threatintel

[AKIRA] – Ransomware Victim: McFarlane

December 26, 2024

Ransomware Group: AKIRA VICTIM NAME: McFarlane NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Cobalt Strike Beacon Detected – 117[.]50[.]163[.]22:8080

December 26, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 123[.]57[.]230[.]183:443

December 26, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 93[.]179[.]101[.]17:80

December 26, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 108[.]165[.]57[.]5:8889

December 26, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 111[.]173[.]118[.]193:81

December 26, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 47[.]109[.]58[.]47:80

December 26, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 101[.]133[.]224[.]88:443

December 26, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

CVE Alert: CVE-2024-12335

December 26, 2024

Vulnerability Summary: CVE-2024-12335 The Avada (Fusion) Builder plugin for WordPress is vulnerable to Information Exposure in all versions up to,...

CVE Alert: CVE-2024-12428

December 26, 2024

Vulnerability Summary: CVE-2024-12428 The WP Data Access – App, Table, Form and Chart Builder plugin plugin for WordPress is vulnerable...

CVE Alert: CVE-2024-12190

December 26, 2024

Vulnerability Summary: CVE-2024-12190 The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom...

CVE Alert: CVE-2024-12636

December 26, 2024

Vulnerability Summary: CVE-2024-12636 The Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WP Legal Pages plugin for WordPress...

CVE Alert: CVE-2024-12272

December 26, 2024

Vulnerability Summary: CVE-2024-12272 The WP Travel Engine – Elementor Widgets | Create Travel Booking Website Using WordPress and Elementor plugin...

CVE Alert: CVE-2024-39727

December 26, 2024

Vulnerability Summary: CVE-2024-39727 IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 uses a web link with untrusted references...

CVE Alert: CVE-2024-8950

December 26, 2024

Vulnerability Summary: CVE-2024-8950 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Arne Informatics Piramit...

CVE Alert: CVE-2024-11281

December 26, 2024

Vulnerability Summary: CVE-2024-11281 The WooCommerce Point of Sale plugin for WordPress is vulnerable to privilege escalation in all versions up...

CVE Alert: CVE-2024-10862

December 26, 2024

Vulnerability Summary: CVE-2024-10862 The NEX-Forms – Ultimate Form Builder – Contact forms and much more plugin for WordPress is vulnerable...

CVE Alert: CVE-2024-39725

December 26, 2024

Vulnerability Summary: CVE-2024-39725 IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 could allow a remote attacker to obtain...

[SARCOMA] – Ransomware Victim: Michelle Accesorios

December 26, 2024

Ransomware Group: SARCOMA VICTIM NAME: Michelle Accesorios NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

CVE Alert: CVE-2024-47102

December 26, 2024

Vulnerability Summary: CVE-2024-47102 IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a...

CVE Alert: CVE-2024-47978

December 26, 2024

Vulnerability Summary: CVE-2024-47978 Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local...

CVE Alert: CVE-2023-5117

December 26, 2024

Vulnerability Summary: CVE-2023-5117 An issue was discovered in GitLab CE/EE affecting all versions before 17.6.0 in which users were unaware...

CVE Alert: CVE-2024-53291

December 26, 2024

Vulnerability Summary: CVE-2024-53291 Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Exposure of Sensitive Information Through Metadata vulnerability. An unauthenticated attacker with...

CVE Alert: CVE-2024-52906

December 26, 2024

Vulnerability Summary: CVE-2024-52906 IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a...

threatintel

[AKIRA] – Ransomware Victim: McFarlane

Cobalt Strike Beacon Detected – 117[.]50[.]163[.]22:8080

Cobalt Strike Beacon Detected – 123[.]57[.]230[.]183:443

Cobalt Strike Beacon Detected – 93[.]179[.]101[.]17:80

Cobalt Strike Beacon Detected – 108[.]165[.]57[.]5:8889

Cobalt Strike Beacon Detected – 111[.]173[.]118[.]193:81

Cobalt Strike Beacon Detected – 47[.]109[.]58[.]47:80

Cobalt Strike Beacon Detected – 101[.]133[.]224[.]88:443

CVE Alert: CVE-2024-12335

CVE Alert: CVE-2024-12428

CVE Alert: CVE-2024-12190

CVE Alert: CVE-2024-12636

CVE Alert: CVE-2024-12272

CVE Alert: CVE-2024-39727

CVE Alert: CVE-2024-8950

CVE Alert: CVE-2024-11281

CVE Alert: CVE-2024-10862

CVE Alert: CVE-2024-39725

[SARCOMA] – Ransomware Victim: Michelle Accesorios

CVE Alert: CVE-2024-47102

CVE Alert: CVE-2024-47978

CVE Alert: CVE-2023-5117

CVE Alert: CVE-2024-53291

CVE Alert: CVE-2024-52906

HackerOne Bug Bounty Disclosure: use-after-free-read-in-curl-multi-perform-with-doh-and-proxy-options-and-resolve-timeouts-catenacyber

HackerOne Bug Bounty Disclosure: sqli-in-url-paths-almuntadhar

HackerOne Bug Bounty Disclosure: exposing-debug-log-file-leads-to-server-full-path-disclosure-kanon

CISA: CISA Releases Three Industrial Control Systems Advisories

[RANSOMHUB] – Ransomware Victim: www[.]centersheetmetal[.]com

You may have missed