Moniorg – Tool That Leverages Crt.Sh Website To Monitor Domains Of A Target
By looking through CT logs an attacker can gather a lot of information about organization's infrastructure i.e. internal domains,email addresses...
HackerOne Bug Bounty Disclosure: b-the-domain-is-truck-admin-eu-east-indriverapp-com-and-enter-the-management-system-of-the-blasting-mobile-phone-verification-code-b-trustworthy
Company Name: b'inDrive' Company HackerOne URL: https://hackerone.com/indrive Submitted By:b'trustworthy'Link to Submitters Profile:https://hackerone.com/b'trustworthy' Report Title:b'the domain is truck-admin.eu-east-1.indriverapp.com and Enter the...
HackerOne Bug Bounty Disclosure: b-xss-reflected-pq-tva-com-b-tvmbug
Company Name: b'Tennessee Valley Authority' Company HackerOne URL: https://hackerone.com/tennessee-valley-authority Submitted By:b'tvmbug'Link to Submitters Profile:https://hackerone.com/b'tvmbug' Report Title:b'xss reflected - pq.tva.com'Report Link:https://hackerone.com/reports/1362995Date...
HackerOne Bug Bounty Disclosure: b-response-manipulation-to-enable-account-recovery-key-with-out-current-password-b-saiteja
Company Name: b'Mozilla Critical Services' Company HackerOne URL: https://hackerone.com/mozilla_critical_services Submitted By:b'saiteja1231323'Link to Submitters Profile:https://hackerone.com/b'saiteja1231323' Report Title:b'Response Manipulation to enable Account...
HackerOne Bug Bounty Disclosure: b-no-rate-limit-on-forgot-password-page-b-sailesh-nik
Company Name: b'Tennessee Valley Authority' Company HackerOne URL: https://hackerone.com/tennessee-valley-authority Submitted By:b'sailesh01nik'Link to Submitters Profile:https://hackerone.com/b'sailesh01nik' Report Title:b'No Rate Limit On Forgot...
HackerOne Bug Bounty Disclosure: b-mozilla-mastodon-staging-instance-admin-api-key-disclosure-through-slack-b-griffinf
Company Name: b'Mozilla Core Services' Company HackerOne URL: https://hackerone.com/mozilla_core_services Submitted By:b'griffinf'Link to Submitters Profile:https://hackerone.com/b'griffinf' Report Title:b'Mozilla Mastodon Staging Instance Admin...
CISA: CISA Adds Two Known Vulnerabilities to Catalog
CISA Adds Two Known Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on...
New HijackLoader Modular Malware Loader Making Waves in the Cybercrime World
A new malware loader called HijackLoader is gaining traction among the cybercriminal community to deliver various payloads such as DanaBot,...
Charming Kitten’s New Backdoor ‘Sponsor’ Targets Brazil, Israel, and U.A.E.
The Iranian threat actor known as Charming Kitten has been linked to a new wave of attacks targeting different entities...
How to Prevent API Breaches: A Guide to Robust Security
With the growing reliance on web applications and digital platforms, the use of application programming interfaces (APIs) has become increasingly...
Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows
A new cyber attack campaign is leveraging the PowerShell script associated with a legitimate red teaming tool to plunder NTLMv2...
Vietnamese Hackers Deploy Python-Based Stealer via Facebook Messenger
A new phishing attack is leveraging Facebook Messenger to propagate messages with malicious attachments from a "swarm of fake and...
Google Chrome Rolls Out Support for ‘Privacy Sandbox’ to Bid Farewell to Tracking Cookies
Google has officially begun its rollout of Privacy Sandbox in the Chrome web browser to a majority of its users,...
Medusa Locker Ransomware Victim: Wave Hill
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: Steripharma
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
LockBit 3.0 Ransomware Victim: co[.]grant[.]mn[.]us
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
PDF-XChange Editor code execution | CVE-2023-42040
NAME__________PDF-XChange Editor code executionPlatforms Affected:Tracker Software PDF-XChange EditorRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________PDF-XChange Editor could allow a remote attacker to execute arbitrary...
PDF-XChange Editor code execution | CVE-2023-42085
NAME__________PDF-XChange Editor code executionPlatforms Affected:Tracker Software PDF-XChange EditorRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________PDF-XChange Editor could allow a remote attacker to execute arbitrary...
PDF-XChange Editor code execution | CVE-2023-42086
NAME__________PDF-XChange Editor code executionPlatforms Affected:Tracker Software PDF-XChange EditorRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________PDF-XChange Editor could allow a remote attacker to execute arbitrary...
Tenda N300 Wireless N VDSL2 Modem Router information disclosure | US-CERT VU#304455
NAME__________Tenda N300 Wireless N VDSL2 Modem Router information disclosurePlatforms Affected:Tenda N300 Wireless N VDSL2 Modem RouterRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Tenda N300...
PDF-XChange Editor code execution | CVE-2023-42088
NAME__________PDF-XChange Editor code executionPlatforms Affected:Tracker Software PDF-XChange EditorRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________PDF-XChange Editor could allow a remote attacker to execute arbitrary...
PDF-XChange Editor code execution | CVE-2023-42083
NAME__________PDF-XChange Editor code executionPlatforms Affected:Tracker Software PDF-XChange EditorRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________PDF-XChange Editor could allow a remote attacker to execute arbitrary...
Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers buffer overflow | CVE-2023-20250
NAME__________Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers buffer overflowPlatforms Affected:Cisco RV110W Wireless-N VPN Firewall Cisco RV130W Wireless-N Multifunction...
PDF-XChange Editor code execution | CVE-2023-42087
NAME__________PDF-XChange Editor code executionPlatforms Affected:Tracker Software PDF-XChange EditorRisk Level:3.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________PDF-XChange Editor could allow a remote attacker to obtain sensitive...
