threatintel

Cobalt Strike Beacon Detected – 156[.]224[.]19[.]17:443

January 19, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 39[.]98[.]40[.]53:8888

January 19, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

[QILIN] – Ransomware Victim: WELKER | World-Class Manufacturing

January 19, 2025

Ransomware Group: QILIN VICTIM NAME: WELKER | World-Class Manufacturing NOTE: No files or stolen information are by RedPacket Security. Any...

CVE Alert: CVE-2025-0369

January 19, 2025

Vulnerability Summary: CVE-2025-0369 The JetEngine plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘list_tag’ parameter in all...

CVE Alert: CVE-2025-0515

January 19, 2025

Vulnerability Summary: CVE-2025-0515 The Buzz Club – Night Club, DJ and Music Festival Event WordPress Theme theme for WordPress is...

CVE Alert: CVE-2024-13519

January 19, 2025

Vulnerability Summary: CVE-2024-13519 The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting...

CVE Alert: CVE-2024-12696

January 19, 2025

Vulnerability Summary: CVE-2024-12696 The Picture Gallery – Frontend Image Uploads, AJAX Photo List plugin for WordPress is vulnerable to Stored...

CVE Alert: CVE-2024-13517

January 19, 2025

Vulnerability Summary: CVE-2024-13517 The Easy Digital Downloads – eCommerce Payments and Subscriptions made easy plugin for WordPress is vulnerable to...

CVE Alert: CVE-2025-0557

January 19, 2025

Vulnerability Summary: CVE-2025-0557 A vulnerability classified as problematic has been found in Hyland Alfresco Community Edition and Alfresco Enterprise Edition...

CVE Alert: CVE-2024-13375

January 19, 2025

Vulnerability Summary: CVE-2024-13375 The Adifier System plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions...

CVE Alert: CVE-2024-13433

January 19, 2025

Vulnerability Summary: CVE-2024-13433 The Utilities for MTG plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'mtglink'...

CVE Alert: CVE-2024-13392

January 19, 2025

Vulnerability Summary: CVE-2024-13392 The Rate Star Review Vote – AJAX Reviews, Votes, Star Ratings plugin for WordPress is vulnerable to...

CVE Alert: CVE-2024-13184

January 19, 2025

Vulnerability Summary: CVE-2024-13184 The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to time-based SQL Injection...

CVE Alert: CVE-2024-49338

January 19, 2025

Vulnerability Summary: CVE-2024-49338 IBM App Connect Enterprise 12.0.1.0 through 12.0.7.0and 13.0.1.0 under certain configurations could allow a privileged user to...

CVE Alert: CVE-2025-0560

January 19, 2025

Vulnerability Summary: CVE-2025-0560 A vulnerability, which was classified as problematic, was found in CampCodes School Management Software 1.0. Affected is...

CVE Alert: CVE-2025-0559

January 19, 2025

Vulnerability Summary: CVE-2025-0559 A vulnerability, which was classified as problematic, has been found in Campcodes School Management Software 1.0. This...

CVE Alert: CVE-2024-51448

January 19, 2025

Vulnerability Summary: CVE-2024-51448 IBM Robotic Process Automation 21.0.0 through 21.0.7.17 and 23.0.0 through 23.0.18 could allow a local user to...

CVE Alert: CVE-2025-0558

January 19, 2025

Vulnerability Summary: CVE-2025-0558 A vulnerability classified as critical was found in TDuckCloud tduck-platform up to 4.0. This vulnerability affects the...

CVE Alert: CVE-2024-49824

January 19, 2025

Vulnerability Summary: CVE-2024-49824 IBM Robotic Process Automation 21.0.0 through 21.0.7.18 and 23.0.0 through 23.0.18 and IBM Robotic Process Automation for...

CVE Alert: CVE-2024-47113

January 19, 2025

Vulnerability Summary: CVE-2024-47113 IBM ICP - Voice Gateway 1.0.2, 1.0.2.4, 1.0.3, 1.0.4, 1.0.5, 1.0.6. 1.0.7, 1.0.7.1, and 1.0.8 could allow...

CVE Alert: CVE-2024-45662

January 19, 2025

Vulnerability Summary: CVE-2024-45662 IBM Safer Payments 6.4.0.00 through 6.4.2.07, 6.5.0.00 through 6.5.0.05, and 6.6.0.00 through 6.6.0.03 could allow a remote...

CVE Alert: CVE-2024-49354

January 19, 2025

Vulnerability Summary: CVE-2024-49354 IBM Concert 1.0.0, 1.0.1, and 1.0.2 is vulnerable to sensitive information disclosure through specially crafted API Calls....

CVE Alert: CVE-2024-47106

January 19, 2025

Vulnerability Summary: CVE-2024-47106 IBM Jazz for Service Management 1.1.3 through 1.1.3.22 could allow a remote attacker to obtain sensitive information...

Otelier – 436,855 breached accounts

January 19, 2025

HIBP In July 2024, a threat actor gained access to the hotel management platform Otelier and retrieved customer data from...

threatintel

Cobalt Strike Beacon Detected – 156[.]224[.]19[.]17:443

Cobalt Strike Beacon Detected – 39[.]98[.]40[.]53:8888

[QILIN] – Ransomware Victim: WELKER | World-Class Manufacturing

CVE Alert: CVE-2025-0369

CVE Alert: CVE-2025-0515

CVE Alert: CVE-2024-13519

CVE Alert: CVE-2024-12696

CVE Alert: CVE-2024-13517

CVE Alert: CVE-2025-0557

CVE Alert: CVE-2024-13375

CVE Alert: CVE-2024-13433

CVE Alert: CVE-2024-13392

CVE Alert: CVE-2024-13184

CVE Alert: CVE-2024-49338

CVE Alert: CVE-2025-0560

CVE Alert: CVE-2025-0559

CVE Alert: CVE-2024-51448

CVE Alert: CVE-2025-0558

CVE Alert: CVE-2024-49824

CVE Alert: CVE-2024-47113

CVE Alert: CVE-2024-45662

CVE Alert: CVE-2024-49354

CVE Alert: CVE-2024-47106

Otelier – 436,855 breached accounts

[QILIN] – Ransomware Victim: Sound Ideas

Cobalt Strike Beacon Detected – 47[.]236[.]150[.]94:8000

Cobalt Strike Beacon Detected – 1[.]118[.]35[.]47:443

Cobalt Strike Beacon Detected – 113[.]45[.]158[.]254:443

Cobalt Strike Beacon Detected – 47[.]92[.]109[.]147:9999

You may have missed