Brute Ratel C4 Detected – 94[.]102[.]49[.]64:443
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
threatintel
Brute Ratel C4 Detected – 167[.]172[.]140[.]210:443
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Brute Ratel C4 Detected – 178[.]33[.]49[.]56:8443
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
Brute Ratel C4 Detected – 54[.]249[.]138[.]251:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
LockBit 3.0 Ransomware Victim: floresfunza[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: hmets[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Anonymous hacked Yandex taxi causing a massive traffic jam in Moscow
The popular collective Anonymous and the IT Army of Ukraine hacked the Yandex Taxi app causing a massive traffic jam...
BeatRev – POC For Frustrating/Defeating Malware Analysts
BeatRev Version 2Disclaimer/LiabilityThe work that follows is a POC to enable malware to "key" itself to a particular victim in...
IRS mistakenly published confidential info for roughly 120K taxpayers
The Internal Revenue Service (IRS) mistakenly leaked confidential information for approximately 120,000 taxpayers. Bad news for approximately 120,000 taxpayers who...
Alleged Iranian threat actors leak the code of their CodeRAT malware
The author of the remote access trojan (RAT) CodeRAT has leaked the source code of its malware on GitHub. The...
Security Affairs newsletter Round 382
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Google rolled out emergency fixes to address actively exploited Chrome zero-day
Google rolled out emergency fixes to address a vulnerability in the Chrome web browser that is being actively exploited in...
ApacheTomcatScanner – A Python Script To Scan For Apache Tomcat Server Vulnerabilities
A python script to scan for Apache Tomcat server vulnerabilities. FeaturesMultithreaded workers to search for Apache tomcat servers.Multiple target source...
Samsung discloses a second data breach this year
Electronics giant Samsung has confirmed a new data breach after some of its US systems were compromised in July. After...
HIVE Ransomware Victim: Eurocell
HIVE Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Buzzing in the Background: BumbleBee, a New Modular Backdoor Evolved From BookWorm
In March 2021, we investigated a backdoor with a unique modular architecture and called it BumbleBee due to a string...
The Prynt Stealer malware contains a secret backdoor. Crooks steal data from other cybercriminals
The information-stealing malware Prynt Stealer contains a backdoor that allows stealing the data it has infiltrated from victims. Zscaler researchers...
LockBit 3.0 Ransomware Victim: peakinternational[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
CISA: CISA, NSA, and ODNI Release Part One of Guidance on Securing the Software Supply Chain
CISA, NSA, and ODNI Release Part One of Guidance on Securing the Software Supply Chain CISA, the National Security Agency...
CISA: Mozilla Releases Security Update for Thunderbird
Mozilla Releases Security Update for Thunderbird Mozilla has released security update to address a vulnerability in Thunderbird. An attacker could...
Another Ransomware For Linux Likely In Development
Uptycs researchers recently spotted a new Linux ransomware that appears to be under active development. The Uptycs Threat Research team...
Experts link Raspberry Robin Malware to Evil Corp cybercrime gang
Researchers attribute the Raspberry Robin malware to the Russian cybercrime group known as Evil Corp group. IBM Security X-Force researchers...
Aced – Tool to parse and resolve a single targeted Active Directory principal’s DACL
Aced is a tool to parse and resolve a single targeted Active Directory principal's DACL. Aced will identify interesting inbound...
Google Chrome issue allows overwriting the clipboard content
A security issue in the Google Chrome browser could allow malicious web pages to automatically overwrite clipboard content. A vulnerability...
