Okta Breached Via Stolen Credential
Identity and access management (IAM) specialist Okta has found itself on the receiving end of another security breach after a...
CISA: Oracle Releases October 2023 Critical Patch Update Advisory
Oracle Releases October 2023 Critical Patch Update Advisory Oracle has released its Critical Patch Update Advisory for October 2023 to...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on October 17, 2023. These...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA, NSA, FBI, and MS-ISAC Release Update to #StopRansomware Guide
CISA, NSA, FBI, and MS-ISAC Release Update to #StopRansomware Guide Today, the Cybersecurity and Infrastructure Security Agency (CISA), the National...
CISA: CISA, NSA, FBI, and MS-ISAC Release Phishing Prevention Guidance
CISA, NSA, FBI, and MS-ISAC Release Phishing Prevention Guidance Today, the Cybersecurity Infrastructure and Security Agency (CISA), the National Security...
CISA: CISA Releases Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities
CISA Releases Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities Today, CISA, in response to active, widespread exploitation, released...
CISA: CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities
CISA Updates Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities Today, CISA updated its guidance addressing two vulnerabilities, CVE-2023-20198...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on October 19, 2023. This...
CISA: CISA Releases Fact Sheet on Effort to Revise the National Cyber Incident Response Plan (NCIRP)
CISA Releases Fact Sheet on Effort to Revise the National Cyber Incident Response Plan (NCIRP) Today, the Cybersecurity and Infrastructure...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
US-CERT Vulnerability Summary for the Week of October 9, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info3ds -- teamwork_cloud_no_magic_releaseA Cross-Site Request Forgery (CSRF) vulnerability affecting Teamwork Cloud from...
GATOR – GCP Attack Toolkit For Offensive Research, A Tool Designed To Aid In Research And Exploiting Google Cloud Environments
GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments....
Medusa Locker Ransomware Victim: Beaver Lake Cree Nation
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: EHPAD
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: Native Counselling Services of Alberta
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: Safpro
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Akira Ransomware Victim: Inventum Øst
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware Victim: mamu[.]be
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: harlingentx[.]gov
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
HCL AppScan Presence privilege escalation | CVE-2023-37537
NAME__________HCL AppScan Presence privilege escalationPlatforms Affected:HCL AppScan Presen 2.1.37Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________HCL AppScan Presence could allow a local authenticated attacker...
Sourcecodester Best Courier Management System file upload | CVE-2023-46004
NAME__________Sourcecodester Best Courier Management System file uploadPlatforms Affected:Sourcecodester Best Courier Management System 1.0Risk Level:5.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Sourcecodester Best Courier Management System...
Sourcecodester Best Courier Management System SQL injection | CVE-2023-46005
NAME__________Sourcecodester Best Courier Management System SQL injectionPlatforms Affected:Sourcecodester Best Courier Management System 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Sourcecodester Best Courier Management System...
Nothings stb_image denial of service | CVE-2023-45667
NAME__________Nothings stb_image denial of servicePlatforms Affected:nothings stb_image 2.28Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Nothings stb_image is vulnerable to a denial of service,...
