threatintel

CVE Alert: CVE-2024-12142

January 18, 2025

Vulnerability Summary: CVE-2024-12142 CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure of...

CVE Alert: CVE-2024-10497

January 18, 2025

Vulnerability Summary: CVE-2024-10497 CWE-639: Authorization Bypass Through User-Controlled Key vulnerability exists that could allow an authorized attacker to modify values...

CVE Alert: CVE-2025-0529

January 18, 2025

Vulnerability Summary: CVE-2025-0529 A vulnerability, which was classified as critical, was found in code-projects Train Ticket Reservation System 1.0. This...

CVE Alert: CVE-2025-0528

January 18, 2025

Vulnerability Summary: CVE-2025-0528 A vulnerability, which was classified as critical, has been found in Tenda AC8, AC10 and AC18 16.03.10.20....

CVE Alert: CVE-2025-0530

January 18, 2025

Vulnerability Summary: CVE-2025-0530 A vulnerability has been found in code-projects Job Recruitment 1.0 and classified as problematic. This vulnerability affects...

CVE Alert: CVE-2025-0527

January 18, 2025

Vulnerability Summary: CVE-2025-0527 A vulnerability classified as critical was found in code-projects Admission Management System 1.0. Affected by this vulnerability...

CVE Alert: CVE-2024-10498

January 18, 2025

Vulnerability Summary: CVE-2024-10498 CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow...

CVE Alert: CVE-2024-26156

January 18, 2025

Vulnerability Summary: CVE-2024-26156 All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 are vulnerable to reflected cross...

CVE Alert: CVE-2024-26153

January 18, 2025

Vulnerability Summary: CVE-2024-26153 All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.9.19 are vulnerable to cross-site request...

CVE Alert: CVE-2024-45832

January 18, 2025

Vulnerability Summary: CVE-2024-45832 Hard-coded credentials were included as part of the application binary. These credentials served as part of the...

CVE Alert: CVE-2025-0531

January 18, 2025

Vulnerability Summary: CVE-2025-0531 A vulnerability was found in code-projects Chat System 1.0 and classified as critical. This issue affects some...

CVE Alert: CVE-2024-26157

January 18, 2025

Vulnerability Summary: CVE-2024-26157 All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 are vulnerable to reflected cross...

CVE Alert: CVE-2024-54681

January 18, 2025

Vulnerability Summary: CVE-2024-54681 Multiple bash files were present in the application's private directory. Bash files can be used on their...

CVE Alert: CVE-2024-26155

January 18, 2025

Vulnerability Summary: CVE-2024-26155 All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 expose clear text credentials in...

CVE Alert: CVE-2024-26154

January 18, 2025

Vulnerability Summary: CVE-2024-26154 All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 are vulnerable to reflected cross...

CVE Alert: CVE-2024-53683

January 18, 2025

Vulnerability Summary: CVE-2024-53683 A valid set of credentials in a .js file and a static token for communication were obtained...

CVE Alert: CVE-2024-12757

January 18, 2025

Vulnerability Summary: CVE-2024-12757 Nedap Librix Ecoreader is missing authentication for critical functions that could allow an unauthenticated attacker to potentially...

[QILIN] – Ransomware Victim: Refreshment Services Pepsi

January 18, 2025

Ransomware Group: QILIN VICTIM NAME: Refreshment Services Pepsi NOTE: No files or stolen information are by RedPacket Security. Any legal...

[MONEYMESSAGE] – Ransomware Victim: Marina Family Medical

January 18, 2025

Ransomware Group: MONEYMESSAGE VICTIM NAME: Marina Family Medical NOTE: No files or stolen information are by RedPacket Security. Any legal...

[QILIN] – Ransomware Victim: USE Federal Credit Union

January 18, 2025

Ransomware Group: QILIN VICTIM NAME: USE Federal Credit Union NOTE: No files or stolen information are by RedPacket Security. Any...

[CLOP] – Ransomware Victim: MERCURYGATE[.]COM

January 18, 2025

Ransomware Group: CLOP VICTIM NAME: MERCURYGATECOM NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Cobalt Strike Beacon Detected – 36[.]156[.]124[.]29:8099

January 18, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 111[.]119[.]198[.]247:9998

January 18, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 111[.]231[.]22[.]61:443

January 18, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

threatintel

CVE Alert: CVE-2024-12142

CVE Alert: CVE-2024-10497

CVE Alert: CVE-2025-0529

CVE Alert: CVE-2025-0528

CVE Alert: CVE-2025-0530

CVE Alert: CVE-2025-0527

CVE Alert: CVE-2024-10498

CVE Alert: CVE-2024-26156

CVE Alert: CVE-2024-26153

CVE Alert: CVE-2024-45832

CVE Alert: CVE-2025-0531

CVE Alert: CVE-2024-26157

CVE Alert: CVE-2024-54681

CVE Alert: CVE-2024-26155

CVE Alert: CVE-2024-26154

CVE Alert: CVE-2024-53683

CVE Alert: CVE-2024-12757

[QILIN] – Ransomware Victim: Refreshment Services Pepsi

[MONEYMESSAGE] – Ransomware Victim: Marina Family Medical

[QILIN] – Ransomware Victim: USE Federal Credit Union

[CLOP] – Ransomware Victim: MERCURYGATE[.]COM

Cobalt Strike Beacon Detected – 36[.]156[.]124[.]29:8099

Cobalt Strike Beacon Detected – 111[.]119[.]198[.]247:9998

Cobalt Strike Beacon Detected – 111[.]231[.]22[.]61:443

[AKIRA] – Ransomware Victim: Chimu Agropecuaria S[.]A[.]

[HUNTERS] – Ransomware Victim: Omni United

[CACTUS] – Ransomware Victim: alphabaking[.]com

[CACTUS] – Ransomware Victim: holtcat[.]com

CVE Alert: CVE-2025-1067

You may have missed