CISA: Exploitation of Unitronics PLCs used in Water and Wastewater Systems
Exploitation of Unitronics PLCs used in Water and Wastewater Systems CISA is responding to active exploitation(link is external) of Unitronics...
CISA: CISA and UK NCSC Unveil Joint Guidelines for Secure AI System Development
CISA and UK NCSC Unveil Joint Guidelines for Secure AI System Development Today, in a landmark collaboration, the U.S. Cybersecurity...
CISA: CISA Releases First Secure by Design Alert
CISA Releases First Secure by Design Alert Today, CISA published guidance on How Software Manufacturers Can Shield Web Management Interfaces...
CISA: Mozilla Releases Security Updates for Firefox and Thunderbird
Mozilla Releases Security Updates for Firefox and Thunderbird Mozilla has released security updates to address vulnerabilities in Firefox and Thunderbird....
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on November 28, 2023. These...
Black Basta Ransomware Victim: andersonandjones[.]com
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: jacobsfarmdelcabo[.]com
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
[N8N Workflow] – OpenAI Assistant API
Description The provided n8n workflow automates interactions between a Telegram bot and OpenAI's new Assistant API. It initiates when a...
7 Uses for Generative AI to Enhance Security Operations
Welcome to a world where Generative AI revolutionizes the field of cybersecurity. Generative AI refers to the use of artificial...
CACTUS Ransomware Exploits Qlik Sense Vulnerabilities in Targeted Attacks
A CACTUS ransomware campaign has been observed exploiting recently disclosed security flaws in a cloud analytics and business intelligence platform...
This Free Solution Provides Essential Third-Party Risk Management for SaaS
Wing Security recently announced that basic third-party risk assessment is now available as a free product. But it raises the...
CACTUS Ransomware Exploits Qlik Sense Vulnerabilities in Targeted Attacks
A CACTUS ransomware campaign has been observed exploiting recently disclosed security flaws in a cloud analytics and business intelligence platform...
7 Uses for Generative AI to Enhance Security Operations
Welcome to a world where Generative AI revolutionizes the field of cybersecurity. Generative AI refers to the use of artificial...
This Free Solution Provides Essential Third-Party Risk Management for SaaS
Wing Security recently announced that basic third-party risk assessment is now available as a free product. But it raises the...
Akira Ransomware Victim: Lydall, Inc[.]
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Mattermost Server security bypass | CVE-2023-47865
NAME__________Mattermost Server security bypassPlatforms Affected:Mattermost Mattermost Server 7.8.12 Mattermost Mattermost Server 8.1.3Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Mattermost Server could allow a remote...
VMware Tanzu Spring Framework denial of service | CVE-2023-34053
NAME__________VMware Tanzu Spring Framework denial of servicePlatforms Affected:VMware Tanzu Spring Framework 6.0.0 VMware Tanzu Spring Framework 6.0.13Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service...
Meta Incubator Katran information disclosure | CVE-2023-49062
NAME__________Meta Incubator Katran information disclosurePlatforms Affected:Meta Incubator KatranRisk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Meta Incubator Katran could allow a remote attacker to obtain...
VMware Tanzu Reactor Netty denial of service | CVE-2023-34054
NAME__________VMware Tanzu Reactor Netty denial of servicePlatforms Affected:Tanzu VMware Reactor Netty 1.0.0 Tanzu VMware Reactor Netty 1.0.38 Tanzu VMware Reactor...
M-Files Server security bypass | CVE-2023-6239
NAME__________M-Files Server security bypassPlatforms Affected:M-Files M-Files Server 23.9 M-Files M-Files Server 23.10 M-Files M-Files Server 23.11Risk Level:5.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________M-Files Server...
QOS.ch Sarl Logback denial of service | CVE-2023-6378
NAME__________QOS.ch Sarl Logback denial of servicePlatforms Affected:QOS.ch Sarl Logback 1.4.11Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________QOS.ch Sarl Logback is vulnerable to a...
Raptor-Web cross-site scripting | CVE-2023-49078
NAME__________Raptor-Web cross-site scriptingPlatforms Affected:Raptor-Web Raptor-Web 0.4.4Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Raptor-Web is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Mattermost Server security bypass | CVE-2023-47865
NAME__________Mattermost Server security bypassPlatforms Affected:Mattermost Mattermost Server 7.8.12 Mattermost Mattermost Server 8.1.3Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Mattermost Server could allow a remote...
VMware Tanzu Spring Boot denial of service | CVE-2023-34055
NAME__________VMware Tanzu Spring Boot denial of servicePlatforms Affected:VMware Tanzu Spring Boot 2.7.0 VMware Tanzu Spring Boot 3.0.0 Tanzu VMware Spring...
