CISA: Apple Releases Security Updates for iOS and macOS
Apple Releases Security Updates for iOS and macOS Apple has released security updates to address a vulnerability in multiple products....
CISA: CISA Releases its Open Source Software Security Roadmap
CISA Releases its Open Source Software Security Roadmap Today, CISA released an Open Source Software Security Roadmap to lay out—in...
RansomHouse Ransomware Victim: SAC Finance
RansomHouse Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
US-CERT Vulnerability Summary for the Week of September 4, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infocanonical_ltd. -- snapd_for_linuxUsing the TIOCLINUX ioctl request, a malicious snap could inject...
VTScanner – A Comprehensive Python-based Security Tool For File Scanning, Malware Detection, And Analysis In An Ever-Evolving Cyber Landscape
VTScanner is a versatile Python tool that empowers users to perform comprehensive file scans within a selected directory for malware...
CISA: Adobe Releases Security Updates for Multiple Products
Adobe Releases Security Updates for Multiple Products Adobe has released security updates to address vulnerabilities affecting Adobe software. A cyber...
CISA: CISA Releases its Open Source Software Security Roadmap
CISA Releases its Open Source Software Security Roadmap Today, CISA released an Open Source Software Security Roadmap to lay out—in...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on September 12, 2023. These...
CISA: NSA, FBI, and CISA Release Cybersecurity Information Sheet on Deepfake Threats
NSA, FBI, and CISA Release Cybersecurity Information Sheet on Deepfake Threats Today, the National Security Agency (NSA), the Federal Bureau...
HackerOne Bug Bounty Disclosure: b-admin-account-panel-takeover-and-doing-actions-in-admin-panel-via-dom-based-xss-b-mouhannadlrx
Company Name: b'Radancy' Company HackerOne URL: https://hackerone.com/radancy Submitted By:b'mouhannadlrx'Link to Submitters Profile:https://hackerone.com/b'mouhannadlrx' Report Title:b'Admin account/panel takeOver and Doing actions in...
HackerOne Bug Bounty Disclosure: b-ssrf-vulnerability-through-connection-test-feature-b-sayoojbkumar
Company Name: b'Internet Bug Bounty' Company HackerOne URL: https://hackerone.com/ibb Submitted By:b'sayoojbkumar'Link to Submitters Profile:https://hackerone.com/b'sayoojbkumar' Report Title:b'SSRF Vulnerability through Connection test...
CACTUS Ransomware Victim: www[.]unimarketing[.]ca
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
CACTUS Ransomware Victim: www[.]leekes[.]co[.]uk
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
CACTUS Ransomware Victim: www[.]geotekusa[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
CACTUS Ransomware Victim: www[.]myinsurancebroker[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
CACTUS Ransomware Victim: www[.]lbhip[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
CACTUS Ransomware Victim: www[.]wardlawclaims[.]com
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware Victim: cfsigroup[.]ca
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: deeroaks[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Wave AI wave.ai.browser application code execution | CVE-2023-42471
NAME__________Wave AI wave.ai.browser application code executionPlatforms Affected:Wave AI wave.ai.browser 1.0.35Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Wave AI wave.ai.browser application could allow a remote...
Tenda N300 Wireless N VDSL2 Modem Router information disclosure | US-CERT VU#304455
NAME__________Tenda N300 Wireless N VDSL2 Modem Router information disclosurePlatforms Affected:Tenda N300 Wireless N VDSL2 Modem RouterRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Tenda N300...
IBOS SQL injection | CVE-2023-4852
NAME__________IBOS SQL injectionPlatforms Affected:IBOS IBOS 4.5.5Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________IBOS is vulnerable to SQL injection. A remote attacker could send specially...
icms cross-site request forgery | CVE-2023-40953
NAME__________icms cross-site request forgeryPlatforms Affected:iCMS iCMS 7.0.16Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________icms is vulnerable to cross-site request forgery, caused by improper validation...
Redis information disclosure | CVE-2023-41053
NAME__________Redis information disclosurePlatforms Affected:Redis Redis 7.0.0 Redis Redis 7.0.12 Redis Redis 7.2.0Risk Level:3.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Redis could allow a local authenticated...
