Oracle Database Server unspecified | CVE-2023-22077
NAME__________Oracle Database Server unspecifiedPlatforms Affected:Oracle Database Server 19.3 Oracle Database Server 19.19 Oracle Database Server 21.3 Oracle Database Server 21.10...
Oracle Java SE unspecified | CVE-2023-22081
NAME__________Oracle Java SE unspecifiedPlatforms Affected:Oracle Java SE 8u381Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________An unspecified vulnerability in Oracle Java SE, Oracle GraalVM...
eSST Monitoring directory traversal | CVE-2023-41629
NAME__________eSST Monitoring directory traversalPlatforms Affected:eSST Monitoring 2.147.1Risk Level:4.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________eSST Monitoring could allow a remote attacker to traverse directories on...
Oracle iRecruitment unspecified | CVE-2023-22093
NAME__________Oracle iRecruitment unspecifiedPlatforms Affected:Oracle iRecruitment 12.2.3 Oracle iRecruitment 12.2.12Risk Level:6.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________An unspecified vulnerability in Oracle iRecruitment related to...
Cisco Catalyst SD-WAN Manager file include | CVE-2023-20261
NAME__________Cisco Catalyst SD-WAN Manager file includePlatforms Affected:Cisco Catalyst SD-WAN ManagerRisk Level:6.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Cisco Catalyst SD-WAN Manager could allow a remote...
Eaton easyE4 weak security | CVE-2023-43776
NAME__________Eaton easyE4 weak securityPlatforms Affected:Eaton easyE4 2.01Risk Level:6.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Eaton easyE4 could provide weaker than expected security, caused by a...
Oracle WebLogic Server unspecified | CVE-2023-22086
NAME__________Oracle WebLogic Server unspecifiedPlatforms Affected:Oracle WebLogic Server 14.1.1.0.0 Oracle WebLogic Server 12.2.1.4.0Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________An unspecified vulnerability in Oracle WebLogic...
Eaton easySoft weak security | CVE-2023-43777
NAME__________Eaton easySoft weak securityPlatforms Affected:Eaton EASYsoftRisk Level:5.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Eaton easySoft could provide weaker than expected security, caused by insecure storage...
Aruba Networks Aruba AirWave Management Platform information disclosure | CVE-2023-4896
NAME__________Aruba Networks Aruba AirWave Management Platform information disclosurePlatforms Affected:Aruba Networks Aruba AirWave Management Platform 8.3.0.1 Aruba Networks Aruba AirWave Management...
Oracle HTTP Server unspecified | CVE-2023-22019
NAME__________Oracle HTTP Server unspecifiedPlatforms Affected:Oracle HTTP Server 12.2.1.4.0Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________An unspecified vulnerability in Oracle HTTP Server related to the...
North Grid Corporation Proself information disclosure | CVE-2023-45727
NAME__________North Grid Corporation Proself information disclosurePlatforms Affected:North Grid Corporation Proself Enterprise/Standard Edition 5.62 North Grid Corporation Proself Gateway Edition 1.65...
Knight Ransomware Victim: National Health Mission[.] Department of Health & Family Welfare, Govt[.] of U[.]P
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
FBI warns of extortion groups targeting plastic surgery offices
Update October 18, 12:12 EDT: Added statement from the American Board of Plastic Surgery. The FBI warned of cybercriminals using...
Qubitstrike attacks rootkit Jupyter Linux servers to steal credentials
Hackers are scanning for internet-exposed Jupyter Notebooks to breach servers and deploy a cocktail of malware consisting of a Linux...
Recently patched Citrix NetScaler bug exploited as zero-day since August
A critical vulnerability tracked as CVE-2023-4966 in Citrix NetScaler ADC/Gateway devices has been actively exploited as a zero-day since late August,...
MATA malware framework exploits EDR in attacks on defense firms
An updated version of the MATA backdoor framework was spotted in attacks between August 2022 and May 2023, targeting oil...
Google links WinRAR exploitation to Russian, Chinese state hackers
Google says that several state-backed hacking groups have joined ongoing attacks exploiting a high-severity vulnerability in WinRAR, a compression software used by...
Single Sign On and the Cybercrime Ecosystem
It’s not just your perception, cybercrime is increasing dramatically. At Flare we’ve identified a 112% increase in data extortion ransomware...
North Korean hackers exploit critical TeamCity flaw to breach networks
Microsoft says that the North Korean Lazarus and Andariel hacking groups are exploiting the CVE-2023-42793 flaw in TeamCity servers to...
Ex-Navy IT head gets 5 years for selling people’s data on darkweb
Marquis Hooper, a former U.S. Navy IT manager, has received a sentence of five years and five months in prison...
Ukrainian activists hack Trigona ransomware gang, wipe servers
A group of cyber activists under the Ukrainian Cyber Alliance banner has hacked the servers of the Trigona ransomware gang...
Hacker leaks millions of new 23andMe genetic data profiles
A hacker has leaked an additional 4.1 million stolen 23andMe genetic data profiles for people in Great Britain and Germany...
Google Play Protect adds real-time scanning to fight Android malware
Google has announced new, real-time scanning features for Google Play Protect that make it harder for malicious apps employing polymorphism...
Five Eyes Warn Deep Tech Start-Ups Against Nation-State Threats
The UK National Cyber Security Agency (NCSC) and National Protective Security Authority (NPSA), a new subdivision of domestic intelligence agency...
