CISA: CISA Releases Resource Guide for University Cybersecurity Clinics
CISA Releases Resource Guide for University Cybersecurity Clinics Today, CISA released a Resource Guide for Cybersecurity Clinics to outline ways...
Nitrogen Shelling Malware From Hacked Sites
Nitrogen is the name given to a campaign and associated malware that have been distributed via malicious search ads. Its...
Ransomware Review January 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
2024 State Of Ransomware In Education 92 Spike In K 12 Attacks
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Malicious Ads For Restricted Messaging Applications Target Chinese Users
An ongoing campaign of malicious ads has been targeting Chinese-speaking users with lures for popular messaging applications such as Telegram...
Ransomware Review February 2024
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Massive Utility Scam Campaign Spreads Via Online Ads
For many households, energy costs represent a significant part of their overall budget. And when customers want to discuss their...
Remote Monitoring Management Software Used In Phishing Attacks
Remote Monitoring & Management (RMM) software, including popular tools like AnyDesk, Atera, and Splashtop, are invaluable for IT administrators today,...
One Year Later Rhadamanthys Is Still Dropped Via Malvertising
It was just a little over a year ago that the Rhadamanthys stealer was first publicly seen distributed via malicious...
Ransomware In 2023 Recap 5 Key Takeaways
This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...
Medusa Locker Ransomware Victim: Penn Cinema
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: The Professional Liability Fund
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: Southwest Industrial Sales
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: JS International
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
SourceCodester Employee Management System SQL injection | CVE-2024-1877
NAME__________SourceCodester Employee Management System SQL injectionPlatforms Affected:SourceCodester Employee Management System 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________SourceCodester Employee Management System is vulnerable to...
SourceCodester Employee Management System cross-site scripting | CVE-2024-1871
NAME__________SourceCodester Employee Management System cross-site scriptingPlatforms Affected:SourceCodester Employee Management System 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________SourceCodester Employee Management System is vulnerable to...
Eclipse Jetty denial of service | CVE-2024-22201
NAME__________Eclipse Jetty denial of servicePlatforms Affected:Eclipse Jetty 9.3.0 Eclipse Jetty 10.0.0 Eclipse Jetty 11.0.0 Eclipse Jetty 12.0.0Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service...
SourceCodester Employee Management System SQL injection | CVE-2024-1878
NAME__________SourceCodester Employee Management System SQL injectionPlatforms Affected:SourceCodester Employee Management System 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________SourceCodester Employee Management System is vulnerable to...
Image Source Control Plugin for WordPress information disclosure | CVE-2023-52187
NAME__________Image Source Control Plugin for WordPress information disclosurePlatforms Affected:WordPress Image Source Control Plugin for WordPress 2.17.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Image Source...
baserCMS cross-site scripting | CVE-2023-44379
NAME__________baserCMS cross-site scriptingPlatforms Affected:baserproject baserCMS 5.0.8Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________baserCMS is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Mitsubishi Electric MELSEC iQ-F devices denial of service | CVE-2023-7033
NAME__________Mitsubishi Electric MELSEC iQ-F devices denial of servicePlatforms Affected:Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Mitsubishi Electric MELSEC iQ-F devices are vulnerable to...
Complaint Management System file upload | CVE-2024-1875
NAME__________Complaint Management System file uploadPlatforms Affected:Complaint Management System Complaint Management System 1.0Risk Level:4.3Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Complaint Management System could allow a...
XenSource Xen denial of service | CVE-2023-46841
NAME__________XenSource Xen denial of servicePlatforms Affected:XenSource Xen 4.14 XenSource Xen 5.5.0 XenSource Xen 4.15 Xensource Xen 4.16 XenSource Xen 4.17Risk...
Apache Ambari information disclosure | CVE-2023-50380
NAME__________Apache Ambari information disclosurePlatforms Affected:Apache Ambari 2.7.0 Apache Ambari 2.7.7Risk Level:6.5Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Apache Ambari could allow a remote authenticated attacker...
