Month: May 2025

Cobalt Strike Beacon Detected – 43[.]242[.]200[.]223:80

May 9, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 148[.]66[.]16[.]230:80

May 9, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 175[.]178[.]120[.]225:7443

May 9, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

CVE Alert: CVE-2024-9448

May 9, 2025

Vulnerability Summary: CVE-2024-9448 On affected platforms running Arista EOS with Traffic Policies configured the vulnerability will cause received untagged packets...

CVE Alert: CVE-2025-46712

May 9, 2025

Vulnerability Summary: CVE-2025-46712 Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 (for...

CVE Alert: CVE-2024-8100

May 9, 2025

Vulnerability Summary: CVE-2024-8100 On affected versions of the Arista CloudVision Portal (CVP on-prem), the time-bound device onboarding token can be...

CVE Alert: CVE-2025-0505

May 9, 2025

Vulnerability Summary: CVE-2025-0505 On Arista CloudVision systems (virtual or physical on-premise deployments), Zero Touch Provisioning can be used to gain...

CVE Alert: CVE-2025-27695

May 9, 2025

Vulnerability Summary: CVE-2025-27695 Dell Wyse Management Suite, versions prior to WMS 5.1 contain an Authentication Bypass by Spoofing vulnerability. A...

CVE Alert: CVE-2025-1329

May 9, 2025

Vulnerability Summary: CVE-2025-1329 IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local...

CVE Alert: CVE-2025-46336

May 9, 2025

Vulnerability Summary: CVE-2025-46336 Rack::Session is a session management implementation for Rack. In versions starting from 2.0.0 to before 2.1.1, when...

CVE Alert: CVE-2025-1331

May 9, 2025

Vulnerability Summary: CVE-2025-1331 IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local...

CVE Alert: CVE-2025-1330

May 9, 2025

Vulnerability Summary: CVE-2025-1330 IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local...

CVE Alert: CVE-2025-27720

May 9, 2025

Vulnerability Summary: CVE-2025-27720 The Pixmeo Osirix MD Web Portal sends credential information without encryption, which could allow an attacker to...

[DEVMAN] – Ransomware Victim: dailynews[.]co[.]th

May 9, 2025

Ransomware Group: DEVMAN VICTIM NAME: dailynewscoth NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Inside the LockBit Back‑end: what 106 k database rows reveal about the world’s busiest RaaS.

May 9, 2025

How 40 MB of SQL unmasks industrial-scale ransomware operations In a surprising development, it was recently revealed that the notorious...

CVE Alert: CVE-2025-47732

May 9, 2025

Vulnerability Summary: CVE-2025-47732 Microsoft Dataverse Remote Code Execution Vulnerability Affected Endpoints: No affected endpoints listed. Published Date: 5/8/2025, 11:15:52 PM...

CVE Alert: CVE-2025-27578

May 9, 2025

Vulnerability Summary: CVE-2025-27578 Pixmeo OsiriX MD is vulnerable to a use after free scenario, which could allow an attacker to...

CVE Alert: CVE-2025-31946

May 9, 2025

Vulnerability Summary: CVE-2025-31946 Pixmeo OsiriX MD is vulnerable to a local use after free scenario, which could allow an attacker...

CVE Alert: CVE-2025-33072

May 9, 2025

Vulnerability Summary: CVE-2025-33072 Improper access control in Azure allows an unauthorized attacker to disclose information over a network. Affected Endpoints:...

CVE Alert: CVE-2025-29972

May 9, 2025

Vulnerability Summary: CVE-2025-29972 Server-Side Request Forgery (SSRF) in Azure allows an authorized attacker to perform spoofing over a network. Affected...

CVE Alert: CVE-2025-29813

May 9, 2025

Vulnerability Summary: CVE-2025-29813 An elevation of privilege vulnerability exists when Visual Studio improperly handles pipeline job tokens. An attacker who...

CVE Alert: CVE-2025-4441

May 9, 2025

Vulnerability Summary: CVE-2025-4441 A vulnerability was found in D-Link DIR-605L 2.13B01. It has been classified as critical. This affects the...

CVE Alert: CVE-2025-4440

May 9, 2025

Vulnerability Summary: CVE-2025-4440 A vulnerability was found in H3C GR-1800AX up to 100R008 and classified as critical. Affected by this...

CVE Alert: CVE-2025-29827

May 9, 2025

Vulnerability Summary: CVE-2025-29827 Improper Authorization in Azure Automation allows an authorized attacker to elevate privileges over a network. Affected Endpoints:...

Month: May 2025

Cobalt Strike Beacon Detected – 43[.]242[.]200[.]223:80

Cobalt Strike Beacon Detected – 148[.]66[.]16[.]230:80

Cobalt Strike Beacon Detected – 175[.]178[.]120[.]225:7443

CVE Alert: CVE-2024-9448

CVE Alert: CVE-2025-46712

CVE Alert: CVE-2024-8100

CVE Alert: CVE-2025-0505

CVE Alert: CVE-2025-27695

CVE Alert: CVE-2025-1329

CVE Alert: CVE-2025-46336

CVE Alert: CVE-2025-1331

CVE Alert: CVE-2025-1330

CVE Alert: CVE-2025-27720

[DEVMAN] – Ransomware Victim: dailynews[.]co[.]th

Inside the LockBit Back‑end: what 106 k database rows reveal about the world’s busiest RaaS.

CVE Alert: CVE-2025-47732

CVE Alert: CVE-2025-27578

CVE Alert: CVE-2025-31946

CVE Alert: CVE-2025-33072

CVE Alert: CVE-2025-29972

CVE Alert: CVE-2025-29813

CVE Alert: CVE-2025-4441

CVE Alert: CVE-2025-4440

CVE Alert: CVE-2025-29827

Cobalt Strike Beacon Detected – 118[.]107[.]221[.]14:443

Cobalt Strike Beacon Detected – 45[.]125[.]33[.]150:80

Cobalt Strike Beacon Detected – 101[.]43[.]2[.]116:80

Cobalt Strike Beacon Detected – 8[.]140[.]239[.]162:80

Cobalt Strike Beacon Detected – 120[.]27[.]235[.]78:80

You may have missed