[THREEAM] – Ransomware Victim: corehandf[.]com
Ransomware Group: THREEAM VICTIM NAME: corehandfcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
threatintel
[LYNX] – Ransomware Victim: Banfi Vintners
Ransomware Group: LYNX VICTIM NAME: Banfi Vintners NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[LYNX] – Ransomware Victim: Shinsung Delta Tech
Ransomware Group: LYNX VICTIM NAME: Shinsung Delta Tech NOTE: No files or stolen information are by RedPacket Security. Any legal...
CVE Alert: CVE-2025-22700
Vulnerability Summary: CVE-2025-22700 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Traveler Code....
CVE Alert: CVE-2025-22664
Vulnerability Summary: CVE-2025-22664 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Survey Maker team Survey Maker...
CVE Alert: CVE-2025-23645
Vulnerability Summary: CVE-2025-23645 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Optimize Worldwide Find Content IDs...
CVE Alert: CVE-2025-22794
Vulnerability Summary: CVE-2025-22794 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Landoweb Programador World Cup Predictor...
CVE Alert: CVE-2025-22730
Vulnerability Summary: CVE-2025-22730 Missing Authorization vulnerability in Ksher Ksher allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects...
CVE Alert: CVE-2025-24677
Vulnerability Summary: CVE-2025-24677 Improper Control of Generation of Code ('Code Injection') vulnerability in WPSpins Post/Page Copying Tool allows Remote Code...
CVE Alert: CVE-2025-24602
Vulnerability Summary: CVE-2025-24602 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP24 WP24 Domain Check allows...
CVE Alert: CVE-2025-24598
Vulnerability Summary: CVE-2025-24598 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in brandtoss WP Mailster allows Reflected...
CVE Alert: CVE-2025-24599
Vulnerability Summary: CVE-2025-24599 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tribulant Newsletters allows Reflected XSS....
CVE Alert: CVE-2025-24648
Vulnerability Summary: CVE-2025-24648 Incorrect Privilege Assignment vulnerability in wpase.com Admin and Site Enhancements (ASE) allows Privilege Escalation. This issue affects...
[QILIN] – Ransomware Victim: rablighting[.]com
Ransomware Group: QILIN VICTIM NAME: rablightingcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: annegrady[.]org
Ransomware Group: RANSOMHUB VICTIM NAME: annegradyorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[APT73] – Ransomware Victim: boostheat[.]com
Ransomware Group: APT73 VICTIM NAME: boostheatcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-23059
Vulnerability Summary: CVE-2025-23059 A vulnerability in the web-based management interface of HPE Aruba Networking ClearPass Policy Manager exposes directories containing...
CVE Alert: CVE-2025-23058
Vulnerability Summary: CVE-2025-23058 A vulnerability in the ClearPass Policy Manager web-based management interface allows a low-privileged (read-only) authenticated remote attacker...
CVE Alert: CVE-2025-23060
Vulnerability Summary: CVE-2025-23060 A vulnerability in HPE Aruba Networking ClearPass Policy Manager may, under certain circumstances, expose sensitive unencrypted information....
CVE Alert: CVE-2025-0364
Vulnerability Summary: CVE-2025-0364 BigAntSoft BigAnt Server, up to and including version 5.6.06, is vulnerable to unauthenticated remote code execution via...
CVE Alert: CVE-2024-45659
Vulnerability Summary: CVE-2024-45659 IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote attacker to obtain...
CVE Alert: CVE-2025-0509
Vulnerability Summary: CVE-2025-0509 A security issue was found in Sparkle before version 2.64. An attacker can replace an existing signed...
CVE Alert: CVE-2025-25039
Vulnerability Summary: CVE-2025-25039 A vulnerability in the web-based management interface of HPE Aruba Networking ClearPass Policy Manager (CPPM) allows remote...
CVE Alert: CVE-2025-24964
Vulnerability Summary: CVE-2025-24964 Vitest is a testing framework powered by Vite. Affected versions are subject to arbitrary remote Code Execution...
