[EVEREST] – Ransomware Victim: Watchfinder & Co
Ransomware Group: EVEREST VICTIM NAME: Watchfinder & Co NOTE: No files or stolen information are by RedPacket Security. Any legal...
[QILIN] – Ransomware Victim: DelCampo
Ransomware Group: QILIN VICTIM NAME: DelCampo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-8019
Vulnerability Summary: CVE-2025-8019 A vulnerability was found in Shenzhen Libituo Technology LBT-T300-T310 2.2.3.6. It has been rated as critical. Affected...
CVE Alert: CVE-2025-6523
Vulnerability Summary: CVE-2025-6523 Use of weak credentials in emergency authentication component in Devolutions Server allows an unauthenticated attacker to bypass...
CVE Alert: CVE-2025-5042
Vulnerability Summary: CVE-2025-5042 A maliciously crafted RFA file, when parsed through Autodesk Revit, can force an Out-of-Bounds Read vulnerability. A...
CVE Alert: CVE-2025-7371
Vulnerability Summary: CVE-2025-7371 Okta On-Premises Provisioning (OPP) agents log certain user data during administrator-initiated password resets. This vulnerability allows an...
CVE Alert: CVE-2025-51482
Vulnerability Summary: CVE-2025-51482 Remote Code Execution in letta.server.rest_api.routers.v1.tools.run_tool_from_source in letta-ai Letta 0.7.12 allows remote attackers to execute arbitrary Python code...
CVE Alert: CVE-2025-6741
Vulnerability Summary: CVE-2025-6741 Improper access control in secure message component in Devolutions Server allows an authenticated user to steal unauthorized...
CVE Alert: CVE-2024-38335
Vulnerability Summary: CVE-2024-38335 IBM Security QRadar Network Threat Analytics 1.0.0 through 1.3.1 could allow a privileged user to cause a...
CVE Alert: CVE-2025-51481
Vulnerability Summary: CVE-2025-51481 Local File Inclusion in dagster._grpc.impl.get_notebook_data in Dagster 1.10.14 allows attackers with access to the gRPC server to...
CVE Alert: CVE-2025-51464
Vulnerability Summary: CVE-2025-51464 Cross-site Scripting (XSS) in aimhubio Aim 3.28.0 allows remote attackers to execute arbitrary JavaScript in victims browsers...
CVE Alert: CVE-2025-48964
Vulnerability Summary: CVE-2025-48964 ping in iputils through 20240905 allows a denial of service (application error in adaptive ping mode or...
[PLAY] – Ransomware Victim: DA Whitacre Construction
Ransomware Group: PLAY VICTIM NAME: DA Whitacre Construction NOTE: No files or stolen information are by RedPacket Security. Any legal...
[PLAY] – Ransomware Victim: Ka Logistics
Ransomware Group: PLAY VICTIM NAME: Ka Logistics NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[SARCOMA] – Ransomware Victim: Sanderling Healthcare
Ransomware Group: SARCOMA VICTIM NAME: Sanderling Healthcare NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[QILIN] – Ransomware Victim: www[.]balkankalip[.]com
Ransomware Group: QILIN VICTIM NAME: wwwbalkankalipcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CovenantC2 Detected – 209[.]141[.]47[.]199:7443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
CVE Alert: CVE-2025-51471
Vulnerability Summary: CVE-2025-51471 Cross-Domain Token Exposure in server.auth.getAuthorizationToken in Ollama 0.6.7 allows remote attackers to steal authentication tokens and bypass...
CVE Alert: CVE-2025-51479
Vulnerability Summary: CVE-2025-51479 Authorization bypass in update_user_group in onyx-dot-app Onyx Enterprise Edition 0.27.0 allows remote authenticated attackers to modify arbitrary...
CVE Alert: CVE-2025-31512
Vulnerability Summary: CVE-2025-31512 An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval via isAddedByApprover in a...
CVE Alert: CVE-2025-31511
Vulnerability Summary: CVE-2025-31511 An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval by changing the user...
CVE Alert: CVE-2025-51459
Vulnerability Summary: CVE-2025-51459 File Upload vulnerability in agent.hub.controller.refresh_plugins in eosphoros-ai DB-GPT 0.7.0 allows remote attackers to execute arbitrary code via...
CVE Alert: CVE-2025-51475
Vulnerability Summary: CVE-2025-51475 Arbitrary File Overwrite (AFO) in superagi.controllers.resources.upload in TransformerOptimus SuperAGI 0.0.14 allows remote attackers to overwrite arbitrary files...
CVE Alert: CVE-2025-51462
Vulnerability Summary: CVE-2025-51462 Stored Cross-site Scripting (XSS) vulnerability in api.apps.dialog_app.set_dialog in RAGFlow 0.17.2 allows remote attackers to execute arbitrary JavaScript...
