North Korean IT Workers in Western Firms Now Demanding Ransom for Stolen Data
North Korean information technology (IT) workers who obtain employment under false identities in Western companies are not only stealing intellectual...
threatintel
CVE Alert: CVE-2024-49319
Vulnerability Summary: CVE-2024-49319 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in B.M. Rafiul Alam...
CVE Alert: CVE-2024-49308
Vulnerability Summary: CVE-2024-49308 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Toast Plugins Animator...
CVE Alert: CVE-2024-7755
Vulnerability Summary: CVE-2024-7755 The EWON FLEXY 202 transmits credentials using a weak encoding method base64. An attacker who is present...
CVE Alert: CVE-2024-49307
Vulnerability Summary: CVE-2024-49307 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Oliver Schlöbe Admin...
CVE Alert: CVE-2024-49316
Vulnerability Summary: CVE-2024-49316 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in zodiac Akismet htaccess...
CVE Alert: CVE-2024-49255
Vulnerability Summary: CVE-2024-49255 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Daniele Alessandra Da...
CVE Alert: CVE-2024-49261
Vulnerability Summary: CVE-2024-49261 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in LOOS,Inc. Arkhe Blocks...
CVE Alert: CVE-2024-49259
Vulnerability Summary: CVE-2024-49259 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NicheAddons Primary Addon...
CVE Alert: CVE-2024-49263
Vulnerability Summary: CVE-2024-49263 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Takashi Matsuyama My...
CVE Alert: CVE-2024-49248
Vulnerability Summary: CVE-2024-49248 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Igor Funa Ad...
[RANSOMHUB] – Ransomware Victim: Alqaryahauction[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: Alqaryahauctioncom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Cobalt Strike Beacon Detected – 89[.]245[.]139[.]188:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 116[.]196[.]95[.]100:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 81[.]70[.]254[.]166:7788
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 106[.]54[.]46[.]32:8003
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 1[.]94[.]141[.]215:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 101[.]36[.]111[.]175:6379
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]116[.]64[.]242:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 45[.]152[.]64[.]203:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[RANSOMHUB] – Ransomware Victim: www[.]qal[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: wwwqalcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Beware: Fake Google Meet Pages Deliver Infostealers in Ongoing ClickFix Campaign
Threat actors are leveraging fake Google Meet web pages as part of an ongoing malware campaign dubbed ClickFix to deliver...
U.S. and Allies Warn of Iranian Cyberattacks on Critical Infrastructure in Year-Long Campaign
Cybersecurity and intelligence agencies from Australia, Canada, and the U.S. have warned about a year-long campaign undertaken by Iranian cyber...
CVE Alert: CVE-2024-49278
Vulnerability Summary: CVE-2024-49278 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in omnipressteam Omnipress allows...
