.0 allows attackers with Admin privileges to cause...

CVE Alert: CVE-2025-24792

January 30, 2025

Vulnerability Summary: CVE-2025-24792 Snowflake PHP PDO Driver is a driver that uses the PHP Data Objects (PDO) extension to connect...

CVE Alert: CVE-2025-24374

January 30, 2025

Vulnerability Summary: CVE-2025-24374 Twig is a template language for PHP. When using the ?? operator, output escaping was missing for...

CVE Alert: CVE-2023-37412

January 30, 2025

Vulnerability Summary: CVE-2023-37412 IBM Aspera Faspex 5.0.0 through 5.0.10 could allow a privileged user to make system changes without proper...

OSINT

CVE Alert: CVE-2024-13696

CVE Alert: CVE-2024-7695

CVE Alert: CVE-2024-57965

CVE Alert: CVE-2021-3978

CVE Alert: CVE-2025-0762

CVE Alert: CVE-2024-13561

CVE Alert: CVE-2024-41140

CVE Alert: CVE-2025-0617

CVE Alert: CVE-2025-0353

[PLAY] – Ransomware Victim: Night Hawk

[MONTI] – Ransomware Victim: nenok[.]de

[CLOAK] – Ransomware Victim: Centromedicoenova

CISA: CISA Releases Fact Sheet Detailing Embedded Backdoor Function of Contec CMS8000 Firmware

CISA: CISA Releases Eight Industrial Control Systems Advisories

[AKIRA] – Ransomware Victim: Perfect Plastic

[MONTI] – Ransomware Victim: FENSTERMAKER

[AKIRA] – Ransomware Victim: Benuta

[QILIN] – Ransomware Victim: Ottawa Family Physicians

CVE Alert: CVE-2024-57436

CVE Alert: CVE-2023-37413

CVE Alert: CVE-2024-57439

CVE Alert: CVE-2025-24792

CVE Alert: CVE-2025-24374

CVE Alert: CVE-2023-37412

CVE Alert: CVE-2025-1592

CVE Alert: CVE-2025-1596

CVE Alert: CVE-2025-1595

CVE Alert: CVE-2025-1594

CVE Alert: CVE-2025-1593

You may have missed