US-CERT Vulnerability Summary for the Week of December 11, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
PySQLRecon – Offensive MSSQL Toolkit Written In Python, Based Off SQLRecon
PySQLRecon is a Python port of the awesome SQLRecon project by @sanjivkawa. See the commands section for a list of...
CISA: CISA and FBI Release Advisory on ALPHV Blackcat Affiliates
CISA and FBI Release Advisory on ALPHV Blackcat Affiliates Today, CISA and the Federal Bureau of Investigation (FBI) released a...
CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on December 19, 2023. These...
Black Basta Ransomware Victim: brintons[.]co[.]uk
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Black Basta Ransomware Victim: pecofoods[.]com
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
PikaBot C2 Detected – 149[.]28[.]100[.]66:5243
PikaBot C2 The Information provided at the time of posting was detected as "PikaBot C2". Depending on when you are...
PikaBot C2 Detected – 172[.]232[.]189[.]166:1194
PikaBot C2 The Information provided at the time of posting was detected as "PikaBot C2". Depending on when you are...
PikaBot C2 Detected – 172[.]232[.]54[.]192:2224
PikaBot C2 The Information provided at the time of posting was detected as "PikaBot C2". Depending on when you are...
PikaBot C2 Detected – 216[.]238[.]79[.]12:2221
PikaBot C2 The Information provided at the time of posting was detected as "PikaBot C2". Depending on when you are...
PikaBot C2 Detected – 78[.]141[.]200[.]111:5938
PikaBot C2 The Information provided at the time of posting was detected as "PikaBot C2". Depending on when you are...
PikaBot C2 Detected – 51[.]161[.]81[.]190:13721
PikaBot C2 The Information provided at the time of posting was detected as "PikaBot C2". Depending on when you are...
PikaBot C2 Detected – 45[.]56[.]71[.]218:13724
PikaBot C2 The Information provided at the time of posting was detected as "PikaBot C2". Depending on when you are...
PikaBot C2 Detected – 154[.]211[.]12[.]126:2967
PikaBot C2 The Information provided at the time of posting was detected as "PikaBot C2". Depending on when you are...
New Malvertising Campaign Distributing PikaBot Disguised as Popular Software
The malware loader known as PikaBot is being distributed as part of a malvertising campaign targeting users searching for legitimate...
Are We Ready to Give Up on Security Awareness Training?
Some of you have already started budgeting for 2024 and allocating funds to security areas within your organization. It is...
SchedMD Slurm denial of service | CVE-2023-49936
NAME__________SchedMD Slurm denial of servicePlatforms Affected:SchedMD Slurm 22.05 SchedMD Slurm 23.02Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________SchedMD Slurm is vulnerable to a...
Beckhoff authelia-bhf included in TwinCAT/BSD open redirect | CVE-2023-6545
NAME__________Beckhoff authelia-bhf included in TwinCAT/BSD open redirectPlatforms Affected:Beckhoffs authelia-bhf 4.37Risk Level:4.3Exploitability:UnprovenConsequences:Other DESCRIPTION__________Beckhoff authelia-bhf included in TwinCAT/BSD could allow a remote...
FreeBSD information disclosure | CVE-2023-6660
NAME__________FreeBSD information disclosurePlatforms Affected:Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________FreeBSD could allow a remote attacker to obtain sensitive information, caused by a flaw...
SchedMD Slurm SQL injection | CVE-2023-49934
NAME__________SchedMD Slurm SQL injectionPlatforms Affected:SchedMD Slurm 22.05 SchedMD Slurm 23.02Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________SchedMD Slurm is vulnerable to SQL injection. A...
IBM Cloud Pak for Business Automation information disclosure | CVE-2023-40691
NAME__________IBM Cloud Pak for Business Automation information disclosurePlatforms Affected:IBM Cloud Pak for Business Automation 18.0.0 IBM Cloud Pak for Business...
PRIMX CRYHOD security bypass | CVE-2023-50443
NAME__________PRIMX CRYHOD security bypassPlatforms Affected:PRIMX CRYHOD Q.2020.3Risk Level:4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________PRIMX CRYHOD could allow a physically proximate authenticated attacker to bypass...
SchedMD Slurm security bypass | CVE-2023-49935
NAME__________SchedMD Slurm security bypassPlatforms Affected:SchedMD Slurm 22.05 SchedMD Slurm 23.02Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________SchedMD Slurm could allow a remote authenticated attacker...
PRIMX products open redirect | CVE-2023-50440
NAME__________PRIMX products open redirectPlatforms Affected:PRIMX ZED! Q.2020.2 PRIMX ZED! Q.2021.1 PRIMX ZONECENTRAL Q.2021.1 PRIMX ZONECENTRAL 2023.4 PRIMX ZEDMAIL 2023.4 PRIMX...
