CISA: CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities
CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities Today, CISA updated its guidance addressing two vulnerabilities, CVE-2023-20198...
CISA: CISA Releases Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities
CISA Releases Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities Today, CISA, in response to active, widespread exploitation, released...
US-CERT Vulnerability Summary for the Week of October 16, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info1e -- platformAffected 1E Platform versions have a Blind SQL Injection vulnerability...
Facad1ng – The Ultimate URL Masking Tool – An Open-Source URL Masking Tool Designed To Help You Hide Phishing URLs And Make Them Look Legit Using Social Engineering Techniques
Facad1ng is an open-source URL masking tool designed to help you Hide Phishing URLs and make them look legit using...
HackerOne Bug Bounty Disclosure: b-hacker-email-disclosed-on-submission-at-hackerone-hactivity-b-xdemiray
Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'xdemiray'Link to Submitters Profile:https://hackerone.com/b'xdemiray' Report Title:b'Hacker email disclosed on submission at hackerone...
Ex-NSA Employee Pleads Guilty to Leaking Classified Data to Russia
A former employee of the U.S. National Security Agency (NSA) has pleaded guilty to charges accusing him of attempting to...
Black Basta Ransomware Victim: Panificio Grandolfo
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
PikaBot C2 Detected – 45[.]79[.]147[.]119:9785
PikaBot C2 The Information provided at the time of posting was detected as "PikaBot C2". Depending on when you are...
Make API Management Less Scary for Your Organization
While application development has evolved rapidly, the API management suites used to access these services remain a spooky reminder of...
34 Cybercriminals Arrested in Spain for Multi-Million Dollar Online Scams
Spanish law enforcement officials have announced the arrest of 34 members of a criminal group that carried out various online...
iOS Zero-Day Attacks: Experts Uncover Deeper Insights into Operation Triangulation
The TriangleDB implant used to target Apple iOS devices packs in at least four different modules to record microphone, extract...
Akira Ransomware Victim: Inventum Øst
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware Victim: grupocobra[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: hgmonline[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Pega Platform cross-site scripting | CVE-2023-32088
NAME__________Pega Platform cross-site scriptingPlatforms Affected:Pegasystems Pega Platform 8.1 Pegasystems Pega Platform 23.1.0Risk Level:4.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Pega Platform is vulnerable to cross-site...
CodeAstro Internet Banking System cross-site scripting | CVE-2023-5695
NAME__________CodeAstro Internet Banking System cross-site scriptingPlatforms Affected:CodeAstro Internet Banking System 1.0Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________CodeAstro Internet Banking System is vulnerable to...
HCL Compass weak security | CVE-2023-37504
NAME__________HCL Compass weak securityPlatforms Affected:HCL Compass 2.0 HCL Compass 2.1 HCL Compass 2.2Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________HCL Compass could provide weaker...
CodeAstro Internet Banking System cross-site scripting | CVE-2023-5696
NAME__________CodeAstro Internet Banking System cross-site scriptingPlatforms Affected:CodeAstro Internet Banking System 1.0Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________CodeAstro Internet Banking System is vulnerable to...
Widgets for Google Reviews plugin for WordPress cross-site request forgery | CVE-2023-3254
NAME__________Widgets for Google Reviews plugin for WordPress cross-site request forgeryPlatforms Affected:Trustindex.io Widgets for Google Reviews plugin for WordPress 10.9Risk Level:4.3Exploitability:UnprovenConsequences:Gain...
CodeAstro Internet Banking System SQL injection | CVE-2023-5693
NAME__________CodeAstro Internet Banking System SQL injectionPlatforms Affected:CodeAstro Internet Banking System 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________CodeAstro Internet Banking System is vulnerable to...
CodeAstro Internet Banking System cross-site scripting | CVE-2023-5698
NAME__________CodeAstro Internet Banking System cross-site scriptingPlatforms Affected:CodeAstro Internet Banking System 1.0Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________CodeAstro Internet Banking System is vulnerable to...
CodeAstro Internet Banking System cross-site scripting | CVE-2023-5694
NAME__________CodeAstro Internet Banking System cross-site scriptingPlatforms Affected:CodeAstro Internet Banking System 1.0Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________CodeAstro Internet Banking System is vulnerable to...
radare2 heap-based buffer overflow | CVE-2023-5686
NAME__________radare2 heap-based buffer overflowPlatforms Affected:radare2 radare2 5.8.9Risk Level:5.1Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________radare2 is vulnerable to a heap-based buffer overflow, caused...
Pega Platform cross-site scripting | CVE-2023-32087
NAME__________Pega Platform cross-site scriptingPlatforms Affected:Pegasystems Pega Platform 8.1 Pegasystems Pega Platform 23.1.0Risk Level:4.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Pega Platform is vulnerable to cross-site...
