CISA: Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies
Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies CISA has observed cyber threat actors leveraging unencrypted...
threatintel
CISA: CISA Releases Twenty-One Industrial Control Systems Advisories
CISA Releases Twenty-One Industrial Control Systems Advisories CISA released twenty-one Industrial Control Systems (ICS) advisories on October 10, 2024. These...
CISA: CISA and FBI Release Joint Guidance on Product Security Bad Practices for Public Comment
CISA and FBI Release Joint Guidance on Product Security Bad Practices for Public Comment Today, the Cybersecurity and Infrastructure Security...
CISA: Guidance: Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM)
Guidance: Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM) Today, CISA published the Framing Software Component Transparency, created...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on October 15, 2024. These...
CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on October 17, 2024. These...
CISA: CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force
CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force Today,...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on October 22, 2024. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Oracle Releases Quarterly Critical Patch Update Advisory for October 2024
Oracle Releases Quarterly Critical Patch Update Advisory for October 2024 Oracle released its quarterly Critical Patch Update Advisory for October...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
[CLOAK] – Ransomware Victim: mm********[.]com
Ransomware Group: CLOAK VICTIM NAME: mm********com NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[HUNTERS] – Ransomware Victim: IdeaLab
Ransomware Group: HUNTERS VICTIM NAME: IdeaLab NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Gophish Framework Used in Phishing Campaigns to Deploy Remote Access Trojans
Russian-speaking users have become the target of a new phishing campaign that leverages an open-source phishing toolkit called Gophish to...
[FOG] – Ransomware Victim: Lincoln University (lincolnu[.]edu)
Ransomware Group: FOG VICTIM NAME: Lincoln University (lincolnuedu) NOTE: No files or stolen information are by RedPacket Security. Any legal...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on October 22, 2024. These...
[BLACKSUIT] – Ransomware Victim: Aerotecnic
Ransomware Group: BLACKSUIT VICTIM NAME: Aerotecnic NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[SPACEBEARS] – Ransomware Victim: Precision Steel Services
Ransomware Group: SPACEBEARS VICTIM NAME: Precision Steel Services NOTE: No files or stolen information are by RedPacket Security. Any legal...
[FOG] – Ransomware Victim: Clear Connection (clearconnection[.]com)
Ransomware Group: FOG VICTIM NAME: Clear Connection (clearconnectioncom) NOTE: No files or stolen information are by RedPacket Security. Any legal...
Security Flaw in Styra’s OPA Exposes NTLM Hashes to Remote Attackers
Details have emerged about a now-patched security flaw in Styra's Open Policy Agent (OPA) that, if successfully exploited, could have...
Cybercriminals Exploiting Docker API Servers for SRBMiner Crypto Mining Attacks
Bad actors have been observed targeting Docker remote API servers to deploy the SRBMiner crypto miner on compromised instances, according...
CVE Alert: CVE-2024-10197
Vulnerability Summary: CVE-2024-10197 A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected...
CVE Alert: CVE-2024-10201
Vulnerability Summary: CVE-2024-10201 Administrative Management System from Wellchoose does not properly validate uploaded file types, allowing remote attackers with regular...
