How to Analyze Malware’s Network Traffic in A Sandbox
Malware analysis encompasses a broad range of activities, including examining the malware's network traffic. To be effective at it, it's...
Non-Human Access is the Path of Least Resistance: A 2023 Recap
2023 has seen its fair share of cyber attacks, however there's one attack vector that proves to be more prominent...
Microsoft Warns of Hackers Exploiting OAuth for Cryptocurrency Mining and Phishing
Microsoft has warned that adversaries are using OAuth applications as an automation tool to deploy virtual machines (VMs) for cryptocurrency...
Microsoft’s Final 2023 Patch Tuesday: 33 Flaws Fixed, Including 4 Critical
Microsoft released its final set of Patch Tuesday updates for 2023, closing out 33 flaws in its software, making it...
Akira Ransomware Victim: Mitrani Caballero Oj am & Ruiz Moreno – A bogados
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: SmartWave Technologi es
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
SIEGEDSEC Ransomware Victim:
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
QNAP QTS and QuTS hero buffer overflow | CVE-2023-32968
NAME__________QNAP QTS and QuTS hero buffer overflowPlatforms Affected:QNAP QTS QNAP QuTS heroRisk Level:4.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________QNAP QTS and QuTS hero is...
Welcart e-Commerce plugin for WordPress directory traversal | CVE-2023-6120
NAME__________Welcart e-Commerce plugin for WordPress directory traversalPlatforms Affected:WordPress Welcart e-Commerce plugin for WordPress 2.8.21 WordPress Welcart e-Commerce plugin for WordPress...
Simple Student Attendance System SQL injection | CVE-2023-6619
NAME__________Simple Student Attendance System SQL injectionPlatforms Affected:Sourcecodester Simple Student Attendance System 1.0Risk Level:5.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Simple Student Attendance System is vulnerable...
Supermicro BMC IPMI directory traversal | CVE-2023-33411
NAME__________Supermicro BMC IPMI directory traversalPlatforms Affected:Supermicro BMC IPMIRisk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Supermicro BMC IPMI could allow a remote attacker to traverse...
linkding cross-site scripting | CVE-2023-6646
NAME__________linkding cross-site scriptingPlatforms Affected:linkding linkding 1.23.0Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________linkding is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Linux Kernel denial of service | CVE-2023-6679
NAME__________Linux Kernel denial of servicePlatforms Affected:Linux KernelRisk Level:4.4Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Linux Kernel is vulnerable to a denial of service, caused...
SAP Fiori Launchpad information disclosure | CVE-2023-49584
NAME__________SAP Fiori Launchpad information disclosurePlatforms Affected:SAP Fiori Launchpad SAP_UI 750 SAP Fiori Launchpad SAP_UI 754 SAP Fiori Launchpad SAP_UI 755...
SAP NetWeaver AS ABAP and ABAP Platform SQL injection | CVE-2023-49581
NAME__________SAP NetWeaver AS ABAP and ABAP Platform SQL injectionPlatforms Affected:SAP NetWeaver AS ABAP SAP_BASIS 731 SAP NetWeaver AS ABAP SAP_BASIS...
SAP Master Data Governance directory traversal | CVE-2023-49058
NAME__________SAP Master Data Governance directory traversalPlatforms Affected:SAP Master Data Governance 748 SAP Master Data Governance 749 SAP Master Data Governance...
SAP Cloud Connector denial of service | CVE-2023-49578
NAME__________SAP Cloud Connector denial of servicePlatforms Affected:SAP Cloud Connector 2.0Risk Level:3.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________SAP Cloud Connector is vulnerable to a...
VMware Workspace ONE Launcher privilege escalation | CVE-2023-34064
NAME__________VMware Workspace ONE Launcher privilege escalationPlatforms Affected:VMware Workspace ONE Launcher 22.0 VMware Workspace ONE Launcher 23.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________VMware Workspace...
Lenovo Universal Device Client (UDC) privilege escalation | CVE-2023-6338
NAME__________Lenovo Universal Device Client (UDC) privilege escalationPlatforms Affected:Lenovo Universal Device Client 23.9Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Lenovo Universal Device Client (UDC) could...
SAP BusinessObjects Web Intelligence cross-site scripting | CVE-2023-42476
NAME__________SAP BusinessObjects Web Intelligence cross-site scriptingPlatforms Affected:SAP Business Objects Web Intelligence 420Risk Level:6.8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________SAP BusinessObjects Web Intelligence is vulnerable...
SAP GUI for Windows and GUI for Java information disclosure | CVE-2023-49580
NAME__________SAP GUI for Windows and GUI for Java information disclosurePlatforms Affected:SAP GUI for Windows SAP_BASIS 755 SAP GUI for Windows...
SAP Emarsys SDK for Android security bypass | CVE-2023-6542
NAME__________SAP Emarsys SDK for Android security bypassPlatforms Affected:SAP Emarsys SDK for Android 3.6.2Risk Level:7.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________SAP Emarsys SDK for Android...
SAP Biller Direct cross-site scripting | CVE-2023-42479
NAME__________SAP Biller Direct cross-site scriptingPlatforms Affected:SAP Biller Direct 635 SAP Biller Direct 750Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________SAP Biller Direct is vulnerable...
SAP HCM cross-site scripting | CVE-2023-49577
NAME__________SAP HCM cross-site scriptingPlatforms Affected:SAP HCM S4HCMCIE 100 SAP HCM SAP_HRCIE 600 SAP HCM SAP_HRCIE 604 SAP HCM SAP_HRCIE 608Risk...
