CVE Alert: CVE-2025-26906
Vulnerability Summary: CVE-2025-26906 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ren Ventura WP Delete User...
Year: 2025
CVE Alert: CVE-2025-24315
Vulnerability Summary: CVE-2025-24315 Unauthenticated attackers can add devices of other users to their scenes (or arbitrary scenes of other arbitrary...
CVE Alert: CVE-2025-26903
Vulnerability Summary: CVE-2025-26903 Cross-Site Request Forgery (CSRF) vulnerability in RealMag777 InPost Gallery allows Cross Site Request Forgery. This issue affects...
Cobalt Strike Beacon Detected – 176[.]65[.]138[.]202:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 101[.]133[.]153[.]245:444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 121[.]37[.]180[.]38:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 43[.]163[.]215[.]175:8023
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 202[.]144[.]192[.]24:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[LOCKBIT3] – Ransomware Victim: aqhch[.]com[.]cn
Ransomware Group: LOCKBIT3 VICTIM NAME: aqhchcomcn NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[INCRANSOM] – Ransomware Victim: Koninklijke Ahold Delhaize N[.]V[.]
Ransomware Group: INCRANSOM VICTIM NAME: Koninklijke Ahold Delhaize NV NOTE: No files or stolen information are by RedPacket Security. Any...
[SAFEPAY] – Ransomware Victim: niemann[.]de
Ransomware Group: SAFEPAY VICTIM NAME: niemannde NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: www[.]nelson[.]edu
Ransomware Group: QILIN VICTIM NAME: wwwnelsonedu NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-26870
Vulnerability Summary: CVE-2025-26870 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound JetEngine allows DOM-Based XSS....
CVE Alert: CVE-2025-26857
Vulnerability Summary: CVE-2025-26857 Unauthenticated attackers can rename arbitrary devices of arbitrary users (i.e., EV chargers). Affected Endpoints: No affected endpoints...
CVE Alert: CVE-2025-26880
Vulnerability Summary: CVE-2025-26880 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sonalsinha21 SKT Skill Bar allows...
CVE Alert: CVE-2025-26749
Vulnerability Summary: CVE-2025-26749 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPFactory Additional Custom Product Tabs...
CVE Alert: CVE-2025-26748
Vulnerability Summary: CVE-2025-26748 Cross-Site Request Forgery (CSRF) vulnerability in LOOS,Inc. Arkhe allows PHP Local File Inclusion. This issue affects Arkhe:...
CVE Alert: CVE-2025-26930
Vulnerability Summary: CVE-2025-26930 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in alleythemes Home Services allows DOM-Based...
CVE Alert: CVE-2025-26951
Vulnerability Summary: CVE-2025-26951 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in covertnine C9 Blocks allows DOM-Based...
CVE Alert: CVE-2025-26950
Vulnerability Summary: CVE-2025-26950 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AddonsPress Nepali Date Converter allows...
CVE Alert: CVE-2025-26927
Vulnerability Summary: CVE-2025-26927 Unrestricted Upload of File with Dangerous Type vulnerability in EPC AI Hub allows Upload a Web Shell...
CVE Alert: CVE-2025-26934
Vulnerability Summary: CVE-2025-26934 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in graphthemes Glossy Blog allows Stored...
[PLAY] – Ransomware Victim: Red Chamber
Ransomware Group: PLAY VICTIM NAME: Red Chamber NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[RALORD] – Ransomware Victim: Bio-Clima Service
Ransomware Group: RALORD VICTIM NAME: Bio-Clima Service NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
