Cobalt Strike Beacon Detected – 193[.]112[.]83[.]36:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 175[.]27[.]168[.]31:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 139[.]224[.]54[.]133:8333
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 106[.]13[.]74[.]33:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 175[.]178[.]45[.]197:9000
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 101[.]133[.]156[.]69:7001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[LYNX] – Ransomware Victim: Lincoln Law
Ransomware Group: LYNX VICTIM NAME: Lincoln Law NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
BugCrowd Bug Bounty Disclosure: P2 – Graphql API exposes all groups and goups users leaking internal stucture, full names and emails – vinax
Graphql API exposes all groups and goups users leaking internal stucture, full names and emails Graphql API exposes all groups...
BugCrowd Bug Bounty Disclosure: P5 – Self Reflected XSS on target.nasa.gov via unescaped user input in field – cybersamir
Self Reflected XSS on target.nasa.gov via unescaped user input in field Self Reflected XSS on target.nasa.gov via unescaped user input...
BugCrowd Bug Bounty Disclosure: P5 – self cross site scripting – bugcrowd_staff
self cross site scripting self cross site scripting Researcher: bugcrowd_staff Engagement: National Aeronautics and Space Administration (NASA) - Vulnerability Disclosure...
BugCrowd Bug Bounty Disclosure: P5 – Cross Site Scripting – ChrisRanaMagar
Cross Site Scripting Cross Site Scripting Researcher: ChrisRanaMagar Engagement: National Aeronautics and Space Administration (NASA) - Vulnerability Disclosure Program Disclosed...
[SAFEPAY] – Ransomware Victim: chamberlainhuckeriede[.]com
Ransomware Group: SAFEPAY VICTIM NAME: chamberlainhuckeriedecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-29557
Vulnerability Summary: CVE-2025-29557 ExaGrid EX10 6.3 - 7.0.1.P08 is vulnerable to Incorrect Access Control in the MailConfiguration API endpoint, where...
CVE Alert: CVE-2025-50270
Vulnerability Summary: CVE-2025-50270 A stored Cross Site Scripting (xss) vulnerability in the "content management" feature in AnQiCMS v.3.4.11 allows a...
CVE Alert: CVE-2025-50849
Vulnerability Summary: CVE-2025-50849 CS Cart 4.18.3 is vulnerable to Insecure Direct Object Reference (IDOR). The user profile functionality allows enabling...
CVE Alert: CVE-2025-50475
Vulnerability Summary: CVE-2025-50475 An OS command injection vulnerability exists in Russound MBX-PRE-D67F firmware version 3.1.6, allowing unauthenticated attackers to execute...
CVE Alert: CVE-2025-52289
Vulnerability Summary: CVE-2025-52289 A Broken Access Control vulnerability in MagnusBilling v7.8.5.3 allows newly registered users to gain escalated privileges by...
CVE Alert: CVE-2025-50848
Vulnerability Summary: CVE-2025-50848 A file upload vulnerability was discovered in CS Cart 4.18.3, allows attackers to execute arbitrary code. CS...
CVE Alert: CVE-2025-29556
Vulnerability Summary: CVE-2025-29556 ExaGrid EX10 6.3 - 7.0.1.P08 is vulnerable to Incorrect Access Control. Since version 6.3, ExaGrid enforces restrictions...
CVE Alert: CVE-2025-51569
Vulnerability Summary: CVE-2025-51569 A cross-site scripting (XSS) vulnerability exists in the LB-Link BL-CPE300M 01.01.02P42U14_06 router's web interface. The /goform/goform_get_cmd_process endpoint...
CVE Alert: CVE-2025-8408
Vulnerability Summary: CVE-2025-8408 A vulnerability, which was classified as critical, was found in code-projects Vehicle Management 1.0. Affected is an...
CVE Alert: CVE-2025-50847
Vulnerability Summary: CVE-2025-50847 Cross Site Request Forgery (CSRF) vulnerability in CS Cart 4.18.3, allows attackers to add products to a...
[QILIN] – Ransomware Victim: cadex[.]com
Ransomware Group: QILIN VICTIM NAME: cadexcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: envac[.]es
Ransomware Group: QILIN VICTIM NAME: envaces NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
