CVE Alert: CVE-2025-47730
Vulnerability Summary: CVE-2025-47730 The TeleMessage archiving backend through 2025-05-05 accepts API calls (to request an authentication token) from the TM...
Month: May 2025
CVE Alert: CVE-2025-26842
Vulnerability Summary: CVE-2025-26842 An issue was discovered in Znuny through 7.1.3. If access to a ticket is not given, the...
[MEDUSA] – Ransomware Victim: Russell Child Development Center
Ransomware Group: MEDUSA VICTIM NAME: Russell Child Development Center NOTE: No files or stolen information are by RedPacket Security. Any...
[NIGHTSPIRE] – Ransomware Victim: North Kitsap School District
Ransomware Group: NIGHTSPIRE VICTIM NAME: North Kitsap School District NOTE: No files or stolen information are by RedPacket Security. Any...
[CLOP] – Ransomware Victim: CHECKCITY[.]COM
Ransomware Group: CLOP VICTIM NAME: CHECKCITYCOM NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[MEDUSA] – Ransomware Victim: Lake Shore Paving
Ransomware Group: MEDUSA VICTIM NAME: Lake Shore Paving NOTE: No files or stolen information are by RedPacket Security. Any legal...
[NIGHTSPIRE] – Ransomware Victim: C[.]E[.]E[.] APTA
Ransomware Group: NIGHTSPIRE VICTIM NAME: CEE APTA NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
HackerOne Bug Bounty Disclosure: enable-fa-without-verifying-the-email-samtime
Company Name: XVIDEOS Company HackerOne URL: https://hackerone.com/xvideos Submitted By:samtimeLink to Submitters Profile:https://hackerone.com/samtime Report Title:Enable 2FA without verifying the emailReport Link:https://hackerone.com/reports/3016540Date...
[AKIRA] – Ransomware Victim: Bervar and Jones
Ransomware Group: AKIRA VICTIM NAME: Bervar and Jones NOTE: No files or stolen information are by RedPacket Security. Any legal...
[AKIRA] – Ransomware Victim: Klampfer Elektroanlagen
Ransomware Group: AKIRA VICTIM NAME: Klampfer Elektroanlagen NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2025-1948
Vulnerability Summary: CVE-2025-1948 In Eclipse Jetty versions 12.0.0 to 12.0.16 included, an HTTP/2 client can specify a very large value...
CVE Alert: CVE-2025-44021
Vulnerability Summary: CVE-2025-44021 OpenStack Ironic before 29.0.1 can write unintended files to a target node disk during image handling (if...
CVE Alert: CVE-2025-4132
Vulnerability Summary: CVE-2025-4132 Rapid7 Corporate Website prior to May 2nd 2025, suffered from a URL Redirection to Untrusted Site ('Open...
CVE Alert: CVE-2025-26847
Vulnerability Summary: CVE-2025-26847 An issue was discovered in Znuny before 7.1.5. When generating a support bundle, not all passwords are...
CVE Alert: CVE-2025-26845
Vulnerability Summary: CVE-2025-26845 An Eval Injection issue was discovered in Znuny through 7.1.3. A user with write access to the...
CVE Alert: CVE-2025-30101
Vulnerability Summary: CVE-2025-30101 Dell PowerScale OneFS, versions 9.8.0.0 through 9.10.1.0, contain a time-of-check time-of-use (TOCTOU) race condition vulnerability. An unauthenticated...
CVE Alert: CVE-2024-13009
Vulnerability Summary: CVE-2024-13009 In Eclipse Jetty versions 9.4.0 to 9.4.56 a buffer can be incorrectly released when confronted with a...
CVE Alert: CVE-2025-30102
Vulnerability Summary: CVE-2025-30102 Dell PowerScale OneFS, versions 9.4.0.0 through 9.10.1.0, contains an out-of-bounds write vulnerability. A local low privileged attacker...
CVE Alert: CVE-2024-11186
Vulnerability Summary: CVE-2024-11186 On affected versions of the CloudVision Portal, improper access controls could enable a malicious authenticated user to...
CVE Alert: CVE-2024-12378
Vulnerability Summary: CVE-2024-12378 On affected platforms running Arista EOS with secure Vxlan configured, restarting the Tunnelsec agent will result in...
[LOCKBIT3] – Ransomware Victim: hennessyfunds[.]com
Ransomware Group: LOCKBIT3 VICTIM NAME: hennessyfundscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RHYSIDA] – Ransomware Victim: Mountain View Mushrooms
Ransomware Group: RHYSIDA VICTIM NAME: Mountain View Mushrooms NOTE: No files or stolen information are by RedPacket Security. Any legal...
ByeDPIAndroid – App To Bypass Censorship On Android
Android application that runs a local VPN service to bypass DPI (Deep Packet Inspection) and censorship. This application runs a...
Witcher – Managing GitHub Advanced Security (GHAS) Controls At Scale
Implement and monitor Appsec control at scale. Requirements NodeJS 20.13 Tested on Mac Ubuntu How to install $ git clone...
