SwordFantasy – 2,690,657 breached accounts
HIBP In January 2019, the now defunct MMO and RPG game SwordFantasy suffered a data breach that exposed 2.7M unique...
CISA: CISA and Partners Release Joint Fact Sheet for Leaders on PRC-sponsored Volt Typhoon Cyber Activity
CISA and Partners Release Joint Fact Sheet for Leaders on PRC-sponsored Volt Typhoon Cyber Activity Today, CISA, the National Security...
CISA: CISA, FBI, and MS-ISAC Release Update to Joint Guidance on Distributed Denial-of-Service Techniques
CISA, FBI, and MS-ISAC Release Update to Joint Guidance on Distributed Denial-of-Service Techniques Today, CISA, the Federal Bureau of Investigation...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on March 19, 2024. These...
CISA: Repository for Software Attestation and Artifacts Now Live
Repository for Software Attestation and Artifacts Now Live Software producers who partner with the federal government can now upload their...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on March 21, 2024. These...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on March 26, 2024. These...
CISA: CISA and FBI Release Secure by Design Alert to Urge Manufacturers to Eliminate SQL Injection Vulnerabilities
CISA and FBI Release Secure by Design Alert to Urge Manufacturers to Eliminate SQL Injection Vulnerabilities Today, CISA and the...
CISA: Ivanti Releases Security Updates for Neurons for ITSM and Standalone Sentry
Ivanti Releases Security Updates for Neurons for ITSM and Standalone Sentry Ivanti has released security advisories to address vulnerabilities in...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
US-CERT Vulnerability Summary for the Week of March 18, 2024
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
HackerOne Bug Bounty Disclosure: creation-of-bounties-through-customer-api-leads-to-private-email-disclosure–verw-tch
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:0verw4tchLink to Submitters Profile:https://hackerone.com/0verw4tch Report Title:Creation of bounties through Customer API leads...
HackerOne Bug Bounty Disclosure: view-any-user-email-using-the-team-s-audit-log-section–verw-tch
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:0verw4tchLink to Submitters Profile:https://hackerone.com/0verw4tch Report Title:View any user email using the Team's...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on March 26, 2024. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
Akira Ransomware Victim: Calida
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: European Centre for Compensation
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: Vita IT
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Sentrifugo cross-site scripting | CVE-2024-29877
NAME__________Sentrifugo cross-site scriptingPlatforms Affected:Sentrifugo Sentrifugo 3.2Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Sentrifugo is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Advantech WebAccess/SCADA SQL injection | CVE-2024-2453
NAME__________Advantech WebAccess/SCADA SQL injectionPlatforms Affected:Advantech WebAccess/SCADA 9.1.5URisk Level:6.4Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Advantech WebAccess/SCADA is vulnerable to SQL injection. A remote authenticated attacker...
GitHub Enterprise Server cross-site request forgery | CVE-2024-2748
NAME__________GitHub Enterprise Server cross-site request forgeryPlatforms Affected:GitHub Enterprise Server 3.12.0Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________GitHub Enterprise Server is vulnerable to cross-site request...
Sentrifugo cross-site scripting | CVE-2024-29879
NAME__________Sentrifugo cross-site scriptingPlatforms Affected:Sentrifugo Sentrifugo 3.2Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Sentrifugo is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Logpoint cross-site scripting | CVE-2024-29865
NAME__________Logpoint cross-site scriptingPlatforms Affected:Logpoint Logpoint 7.0.1Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Logpoint is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
