threatintel

CVE Alert: CVE-2024-13918

March 11, 2025

Vulnerability Summary: CVE-2024-13918 The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an...

CVE Alert: CVE-2024-13919

March 11, 2025

Vulnerability Summary: CVE-2024-13919 The Laravel framework versions between 11.9.0 and 11.35.1 are susceptible to reflected cross-site scripting due to an...

CVE Alert: CVE-2025-24387

March 11, 2025

Vulnerability Summary: CVE-2025-24387 A vulnerability in OTRS Application Server allows session hijacking due to missing attributes for sensitive cookie settings...

CVE Alert: CVE-2025-2147

March 11, 2025

Vulnerability Summary: CVE-2025-2147 A vulnerability was found in Beijing Zhide Intelligent Internet Technology Modern Farm Digital Integrated Management System 1.0....

CVE Alert: CVE-2025-2153

March 11, 2025

Vulnerability Summary: CVE-2025-2153 A vulnerability, which was classified as critical, was found in HDF5 1.14.6. Affected is the function H5SM_delete...

CVE Alert: CVE-2025-2151

March 11, 2025

Vulnerability Summary: CVE-2025-2151 A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects...

CVE Alert: CVE-2025-2149

March 11, 2025

Vulnerability Summary: CVE-2025-2149 A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue...

CVE Alert: CVE-2025-2152

March 11, 2025

Vulnerability Summary: CVE-2025-2152 A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3....

CVE Alert: CVE-2025-2148

March 11, 2025

Vulnerability Summary: CVE-2025-2148 A vulnerability was found in PyTorch 2.6.0+cu124. It has been declared as critical. Affected by this vulnerability...

[BABUK2] – Ransomware Victim: wapda[.]gov[.]pk

March 11, 2025

Ransomware Group: BABUK2 VICTIM NAME: wapdagovpk NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[HUNTERS] – Ransomware Victim: Edesur Dominicana

March 11, 2025

Ransomware Group: HUNTERS VICTIM NAME: Edesur Dominicana NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[AKIRA] – Ransomware Victim: All4Labels – Global Packaging Group

March 11, 2025

Ransomware Group: AKIRA VICTIM NAME: All4Labels - Global Packaging Group NOTE: No files or stolen information are by RedPacket Security....

Cobalt Strike Beacon Detected – 47[.]119[.]189[.]207:8888

March 11, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 123[.]56[.]226[.]71:44444

March 11, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 47[.]108[.]63[.]64:666

March 11, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 47[.]86[.]52[.]150:80

March 11, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

[INCRANSOM] – Ransomware Victim: Essex County OB/GYN Associates

March 11, 2025

Ransomware Group: INCRANSOM VICTIM NAME: Essex County OB/GYN Associates NOTE: No files or stolen information are by RedPacket Security. Any...

[AKIRA] – Ransomware Victim: Princeton Hydro

March 11, 2025

Ransomware Group: AKIRA VICTIM NAME: Princeton Hydro NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

CVE Alert: CVE-2025-25620

March 11, 2025

Vulnerability Summary: CVE-2025-25620 Unifiedtransform 2.0 is vulnerable to Cross Site Scripting (XSS) in the Create assignment function. Affected Endpoints: No...

CVE Alert: CVE-2025-26916

March 11, 2025

Vulnerability Summary: CVE-2025-26916 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in EPC...

CVE Alert: CVE-2025-26910

March 11, 2025

Vulnerability Summary: CVE-2025-26910 Cross-Site Request Forgery (CSRF) vulnerability in Iqonic Design WPBookit allows Stored XSS. This issue affects WPBookit: from...

CVE Alert: CVE-2025-26933

March 11, 2025

Vulnerability Summary: CVE-2025-26933 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Nitin...

CVE Alert: CVE-2024-12604

March 11, 2025

Vulnerability Summary: CVE-2024-12604 Cleartext Storage of Sensitive Information in an Environment Variable, Weak Password Recovery Mechanism for Forgotten Password vulnerability...

CVE Alert: CVE-2025-25614

March 11, 2025

Vulnerability Summary: CVE-2025-25614 Incorrect Access Control in Unifiedtransform 2.0 leads to Privilege Escalation, which allows teachers to update the personal...

threatintel

CVE Alert: CVE-2024-13918

CVE Alert: CVE-2024-13919

CVE Alert: CVE-2025-24387

CVE Alert: CVE-2025-2147

CVE Alert: CVE-2025-2153

CVE Alert: CVE-2025-2151

CVE Alert: CVE-2025-2149

CVE Alert: CVE-2025-2152

CVE Alert: CVE-2025-2148

[BABUK2] – Ransomware Victim: wapda[.]gov[.]pk

[HUNTERS] – Ransomware Victim: Edesur Dominicana

[AKIRA] – Ransomware Victim: All4Labels – Global Packaging Group

Cobalt Strike Beacon Detected – 47[.]119[.]189[.]207:8888

Cobalt Strike Beacon Detected – 123[.]56[.]226[.]71:44444

Cobalt Strike Beacon Detected – 47[.]108[.]63[.]64:666

Cobalt Strike Beacon Detected – 47[.]86[.]52[.]150:80

[INCRANSOM] – Ransomware Victim: Essex County OB/GYN Associates

[AKIRA] – Ransomware Victim: Princeton Hydro

CVE Alert: CVE-2025-25620

CVE Alert: CVE-2025-26916

CVE Alert: CVE-2025-26910

CVE Alert: CVE-2025-26933

CVE Alert: CVE-2024-12604

CVE Alert: CVE-2025-25614

CVE Alert: CVE-2025-1561

CVE Alert: CVE-2020-36843

CVE Alert: CVE-2024-7296

CVE Alert: CVE-2025-2104

CVE Alert: CVE-2024-13054

You may have missed