CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on October 15, 2024. These...
CISA: Guidance: Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM)
Guidance: Framing Software Component Transparency: Establishing a Common Software Bill of Materials (SBOM) Today, CISA published the Framing Software Component Transparency, created...
CISA: CISA and FBI Release Joint Guidance on Product Security Bad Practices for Public Comment
CISA and FBI Release Joint Guidance on Product Security Bad Practices for Public Comment Today, the Cybersecurity and Infrastructure Security...
CISA: Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies
Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies CISA has observed cyber threat actors leveraging unencrypted...
CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on October 17, 2024. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: Oracle Releases Quarterly Critical Patch Update Advisory for October 2024
Oracle Releases Quarterly Critical Patch Update Advisory for October 2024 Oracle released its quarterly Critical Patch Update Advisory for October...
CISA: CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force
CISA, FBI, NSA, and International Partners Release Advisory on Iranian Cyber Actors Targeting Critical Infrastructure Organizations Using Brute Force Today,...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
US-CERT Vulnerability Summary for the Week of October 14, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
[MONTI] – Ransomware Victim: La Tazza D’oro
Ransomware Group: MONTI VICTIM NAME: La Tazza D'oro NOTE: No files or stolen information are by RedPacket Security. Any legal...
CVE Alert: CVE-2024-49324
Vulnerability Summary: CVE-2024-49324 Unrestricted Upload of File with Dangerous Type vulnerability in Sovratec Sovratec Case Management allows Upload a Web...
CVE Alert: CVE-2024-49607
Vulnerability Summary: CVE-2024-49607 Unrestricted Upload of File with Dangerous Type vulnerability in Redwan Hilali WP Dropbox Dropins allows Upload a...
CVE Alert: CVE-2024-49327
Vulnerability Summary: CVE-2024-49327 Unrestricted Upload of File with Dangerous Type vulnerability in Asep Bagja Priandana Woostagram Connect allows Upload a...
CVE Alert: CVE-2024-49329
Vulnerability Summary: CVE-2024-49329 Unrestricted Upload of File with Dangerous Type vulnerability in Vivek Tamrakar WP REST API FNS allows Upload...
CVE Alert: CVE-2024-49608
Vulnerability Summary: CVE-2024-49608 : Incorrect Privilege Assignment vulnerability in Gerry Ntabuhashe GERRYWORKS Post by Mail allows Privilege Escalation.This issue affects...
CVE Alert: CVE-2024-49332
Vulnerability Summary: CVE-2024-49332 Deserialization of Untrusted Data vulnerability in Giveaway Boost allows Object Injection.This issue affects Giveaway Boost: from n/a...
CVE Alert: CVE-2024-49331
Vulnerability Summary: CVE-2024-49331 Unrestricted Upload of File with Dangerous Type vulnerability in Myriad Solutionz Property Lot Management System allows Upload...
CVE Alert: CVE-2024-49622
Vulnerability Summary: CVE-2024-49622 Cross-Site Request Forgery (CSRF) vulnerability in Apa Apa Banner Slider allows SQL Injection.This issue affects Apa Banner...
CVE Alert: CVE-2024-49623
Vulnerability Summary: CVE-2024-49623 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Hasan Movahed Duplicate...
CVE Alert: CVE-2024-49330
Vulnerability Summary: CVE-2024-49330 Unrestricted Upload of File with Dangerous Type vulnerability in brx8r Nice Backgrounds allows Upload a Web Shell...
[BLACKSUIT] – Ransomware Victim: Teddy SpA
Ransomware Group: BLACKSUIT VICTIM NAME: Teddy SpA NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
HackerOne Bug Bounty Disclosure: reflected-xss-mathara
Company Name: MTN Group Company HackerOne URL: https://hackerone.com/mtn_group Submitted By:matharaLink to Submitters Profile:https://hackerone.com/mathara Report Title:Reflected - XSSReport Link:https://hackerone.com/reports/1779447Date Submitted:21 October...
HackerOne Bug Bounty Disclosure: no-rate-limit-in-otp-code-sending-mathara
Company Name: MTN Group Company HackerOne URL: https://hackerone.com/mtn_group Submitted By:matharaLink to Submitters Profile:https://hackerone.com/mathara Report Title:No rate limit in OTP code...
