Daily Threat Intelligence – April 21 – 2023
‘EvilExtractor’ - the name gives it away that nothing noble can be associated with it, let alone an education tool....
‘EvilExtractor’ - the name gives it away that nothing noble can be associated with it, let alone an education tool....
Cisco Releases Security Advisories for Multiple Products Cisco has released security updates for vulnerabilities affecting Industrial Network Director (IND), Modeling...
Oracle Releases Security Updates Oracle has released its Critical Patch Update Advisory, Solaris Third Party Bulletin, and Linux Bulletin for...
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...
CISA Releases Two SBOM Documents Today, CISA released two community-drafted documents around Software Bill of Materials (SBOM): Types of SBOM...
Cybersecurity researchers have disclosed details of a now-patched zero-day flaw in Google Cloud Platform (GCP) that could have enabled threat...
A large-scale attack campaign discovered in the wild has been exploiting Kubernetes (K8s) Role-Based Access Control (RBAC) to create backdoors...
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Recently, Andrew Martin, founder and CEO of ControlPlane, released a report entitled Cloud Native and Kubernetes Security Predictions 2023. These...
The supply chain attack targeting 3CX was the result of a prior supply chain compromise associated with a different company,...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
NAME__________VMware Tanzu Spring Security security bypassPlatforms Affected:VMware Tanzu Spring Security 5.7.0 VMware Tanzu Spring Security 5.7.7 VMware Tanzu Spring Security...
NAME__________Strapi information disclosurePlatforms Affected:Strapi Strapi 4.5.5Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Strapi could allow a remote attacker to obtain sensitive information, caused by...
NAME__________Joruri GW cross-site scriptingPlatforms Affected:Joruri Joruri Gw 3.2.5Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Joruri GW is vulnerable to cross-site scripting, caused by improper...
NAME__________Omron CS/CJ Series information disclosurePlatforms Affected:OMRON SYSMAC CJ2H-CPU6-EIP OMRON SYSMAC CJ2H-CPU6 OMRON SYSMAC CJ1G-CPUP OMRON SYSMAC CS1H-CPUH OMRON SYSMAC CS1G-CPUH...
NAME__________Cloud Hypervisor security bypassPlatforms Affected:Cloud Hypervisor Cloud Hypervisor 30.0 Cloud Hypervisor Cloud Hypervisor 31.0Risk Level:4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Cloud Hypervisor could allow...
NAME__________AWS aws-sigv4 information disclosurePlatforms Affected:AWS aws-sigv4 0.55.0 AWS aws-sigv4 0.54.1 AWS aws-sigv4 0.53.1 AWS aws-sigv4 0.52.0 AWS aws-sigv4 0.51.0Risk Level:5.5Exploitability:UnprovenConsequences:Obtain...
NAME__________Weaver Show Posts Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Weaver Show Posts Theme for WordPress 1.6Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Weaver Show...
NAME__________Oracle Java SE, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle Java SE 8u361 Oracle Java SE 8u361-perf Oracle Java SE 11.0.18...
NAME__________Oracle Java SE, Oracle GraalVM Enterprise Edition unspecifiedPlatforms Affected:Oracle Java SE 8u361 Oracle Java SE 8u361-perf Oracle Java SE 11.0.18...