Cobalt Strike Beacon Detected – 39[.]103[.]58[.]78:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 39[.]100[.]86[.]107:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 121[.]41[.]91[.]64:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 39[.]104[.]78[.]25:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]94[.]53[.]65:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 213[.]209[.]150[.]214:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[PLAY] – Ransomware Victim: Quartus Engineering
Ransomware Group: PLAY VICTIM NAME: Quartus Engineering NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[PLAY] – Ransomware Victim: Thern
Ransomware Group: PLAY VICTIM NAME: Thern NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[INCRANSOM] – Ransomware Victim: deliastamales[.]com
Ransomware Group: INCRANSOM VICTIM NAME: deliastamalescom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[INCRANSOM] – Ransomware Victim: lynkspot[.]com
Ransomware Group: INCRANSOM VICTIM NAME: lynkspotcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[FLOCKER] – Ransomware Victim: Ieee-apscon[.]org
Ransomware Group: FLOCKER VICTIM NAME: Ieee-apsconorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[INCRANSOM] – Ransomware Victim: erichschleichgmbh[.]de
Ransomware Group: INCRANSOM VICTIM NAME: erichschleichgmbhde NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[INCRANSOM] – Ransomware Victim: whiteconlee[.]com
Ransomware Group: INCRANSOM VICTIM NAME: whiteconleecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[INCRANSOM] – Ransomware Victim: carolynmyoung[.]com
Ransomware Group: INCRANSOM VICTIM NAME: carolynmyoungcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[INCRANSOM] – Ransomware Victim: wvpca[.]org
Ransomware Group: INCRANSOM VICTIM NAME: wvpcaorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[INCRANSOM] – Ransomware Victim: firstpresatl[.]org
Ransomware Group: INCRANSOM VICTIM NAME: firstpresatlorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-50578
Vulnerability Summary: CVE-2025-50578 LinuxServer.io heimdall 2.6.3-ls307 contains a vulnerability in how it handles user-supplied HTTP headers, specifically `X-Forwarded-Host` and `Referer`....
CVE Alert: CVE-2025-8353
Vulnerability Summary: CVE-2025-8353 UI synchronization issue in the Just-in-Time (JIT) access request approval interface in Devolutions Server 2025.2.4.0 and earlier...
CVE Alert: CVE-2025-54656
Vulnerability Summary: CVE-2025-54656 ** UNSUPPORTED WHEN ASSIGNED ** Improper Output Neutralization for Logs vulnerability in Apache Struts. This issue affects...
CVE Alert: CVE-2023-2593
Vulnerability Summary: CVE-2023-2593 A flaw exists within the Linux kernel's handling of new TCP connections. The issue results from the...
CVE Alert: CVE-2025-53357
Vulnerability Summary: CVE-2025-53357 GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software...
CVE Alert: CVE-2025-8312
Vulnerability Summary: CVE-2025-8312 Deadlock in PAM automatic check-in feature in Devolutions Server allows a password to remain valid beyond the...
CVE Alert: CVE-2025-45619
Vulnerability Summary: CVE-2025-45619 An issue in Aver PTC310UV2 firmware v.0.1.0000.59 allows a remote attacker to execute arbitrary code via the...
CVE Alert: CVE-2025-36611
Vulnerability Summary: CVE-2025-36611 Dell Encryption and Dell Security Management Server, versions prior to 11.11.0, contain an Improper Link Resolution Before...
