Cisco Access Point Software security bypass | CVE-2024-20265
NAME__________Cisco Access Point Software security bypassPlatforms Affected:Cisco Aironet 1540 Series APs Cisco Aironet 1560 Series APs Cisco Aironet 1800 Series...
Cisco IOS XE Software privilege escalation | CVE-2024-20324
NAME__________Cisco IOS XE Software privilege escalationPlatforms Affected:Cisco IOS XE SoftwareRisk Level:5.5Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Cisco IOS XE Software could allow a remote...
Cisco IOS XE Software privilege escalation | CVE-2024-20278
NAME__________Cisco IOS XE Software privilege escalationPlatforms Affected:Cisco IOS XE SoftwareRisk Level:6.5Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Cisco IOS XE Software could allow a remote...
Cisco IOS XE Software denial of service | CVE-2024-20313
NAME__________Cisco IOS XE Software denial of servicePlatforms Affected:Cisco IOS XE SoftwareRisk Level:7.4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Cisco IOS XE Software is vulnerable...
Cisco IOS XE Software command execution | CVE-2024-20306
NAME__________Cisco IOS XE Software command executionPlatforms Affected:Cisco IOS XE SoftwareRisk Level:6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Cisco IOS XE Software could allow a local...
cURL libcurl security bypass | CVE-2024-2379
NAME__________cURL libcurl security bypassPlatforms Affected:cURL libcurl 8.6.0Risk Level:3.7Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________cURL libcurl could allow a remote attacker to bypass security restrictions,...
Splunk Enterprise information disclosure | CVE-2024-29945
NAME__________Splunk Enterprise information disclosurePlatforms Affected:Splunk Splunk Enterprise 9.0.0 Splunk Splunk Enterprise 9.1.0 Splunk Splunk Enterprise 9.2.0Risk Level:7.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Splunk Enterprise...
Cisco IOS XE Software security bypass | CVE-2024-20316
NAME__________Cisco IOS XE Software security bypassPlatforms Affected:Cisco IOS XE SoftwareRisk Level:5.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Cisco IOS XE Software could allow a remote...
Autodesk DWG TrueView buffer overflow | CVE-2024-23138
NAME__________Autodesk DWG TrueView buffer overflowPlatforms Affected:Autodesk DWG TrueView 2024.1.3 Autodesk DWG TrueView 2023.1.5 Autodesk DWG TrueView 2022.1.4Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Autodesk...
Autodesk FBX Review code execution | CVE-2024-23139
NAME__________Autodesk FBX Review code executionPlatforms Affected:Autodesk FBX Review 1.5.3.0Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Autodesk FBX Review could allow a remote attacker to...
CACTUS Ransomware Victim: https://www[.]qosina[.]com/
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
BianLian Ransomware Victim: Reeves-Wiedeman
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Abyss Ransomware Victim: lindquistinsurance[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Cisa Tags Microsoft Sharepoint Rce Bug As Actively Exploited
CISA warns that attackers are now exploiting a Microsoft SharePoint code injection vulnerability that can be chained with a critical privilege...
New Darcula Phishing Service Targets Iphone Users Via Imessage
A new phishing-as-a-service (PhaaS) named ‘Darcula’ uses 20,000 domains to spoof brands and steal credentials from Android and iPhone users...
Ransomware As A Service And The Strange Economics Of The Dark Web
Ransomware is changing, fast. The past three months have seen dramatic developments among the ransomware ecosystem to include the takedown...
Inc Ransom Threatens To Leak 3tb Of Nhs Scotland Stolen Data
The INC Ransom extortion gang is threatening to publish three terabytes of data allegedly stolen after breaching the National Health Service...
Google Spyware Vendors Behind 50 Percent Of Zero Days Exploited In 2023
Google's Threat Analysis Group (TAG) and Google subsidiary Mandiant said they've observed a significant increase in the number of zero-day...
Google Fixes Chrome Zero Days Exploited At Pwn2own 2024
Google fixed seven security vulnerabilities in the Chrome web browser on Tuesday, including two zero-days exploited during the Pwn2Own Vancouver...
Microsoft Monthly Security Update (May 2023)
Updated Source and Related Links.CVE-2023-24955 vulnerability is exploited in the wild. In a network-based attack, an authenticated attacker as a Site...
GSM Hosting – 2,607,440 breached accounts
HIBP In August 2016, breached data from the vBulletin forum for GSM-Hosting appeared for sale alongside dozens of other hacked...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on March 21, 2024. These...
CISA: CISA and Partners Release Joint Fact Sheet for Leaders on PRC-sponsored Volt Typhoon Cyber Activity
CISA and Partners Release Joint Fact Sheet for Leaders on PRC-sponsored Volt Typhoon Cyber Activity Today, CISA, the National Security...
CISA: CISA, FBI, and MS-ISAC Release Update to Joint Guidance on Distributed Denial-of-Service Techniques
CISA, FBI, and MS-ISAC Release Update to Joint Guidance on Distributed Denial-of-Service Techniques Today, CISA, the Federal Bureau of Investigation...
