[PLAY] – Ransomware Victim: Eliel Cycling
Ransomware Group: PLAY VICTIM NAME: Eliel Cycling NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Month: May 2025
CVE Alert: CVE-2025-5232
Vulnerability Summary: CVE-2025-5232 A vulnerability, which was classified as critical, has been found in PHPGurukul Student Study Center Management System...
CVE Alert: CVE-2025-5228
Vulnerability Summary: CVE-2025-5228 A vulnerability was found in D-Link DI-8100 up to 20250523. It has been classified as critical. Affected...
CVE Alert: CVE-2025-5230
Vulnerability Summary: CVE-2025-5230 A vulnerability classified as critical has been found in PHPGurukul Online Nurse Hiring System 1.0. This affects...
CVE Alert: CVE-2025-5229
Vulnerability Summary: CVE-2025-5229 A vulnerability was found in Campcodes Online Hospital Management System 1.0. It has been rated as critical....
CVE Alert: CVE-2025-5231
Vulnerability Summary: CVE-2025-5231 A vulnerability classified as critical was found in PHPGurukul Company Visitor Management System 1.0. This vulnerability affects...
CVE Alert: CVE-2025-41652
Vulnerability Summary: CVE-2025-41652 The devices are vulnerable to an authentication bypass due to flaws in the authorization mechanism. An unauthenticated...
CVE Alert: CVE-2025-23393
Vulnerability Summary: CVE-2025-23393 A Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in spacewalk-java allows...
CVE Alert: CVE-2025-41653
Vulnerability Summary: CVE-2025-41653 An unauthenticated remote attacker can exploit a denial-of-service vulnerability in the device's web server functionality by sending...
CVE Alert: CVE-2025-41651
Vulnerability Summary: CVE-2025-41651 Due to missing authentication on a critical function of the devices an unauthenticated remote attacker can execute...
CVE Alert: CVE-2025-41650
Vulnerability Summary: CVE-2025-41650 An unauthenticated remote attacker can exploit input validation in cmd services of the devices, allowing them to...
Cobalt Strike Beacon Detected – 1[.]92[.]135[.]168:8074
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 124[.]70[.]219[.]41:7071
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 8[.]156[.]75[.]17:4444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 124[.]221[.]64[.]229:8081
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 8[.]148[.]20[.]113:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]117[.]125[.]219:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 154[.]8[.]233[.]224:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[QILIN] – Ransomware Victim: innovasystems[.]com
Ransomware Group: QILIN VICTIM NAME: innovasystemscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-5117
Vulnerability Summary: CVE-2025-5117 The Property plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on...
CVE Alert: CVE-2025-5271
Vulnerability Summary: CVE-2025-5271 Previewing a response in Devtools ignored CSP headers, which could have allowed content injection attacks. This vulnerability...
CVE Alert: CVE-2025-5244
Vulnerability Summary: CVE-2025-5244 A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected...
CVE Alert: CVE-2025-41649
Vulnerability Summary: CVE-2025-41649 An unauthenticated remote attacker can exploit insufficient input validation to write data beyond the bounds of a...
CVE Alert: CVE-2025-5270
Vulnerability Summary: CVE-2025-5270 In certain cases, SNI could have been sent unencrypted even when encrypted DNS was enabled. This vulnerability...
