RedPacket Security - InfoSec News & Tutorials

[QILIN] – Ransomware Victim: jaegerndorfer[.]at

July 24, 2025

Ransomware Group: QILIN VICTIM NAME: jaegerndorferat NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: Donlar Construction

July 24, 2025

Ransomware Group: AKIRA VICTIM NAME: Donlar Construction NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[AKIRA] – Ransomware Victim: Testa Heck Testa & White

July 24, 2025

Ransomware Group: AKIRA VICTIM NAME: Testa Heck Testa & White NOTE: No files or stolen information are by RedPacket Security....

CVE Alert: CVE-2025-4296

July 24, 2025

Vulnerability Summary: CVE-2025-4296 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in HotelRunner B2B allows Forceful Browsing.This issue affects B2B:...

CVE Alert: CVE-2024-41751

July 24, 2025

Vulnerability Summary: CVE-2024-41751 IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 could allow a local,...

CVE Alert: CVE-2025-46099

July 24, 2025

Vulnerability Summary: CVE-2025-46099 In Pluck CMS 4.7.20-dev, an authenticated attacker can upload or create a crafted PHP file under the...

CVE Alert: CVE-2025-4411

July 24, 2025

Vulnerability Summary: CVE-2025-4411 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dataprom Informatics PACS-ACSS...

CVE Alert: CVE-2025-40599

July 24, 2025

Vulnerability Summary: CVE-2025-40599 An authenticated arbitrary file upload vulnerability exists in the SMA 100 series web management interface. A remote...

CVE Alert: CVE-2025-54090

July 24, 2025

Vulnerability Summary: CVE-2025-54090 A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true"....

CVE Alert: CVE-2025-36116

July 24, 2025

Vulnerability Summary: CVE-2025-36116 IBM Db2 Mirror for i 7.4, 7.5, and 7.6 GUI is affected by cross-site WebSocket hijacking vulnerability....

CVE Alert: CVE-2025-36117

July 24, 2025

Vulnerability Summary: CVE-2025-36117 IBM Db2 Mirror for i 7.4, 7.5, and 7.6 does not disallow the session id after use...

CVE Alert: CVE-2025-33077

July 24, 2025

Vulnerability Summary: CVE-2025-33077 IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused...

CVE Alert: CVE-2025-33076

July 24, 2025

Vulnerability Summary: CVE-2025-33076 IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused...

[QILIN] – Ransomware Victim: Metricon Homes

July 24, 2025

Ransomware Group: QILIN VICTIM NAME: Metricon Homes NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[EVEREST] – Ransomware Victim: New American Funding – Full leak published

July 24, 2025

Ransomware Group: EVEREST VICTIM NAME: New American Funding - Full leak published NOTE: No files or stolen information are by...

[PODCAST] TruffleHog: Leaked Credential Discovery and Analysis

July 24, 2025

🎧 Listen to this episode 👉 Episode length: ~11 minutes 🧠 Episode Summary In this episode, we explore TruffleHog, an...

Kongtuke Filefix Leads To New Interlock Rat Variant

July 24, 2025

Researchers from The DFIR Report, in partnership with Proofpoint, have identified a new and resilient variant of the Interlock ransomware...

CVE Alert: CVE-2025-40597

July 24, 2025

Vulnerability Summary: CVE-2025-40597 A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause...

CVE Alert: CVE-2025-40596

July 24, 2025

Vulnerability Summary: CVE-2025-40596 A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause...

CVE Alert: CVE-2025-33020

July 24, 2025

Vulnerability Summary: CVE-2025-33020 IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 transmits sensitive information without encryption that could allow...

CVE Alert: CVE-2025-40598

July 24, 2025

Vulnerability Summary: CVE-2025-40598 A Reflected cross-site scripting (XSS) vulnerability exists in the SMA100 series web interface, allowing a remote unauthenticated...

CVE Alert: CVE-2025-6018

July 24, 2025

Vulnerability Summary: CVE-2025-6018 A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules (PAM)....

CVE Alert: CVE-2025-2634

July 24, 2025

Vulnerability Summary: CVE-2025-2634 Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in fontmgr may result...

CVE Alert: CVE-2025-2633

July 24, 2025

Vulnerability Summary: CVE-2025-2633 Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in lvre!UDecStrToNum that may...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed