CVE Alert: CVE-2024-50419
Vulnerability Summary: CVE-2024-50419 Incorrect Authorization vulnerability in Wpsoul Greenshift – animation and page builder blocks allows Exploiting Incorrectly Configured Access...
CVE Alert: CVE-2024-51258
Vulnerability Summary: CVE-2024-51258 DrayTek Vigor3900 1.5.1.3 allows attackers to inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling...
CVE Alert: CVE-2024-50344
Vulnerability Summary: CVE-2024-50344 I, Librarian is an open-source version of a PDF managing SaaS. Supplemental Files are allowed to be...
CVE Alert: CVE-2024-9110
Vulnerability Summary: CVE-2024-9110 A medium severity vulnerability has been identified within Privileged Identity which can allow an attacker to perform...
CVE Alert: CVE-2024-10456
Vulnerability Summary: CVE-2024-10456 Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a deserialization vulnerability that targets...
CVE Alert: CVE-2024-10546
Vulnerability Summary: CVE-2024-10546 A vulnerability classified as critical was found in open-scratch Teaching 在线教学平台 up to 2.7. This vulnerability affects...
CVE Alert: CVE-2024-10086
Vulnerability Summary: CVE-2024-10086 A vulnerability was identified in Consul and Consul Enterprise such that the server response did not explicitly...
CVE Alert: CVE-2024-10005
Vulnerability Summary: CVE-2024-10005 A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using URL paths in L7...
CVE Alert: CVE-2024-9419
Vulnerability Summary: CVE-2024-9419 Client / Server PCs with the HP Smart Universal Printing Driver installed are potentially vulnerable to Remote...
CVE Alert: CVE-2024-10006
Vulnerability Summary: CVE-2024-10006 A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using Headers in L7 traffic...
[STORMOUS] – Ransomware Victim: TRANSAK
Ransomware Group: STORMOUS VICTIM NAME: TRANSAK NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Midnight Blizzard Spearphishing Campaign Exposes Thousands to RDP Threats
The Midnight Blizzard spearphishing campaign poses a serious threat, targeting thousands with malicious RDP files and information-stealing tactics. Microsoft has...
Over Half of US County Websites Are Vulnerable to Spoofing
Security concerns are ringing alarm bells as an alarming report reveals that many US county websites are at risk of...
LiteSpeed Cache Plugin Vulnerability Exposes Admin Access Risk
A newly discovered LiteSpeed Cache plugin vulnerability allows unauthorized users to gain admin access, impacting over 6 million WordPress sites....
Apple Security Update: Critical Patches for macOS and iOS Vulnerabilities
Apple has implemented vital security updates across its operating systems, enhancing protection against vulnerabilities in macOS and iOS. On October...
CISA Unveils Its First International Cybersecurity Strategy
The Cybersecurity and Infrastructure Security Agency (CISA) has unveiled its inaugural international strategic plan aimed at enhancing global collaboration in...
FakeCall Malware: New Vishing Threats Targeting Mobile Devices
The rise of FakeCall malware introduces a sophisticated vishing threat, putting mobile device security at risk. Understanding this malware is...
VimeWorld – 3,118,964 breached accounts
HIBP In October 2018, the Russian Minecraft service VimeWorld suffered a data breach that was later redistributed as part of...
TNAFlix – 1,374,344 breached accounts
HIBP In June 2022, the adult website TNAFlix suffered a data breach that was later redistributed as part of a...
[PLAY] – Ransomware Victim: Maval Industries
Ransomware Group: PLAY VICTIM NAME: Maval Industries NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Avoid Scams After Disaster Strikes
Avoid Scams After Disaster Strikes As hurricanes and other natural disasters occur, CISA urges individuals to remain on alert for...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on October 3, 2024. These...
