CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on August 22, 2024. These...
US-CERT Vulnerability Summary for the Week of August 19, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
HackerOne Bug Bounty Disclosure: dll-hijacking-when-performing-operations-in-acronis-secure-zone-partition-leading-to-privilege-escalation-z-ron
Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:z3ron3Link to Submitters Profile:https://hackerone.com/z3ron3 Report Title:DLL Hijacking when performing operations in Acronis...
HackerOne Bug Bounty Disclosure: local-privilege-escalation-when-deleting-a-file-from-quarantine-z-ron
Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:z3ron3Link to Submitters Profile:https://hackerone.com/z3ron3 Report Title:Local Privilege Escalation when deleting a file...
HackerOne Bug Bounty Disclosure: acronis-sync-agent-service-untrusted-dll-search-ordering-lead-to-privilege-escalation-vanitas
Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:vanitasLink to Submitters Profile:https://hackerone.com/vanitas Report Title:Acronis Sync Agent Service - Untrusted DLL...
HackerOne Bug Bounty Disclosure: jitsi-bridge-message-spoofing-due-to-improper-json-handling-leads-to-prototype-pollution-afewgoats
Company Name: 8x8 Bounty Company HackerOne URL: https://hackerone.com/8x8-bounty Submitted By:afewgoatsLink to Submitters Profile:https://hackerone.com/afewgoats Report Title:Jitsi: Bridge Message Spoofing due to...
HackerOne Bug Bounty Disclosure: local-privilege-escalation-via-dll-search-order-hijacking-with-cyber-protection-agent-tibxread-exe-utility-mmg
Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:mmgLink to Submitters Profile:https://hackerone.com/mmg Report Title:Local Privilege Escalation via DLL Search-Order Hijacking...
HackerOne Bug Bounty Disclosure: csrf-and-xss-on-www-acronis-com-cabelo
Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:cabeloLink to Submitters Profile:https://hackerone.com/cabelo Report Title:CSRF and XSS on wwwacroniscomReport Link:https://hackerone.com/reports/961787Date Submitted:26...
HackerOne Bug Bounty Disclosure: cross-site-scripting-reflected-on-hxxps-www-acronis-cz-dotaznik-roadshow-darkdream
Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:darkdreamLink to Submitters Profile:https://hackerone.com/darkdream Report Title:Cross Site Scripting (Reflected) on hXXps://wwwacroniscz/dotaznik/roadshow-2020/Report Link:https://hackerone.com/reports/1081747Date...
HackerOne Bug Bounty Disclosure: xss-in-hxxps-promo-acronis-com-yash
Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:yash_Link to Submitters Profile:https://hackerone.com/yash_ Report Title:XSS in hXXps://promoacroniscom/Report Link:https://hackerone.com/reports/982442Date Submitted:26 August 2024...
HackerOne Bug Bounty Disclosure: large-amounts-of-back-end-acronis-source-code-is-publicly-accessible-shadowmap
Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:shadowmapLink to Submitters Profile:https://hackerone.com/shadowmap Report Title:Large Amounts of Back-End Acronis Source Code...
HackerOne Bug Bounty Disclosure: credentials-leaked-via-github-sheikh-chilli
Company Name: Acronis Company HackerOne URL: https://hackerone.com/acronis Submitted By:sheikh_chilliLink to Submitters Profile:https://hackerone.com/sheikh_chilli Report Title:Credentials leaked via GithubReport Link:https://hackerone.com/reports/1078373Date Submitted:26 August...
RansomHouse Ransomware Victim: [DISCLOSED] Lake Washington Institute of Technology
RansomHouse Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Dutch Regulator Fines Uber €290 Million for GDPR Violations in Data Transfers to U.S.
The Dutch Data Protection Authority (DPA) has fined Uber a record €290 million ($324 million) for allegedly failing to comply...
SonicWall Issues Critical Patch for Firewall Vulnerability Allowing Unauthorized Access
SonicWall has released security updates to address a critical flaw impacting its firewalls that, if successfully exploited, could grant malicious...
Cobalt Strike Beacon Detected – 1[.]117[.]60[.]10:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 8[.]138[.]133[.]209:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 1[.]92[.]83[.]74:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 111[.]229[.]236[.]116:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 101[.]37[.]88[.]147:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 154[.]201[.]76[.]170:8000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Unpacking Slack Hacks: 6 Ways to Protect Sensitive Data with Secure Collaboration
Nowadays, sensitive and critical data is traveling in everyday business channels that offer only the basic level of security and...
Researchers Identify Over 20 Supply Chain Vulnerabilities in MLOps Platforms
Cybersecurity researchers are warning about the security risks in the machine learning (ML) software supply chain following the discovery of...
Critical Flaws in Traccar GPS System Expose Users to Remote Attacks
Two security vulnerabilities have been disclosed in the open-source Traccar GPS tracking system that could be potentially exploited by unauthenticated...
