Cobalt Strike Beacon Detected – 175[.]27[.]168[.]31:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]95[.]31[.]143:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 120[.]46[.]72[.]74:666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 1[.]94[.]105[.]198:9443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 111[.]229[.]110[.]232:12345
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 117[.]72[.]102[.]110:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-3354
Vulnerability Summary: CVE-2025-3354 IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 20 is vulnerable to a heap-based buffer overflow, caused...
CVE Alert: CVE-2024-52885
Vulnerability Summary: CVE-2024-52885 The Mobile Access Portal's File Share application is vulnerable to a directory traversal attack, allowing an authenticated,...
CVE Alert: CVE-2025-36020
Vulnerability Summary: CVE-2025-36020 IBM Guardium Data Protection could allow a remote attacker to obtain sensitive information due to cleartext transmission...
CVE Alert: CVE-2025-3320
Vulnerability Summary: CVE-2025-3320 IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 20 is vulnerable to a heap-based buffer overflow, caused...
CVE Alert: CVE-2025-2028
Vulnerability Summary: CVE-2025-2028 Lack of TLS validation when downloading a CSV file including mapping from IPs to countries used ONLY...
CVE Alert: CVE-2025-50234
Vulnerability Summary: CVE-2025-50234 MCCMS v2.7.0 has an SSRF vulnerability located in the index() method of the sys\apps\controllers\api\Gf.php file, where the...
CVE Alert: CVE-2025-51308
Vulnerability Summary: CVE-2025-51308 In Gatling Enterprise versions below 1.25.0, a low-privileged user that does not hold the role "admin" could...
CVE Alert: CVE-2025-50286
Vulnerability Summary: CVE-2025-50286 A Remote Code Execution (RCE) vulnerability in Grav CMS v1.7.48 allows an authenticated admin to upload a...
CVE Alert: CVE-2025-51040
Vulnerability Summary: CVE-2025-51040 Electrolink FM/DAB/TV Transmitter Web Management System Unauthorized access vulnerability via the /FrameSetCore.html endpoint in Electrolink 500W, 1kW,...
CVE Alert: CVE-2025-51306
Vulnerability Summary: CVE-2025-51306 In Gatling Enterprise versions below 1.25.0, a user logging-out can still use his session token to continue...
BugCrowd Bug Bounty Disclosure: P1 – Authentication Bypass + exposure of PII + reflected XSS – snillx
Authentication Bypass + exposure of PII + reflected XSS Authentication Bypass + exposure of PII + reflected XSS Researcher: snillx...
Insider Threat Management: A Practical Guide for 2025 and Beyond
Insider threats originate from inside your organization—employees, contractors, or trusted partners. They can be deliberate acts or the result of...
CVE Alert: CVE-2025-48393
Vulnerability Summary: CVE-2025-48393 The server identity check mechanism for firmware upgrade performed via command shell is insecurely implemented potentially allowing...
CVE Alert: CVE-2024-8244
Vulnerability Summary: CVE-2024-8244 The filepath.Walk and filepath.WalkDir functions are documented as not following symbolic links, but both functions are susceptible...
CVE Alert: CVE-2025-53786
Vulnerability Summary: CVE-2025-53786 On April 18th 2025, Microsoft announced Exchange Server Security Changes for Hybrid Deployments and accompanying non-security Hot...
CVE Alert: CVE-2025-50233
Vulnerability Summary: CVE-2025-50233 A vulnerability in QCMS version 6.0.5 allows authenticated users to read arbitrary files from the server due...
CVE Alert: CVE-2025-48394
Vulnerability Summary: CVE-2025-48394 An attacker with authenticated and privileged access could modify the contents of a non-sensitive file by traversing...
CVE Alert: CVE-2025-20215
Vulnerability Summary: CVE-2025-20215 A vulnerability in the meeting-join functionality of Cisco Webex Meetings could have allowed an unauthenticated, network-proximate attacker...
