New TetrisPhantom hackers steal data from secure USB drives on govt systems
A new sophisticated threat tracked as ‘TetrisPhantom’ has been using compromised secure USB drives to target government systems in the...
Number of hacked Cisco IOS XE devices plummets from 50K to hundreds
The number of Cisco IOS XE devices hacked with a malicious backdoor implant has mysteriously plummeted from over 50,000 impacted...
US-CERT Vulnerability Summary for the Week of October 9, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info3ds -- teamwork_cloud_no_magic_releaseA Cross-Site Request Forgery (CSRF) vulnerability affecting Teamwork Cloud from...
Black Basta Ransomware Victim: Panetteria Grandolfo
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: Simpson Strong-Tie
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Akira Ransomware Victim: Inventum Øst
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware Victim: chs[.]ca
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
IBM Cognos Dashboards information disclosure | CVE-2023-38275
NAME__________IBM Cognos Dashboards information disclosurePlatforms Affected:IBM Cognos Dashboards on Cloud Pak for Data 4.7.0Risk Level:5.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IBM Cognos Dashboards on...
TinyMCE cross-site scripting | CVE-2023-45819
NAME__________TinyMCE cross-site scriptingPlatforms Affected:TinyMCE TinyMCE 6.0.0 TinyMCE TinyMCE 5.10.7 TinyMCE TinyMCE 6.7.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________TinyMCE is vulnerable to cross-site scripting,...
D-Link DSL-2750U N300 ADSL2+ and DSL-2730U N150 ADSL2+ routers security bypass | CVE-2023-46033
NAME__________D-Link DSL-2750U N300 ADSL2+ and DSL-2730U N150 ADSL2+ routers security bypassPlatforms Affected:D-Link DSL-2750U N300 ADSL2+ D-Link DSL-2730U N150 ADSL2+Risk Level:6.1Exploitability:UnprovenConsequences:Bypass...
ETSI TETRA Standard security bypass | CVE-2022-24404
NAME__________ETSI TETRA Standard security bypassPlatforms Affected:ETSI TETRARisk Level:5.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________ETSI TETRA Standard could allow a remote attacker to bypass security...
TinyMCE cross-site scripting | CVE-2023-45818
NAME__________TinyMCE cross-site scriptingPlatforms Affected:TinyMCE TinyMCE 6.0.0 TinyMCE TinyMCE 5.10.7 TinyMCE TinyMCE 6.7.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________TinyMCE is vulnerable to cross-site scripting,...
Texas Instruments OMAP L138 information disclosure | CVE-2022-25332
NAME__________Texas Instruments OMAP L138 information disclosurePlatforms Affected:Texas Instruments OMAP L138Risk Level:4.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Texas Instruments OMAP L138 could allow a local...
ETSI TETRA Standard man-in-the-middle | CVE-2022-24400
NAME__________ETSI TETRA Standard man-in-the-middlePlatforms Affected:ETSI TETRARisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ETSI TETRA Standard is vulnerable to a man-in-the-middle attack, caused by a...
IBM Cognos Dashboards on Cloud Pak for Data information disclosure | CVE-2023-38276
NAME__________IBM Cognos Dashboards on Cloud Pak for Data information disclosurePlatforms Affected:IBM Cognos Dashboards on Cloud Pak for Data 4.7.0Risk Level:5.9Exploitability:UnprovenConsequences:Obtain...
IBM Cognos Dashboards on Cloud Pak for Data improper authentication | CVE-2023-38735
NAME__________IBM Cognos Dashboards on Cloud Pak for Data improper authenticationPlatforms Affected:IBM Cognos Dashboards on Cloud Pak for Data 4.7.0Risk Level:5.7Exploitability:UnprovenConsequences:Bypass...
Knight Ransomware Victim: il Centro
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Knight Ransomware Victim: Intellipop Fiber Internet
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
8 Base Ransomware Victim: JC Roman Construction
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
8 Base Ransomware Victim: APS – Automotive Parts Solutions
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
8 Base Ransomware Victim: Edwards Business Systems
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
8 Base Ransomware Victim: Brunton Shaw
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Cyber Security Tip of the Week: Malware Detection and Prevention
Welcome to our weekly cyber security tip. This series is all about equipping you with the knowledge and tools you...
The Week in Ransomware – October 20th 2023 – Fighting Back
This was a bad week for ransomware, with the Trigona ransomware suffering a data breach and law enforcement disrupting the...
