[AKIRA] – Ransomware Victim: SPANN Roofing & Sheet Metal
Ransomware Group: AKIRA VICTIM NAME: SPANN Roofing & Sheet Metal NOTE: No files or stolen information are by RedPacket Security....
CVE Alert: CVE-2025-53658
Vulnerability Summary: CVE-2025-53658 Jenkins Applitools Eyes Plugin 1.16.5 and earlier does not escape the Applitools URL on the build page,...
CVE Alert: CVE-2025-53659
Vulnerability Summary: CVE-2025-53659 Jenkins QMetry Test Management Plugin 1.13 and earlier stores Qmetry Automation API Keys unencrypted in job config.xml...
CVE Alert: CVE-2025-53674
Vulnerability Summary: CVE-2025-53674 Jenkins Sensedia Api Platform tools Plugin 1.0 does not mask the Sensedia API Manager integration token on...
CVE Alert: CVE-2025-53656
Vulnerability Summary: CVE-2025-53656 Jenkins ReadyAPI Functional Testing Plugin 1.11 and earlier stores SLM License Access Keys, client secrets, and passwords...
CVE Alert: CVE-2025-53657
Vulnerability Summary: CVE-2025-53657 Jenkins ReadyAPI Functional Testing Plugin 1.11 and earlier does not mask SLM License Access Keys, client secrets,...
CVE Alert: CVE-2025-53673
Vulnerability Summary: CVE-2025-53673 Jenkins Sensedia Api Platform tools Plugin 1.0 stores the Sensedia API Manager integration token unencrypted in its...
CVE Alert: CVE-2025-53670
Vulnerability Summary: CVE-2025-53670 Jenkins Nouvola DiveCloud Plugin 1.08 and earlier stores DiveCloud API Keys and Credentials Encryption Keys unencrypted in...
CVE Alert: CVE-2025-53671
Vulnerability Summary: CVE-2025-53671 Jenkins Nouvola DiveCloud Plugin 1.08 and earlier does not mask DiveCloud API Keys and Credentials Encryption Keys...
CVE Alert: CVE-2025-53669
Vulnerability Summary: CVE-2025-53669 Jenkins VAddy Plugin 1.2.8 and earlier does not mask Vaddy API Auth Keys displayed on the job...
CVE Alert: CVE-2025-53672
Vulnerability Summary: CVE-2025-53672 Jenkins Kryptowire Plugin 0.2 and earlier stores the Kryptowire API key unencrypted in its global configuration file...
[LYNX] – Ransomware Victim: nactarome[.]eu
Ransomware Group: LYNX VICTIM NAME: nactaromeeu NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[AKIRA] – Ransomware Victim: Wispone
Ransomware Group: AKIRA VICTIM NAME: Wispone NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-53743
Vulnerability Summary: CVE-2025-53743 Jenkins Applitools Eyes Plugin 1.16.5 and earlier does not mask Applitools API keys displayed on the job...
CVE Alert: CVE-2025-7381
Vulnerability Summary: CVE-2025-7381 ImpactThis is an information disclosure vulnerability originating from PHP's base image. This vulnerability exposes the PHP version...
CVE Alert: CVE-2025-53667
Vulnerability Summary: CVE-2025-53667 Jenkins Dead Man's Snitch Plugin 0.1 does not mask Dead Man's Snitch tokens displayed on the job...
CVE Alert: CVE-2025-53668
Vulnerability Summary: CVE-2025-53668 Jenkins VAddy Plugin 1.2.8 and earlier stores Vaddy API Auth Keys unencrypted in job config.xml files on...
CVE Alert: CVE-2025-53666
Vulnerability Summary: CVE-2025-53666 Jenkins Dead Man's Snitch Plugin 0.1 stores Dead Man's Snitch tokens unencrypted in job config.xml files on...
CVE Alert: CVE-2025-53678
Vulnerability Summary: CVE-2025-53678 Jenkins User1st uTester Plugin 1.1 and earlier stores the uTester JWT token unencrypted in its global configuration...
CVE Alert: CVE-2025-53742
Vulnerability Summary: CVE-2025-53742 Jenkins Applitools Eyes Plugin 1.16.5 and earlier stores Applitools API keys unencrypted in job config.xml files on...
CVE Alert: CVE-2025-53676
Vulnerability Summary: CVE-2025-53676 Jenkins Xooa Plugin 0.0.7 and earlier stores the Xooa Deployment Token unencrypted in its global configuration file...
CVE Alert: CVE-2025-53675
Vulnerability Summary: CVE-2025-53675 Jenkins Warrior Framework Plugin 1.2 and earlier stores passwords unencrypted in job config.xml files on the Jenkins...
CVE Alert: CVE-2025-53677
Vulnerability Summary: CVE-2025-53677 Jenkins Xooa Plugin 0.0.7 and earlier does not mask the Xooa Deployment Token on the global configuration...
[HANDALA] – Ransomware Victim: Yinon Magal
Ransomware Group: HANDALA VICTIM NAME: Yinon Magal NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
