GitLab security bypass | CVE-2023-4018
NAME__________GitLab security bypassPlatforms Affected:GitLab Community Edition 16.2.4 GitLab Community Edition 16.3.0 GitLab Enterprise Edition 16.3.0 GitLab Enterprise Edition 16.2.4 GitLab...
GitLab denial of service | CVE-2023-3205
NAME__________GitLab denial of servicePlatforms Affected:GitLab Community Edition 16.2.4 GitLab Community Edition 16.3.0 GitLab Enterprise Edition 16.3.0 GitLab Enterprise Edition 16.2.4...
GitLab open redirect | CVE-2023-1279
NAME__________GitLab open redirectPlatforms Affected:GitLab Community Edition 16.2.4 GitLab Community Edition 16.3.0 GitLab Enterprise Edition 16.3.0 GitLab Enterprise Edition 16.2.4 GitLab...
GitLab security bypass | CVE-2023-1555
NAME__________GitLab security bypassPlatforms Affected:GitLab Community Edition 16.2.4 GitLab Community Edition 16.3.0 GitLab Enterprise Edition 16.3.0 GitLab Enterprise Edition 16.2.4 GitLab...
VMware Tools security bypass | CVE-2023-20900
NAME__________VMware Tools security bypassPlatforms Affected:VMware Tools 11 VMware Tools 12 VMware Tools 10.3Risk Level:7.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________VMware Tools could allow a...
?GE Digital CIMPLICITY privilege escalation | CVE-2023-4487
NAME__________?GE Digital CIMPLICITY privilege escalationPlatforms Affected:GE Digital CIMPLICITY 2023Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________?GE Digital CIMPLICITY could allow a local authenticated attacker...
GitLab security bypass | CVE-2023-0120
NAME__________GitLab security bypassPlatforms Affected:GitLab Community Edition 16.2.4 GitLab Community Edition 16.3.0 GitLab Enterprise Edition 16.3.0 GitLab Enterprise Edition 16.2.4 GitLab...
?PTC Kepware KepServerEX information disclosure | CVE-2023-29446
NAME__________?PTC Kepware KepServerEX information disclosurePlatforms Affected:PTC Kepware KepServerEX 6.14.263.0 PTC ThingWorx Kepware Server 6.14.263.0Risk Level:4.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________?PTC Kepware KepServerEX could...
?PTC Kepware KepServerEX code execution | CVE-2023-29444
NAME__________?PTC Kepware KepServerEX code executionPlatforms Affected:PTC Kepware KepServerEX 6.14.263.0 PTC ThingWorx Kepware Server 6.14.263.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________?PTC Kepware KepServerEX could...
GitLab privilege escalation | CVE-2023-3915
NAME__________GitLab privilege escalationPlatforms Affected:GitLab Community Edition 16.2.4 GitLab Community Edition 16.3.0 GitLab Enterprise Edition 16.3.0 GitLab Enterprise Edition 16.2.4 GitLab...
TP-Link Tapo C210 devices buffer overflow | CVE-2023-41184
NAME__________TP-Link Tapo C210 devices buffer overflowPlatforms Affected:TP-Link Tapo C210Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________TP-Link Tapo C210 devices are vulnerable to a stack-based...
GitLab security bypass | CVE-2023-4638
NAME__________GitLab security bypassPlatforms Affected:GitLab Community Edition 16.2.4 GitLab Community Edition 16.3.0 GitLab Enterprise Edition 16.3.0 GitLab Enterprise Edition 16.2.4 GitLab...
Classiscam Scam-as-a-Service Raked $64.5 Million During the COVID-19 Pandemic
The Classiscam scam-as-a-service program has reaped the criminal actors $64.5 million in illicit earnings since its emergence in 2019. "Classiscam...
NOESCAPE Ransomware Victim: Pasquale Bruni Ltd
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
NOESCAPE Ransomware Victim: Ningbo Yinzhou Vocational High School
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Abyss Ransomware Victim: www[.]lasaterandmartin[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Pampling – 383,468 breached accounts
HIBP In January 2020, the online clothing retailer Pampling suffered a data breach that exposed 383k unique customer email addresses....
PlayCyberGames – 3,681,753 breached accounts
HIBP In August 2023, PlayCyberGames which "allows users to play any games with LAN function or games using IP address"...
Phished Data via CERT Poland – 67,943 breached accounts
HIBP In August 2023, CERT Poland observed a phishing campaign that collected credentials from 68k victims. The campaign collected email...
SapphireStealer Malware: A Gateway to Espionage and Ransomware Operations
An open-source .NET-based information stealer malware dubbed SapphireStealer is being used by multiple entities to enhance its capabilities and spawn...
North Korean Hackers Deploy New Malicious Python Packages in PyPI Repository
Three additional rogue Python packages have been discovered in the Package Index (PyPI) repository as part of an ongoing malicious...
CISA: CISA Releases IOCs Associated with Malicious Barracuda Activity
CISA Releases IOCs Associated with Malicious Barracuda Activity CISA has released additional indicators of compromise (IOCs) associated with exploitation of...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on August 29, 2023. This...
CISA: CISA and FBI Publish Joint Advisory on QakBot Infrastructure
CISA and FBI Publish Joint Advisory on QakBot Infrastructure Today, the Cybersecurity and Infrastructure Security Agency (CISA) and Federal Bureau...
