Cisco Catalyst SD-WAN Manager security bypass | CVE-2023-20254
NAME__________Cisco Catalyst SD-WAN Manager security bypassPlatforms Affected:Cisco Catalyst SD-WAN Manager 20.3 Cisco Catalyst SD-WAN Manager 20.4 Cisco Catalyst SD-WAN Manager...
Cisco IOS XE Software denial of service | CVE-2023-20202
NAME__________Cisco IOS XE Software denial of servicePlatforms Affected:Cisco IOS XE SoftwareRisk Level:6.1Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Cisco IOS XE Software is vulnerable...
Exim information disclosure | CVE-2023-42114
NAME__________Exim information disclosurePlatforms Affected:Exim EximRisk Level:3.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Exim could allow a remote attacker to obtain sensitive information, caused by a...
Cisco IOS and IOS XE Software Cisco Group Encrypted Transport VPN Software code execution | CVE-2023-20109
NAME__________Cisco IOS and IOS XE Software Cisco Group Encrypted Transport VPN Software code executionPlatforms Affected:Cisco IOS Software Cisco IOS XE...
8 Base Ransomware Victim: Notel
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Daily Vulnerability Trends: Thu Sep 28 2023
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2023-29357Microsoft SharePoint Server Elevation of Privilege VulnerabilityCVE-2023-42793In JetBrains TeamCity before 2023.05.4 authentication...
CACTUS Ransomware Victim: www[.]unitex[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
CACTUS Ransomware Victim: www[.]spuncast[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
GitHub repos bombarded by info-stealing commits masked as Dependabot
Hackers are breaching GitHub accounts and inserting malicious code disguised as Dependabot contributions to steal authentication secrets and passwords from...
Modern GPUs vulnerable to new GPU.zip side-channel attack
Researchers from four American universities have developed a new GPU side-channel attack that leverages data compression to leak sensitive visual...
US and Japan warn of Chinese hackers backdooring Cisco routers
US and Japanese law enforcement and cybersecurity agencies warn of the Chinese 'BlackTech' hackers breaching network devices to install custom...
SSH keys stolen by stream of malicious PyPI and npm packages
A stream of malicious npm and PyPi packages have been found stealing a wide range of sensitive data from software...
Google fixes fifth actively exploited Chrome zero-day of 2023
Google has patched the fifth Chrome zero-day vulnerability exploited in attacks since the start of the year in emergency security...
Building automation giant Johnson Controls hit by ransomware attack
Johnson Controls International has suffered what is described as a massive ransomware attack that encrypted many of the company devices,...
Fake Bitwarden sites push new ZenRAT password-stealing malware
Fake Bitwarden sites are pushing installers purportedly for the open-source password manager that carry a new password-stealing malware that security...
Google Chrome Multiple Vulnerabilities
Multiple vulnerabilities were identified in Google Chrome. A remote attacker could exploit some of these vulnerabilities to trigger elevation of...
Attacks on European Financial Services Double in a Year
Cyber-attacks on European financial services firms more than doubled between Q2 2022 and Q2 2023, surging 119% in the period,...
Cyber-Attacks on Ukraine Surge 123%, But Success Rates Plummet
Russian cyber-attacks against Ukraine skyrocketed in the first half of 2023, with 762 incidents observed by Ukraine’s State Service of...
Regulator Warns Breaches Can Cost Lives
The UK’s privacy regulator has warned organizations handling the personally identifiable information (PII) of domestic abuse victims that data breaches...
NCSC Launches Cyber Incident Exercise Scheme
The UK’s National Cyber Security Centre (NCSC) has ramped up efforts to encourage firms to run incident response exercises, with...
Ransomed.vc Group Hits NTT Docomo After Sony Breach Claims
In a recent development following the recent data leak from Sony, the notorious ransomware syndicate Ransomed.vc has targeted Japan’s largest...
Leading CISO Creates Model for Ransomware Payment Decisions
Organizations who pay a ransom to cyber-criminals following a cyber-attack are highly likely to suffer a subsequent attack. It is...
Simple Membership Plugin Flaws Expose WordPress Sites
Two new security flaws in the popular Simple Membership plugin for WordPress, affecting versions 4.3.4 and below, have been identified,...
BEC Attacks Increase By 279% in Healthcare
Business Email Compromise (BEC) attacks in the healthcare sector have seen a 279% increase this year, shows a new report published...
