CVE Alert: CVE-2025-24318
Vulnerability Summary: CVE-2025-24318 Cookie policy is observable via built-in browser tools. In the presence of XSS, this could lead to...
CVE Alert: CVE-2025-24316
Vulnerability Summary: CVE-2025-24316 The Dario Health Internet-based server infrastructure is vulnerable due to exposure of development environment details, which could...
CVE Alert: CVE-2025-20060
Vulnerability Summary: CVE-2025-20060 An attacker could expose cross-user personal identifiable information (PII) and personal health information transmitted to the Android...
CVE Alert: CVE-2025-23405
Vulnerability Summary: CVE-2025-23405 Unauthenticated log effects metrics gathering incident response efforts and potentially exposes risk of injection attacks (ex log...
[RHYSIDA] – Ransomware Victim: Newton & Associates, Inc
Ransomware Group: RHYSIDA VICTIM NAME: Newton & Associates, Inc NOTE: No files or stolen information are by RedPacket Security. Any...
CVE Alert: CVE-2025-25429
Vulnerability Summary: CVE-2025-25429 Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the r_name variable inside the have_same_name...
CVE Alert: CVE-2025-27408
Vulnerability Summary: CVE-2025-27408 Manifest offers users a one-file micro back end. Prior to version 4.9.1, Manifest employs a weak password...
CVE Alert: CVE-2025-20049
Vulnerability Summary: CVE-2025-20049 The Dario Health portal service application is vulnerable to XSS, which could allow an attacker to obtain...
CVE Alert: CVE-2025-24849
Vulnerability Summary: CVE-2025-24849 Lack of encryption in transit for cloud infrastructure facilitating potential for sensitive data manipulation or exposure. Affected...
CVE Alert: CVE-2025-24843
Vulnerability Summary: CVE-2025-24843 Insecure file retrieval process that facilitates potential for file manipulation to affect product stability and confidentiality, integrity,...
CVE Alert: CVE-2025-27410
Vulnerability Summary: CVE-2025-27410 PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality is vulnerable...
CVE Alert: CVE-2025-27413
Vulnerability Summary: CVE-2025-27413 PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality allows an...
CVE Alert: CVE-2025-0160
Vulnerability Summary: CVE-2025-0160 IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2.3, 8.5.3.0 through 8.5.3.1, 8.5.4.0, 8.6.0.0...
CVE Alert: CVE-2025-26466
Vulnerability Summary: CVE-2025-26466 A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a...
CVE Alert: CVE-2025-0159
Vulnerability Summary: CVE-2025-0159 IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2.3, 8.5.3.0 through 8.5.3.1, 8.5.4.0, 8.6.0.0...
[RANSOMHUB] – Ransomware Victim: www[.]casinoessentials[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: wwwcasinoessentialscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[QILIN] – Ransomware Victim: Ministry of Health of Palau
Ransomware Group: QILIN VICTIM NAME: Ministry of Health of Palau NOTE: No files or stolen information are by RedPacket Security....
[MEDUSALOCKER] – Ransomware Victim: Inversiones Clinica Del Meta SA
Ransomware Group: MEDUSALOCKER VICTIM NAME: Inversiones Clinica Del Meta SA NOTE: No files or stolen information are by RedPacket Security....
[RANSOMHUB] – Ransomware Victim: www[.]journeyoilfield[.]net
Ransomware Group: RANSOMHUB VICTIM NAME: wwwjourneyoilfieldnet NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[SAFEPAY] – Ransomware Victim: plasseramerican[.]com
Ransomware Group: SAFEPAY VICTIM NAME: plasseramericancom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[FUNKSEC] – Ransomware Victim: stayzapp[.]in
Ransomware Group: FUNKSEC VICTIM NAME: stayzappin NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[FUNKSEC] – Ransomware Victim: mytower[.]com[.]br
Ransomware Group: FUNKSEC VICTIM NAME: mytowercombr NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[FUNKSEC] – Ransomware Victim: mandarin[.]com[.]br
Ransomware Group: FUNKSEC VICTIM NAME: mandarincombr NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Old Vulnerabilities Remain Among the Most Widely Exploited in Cybersecurity
Old vulnerabilities continue to present significant risks in cybersecurity, as cyber threat actors exploit both new and long-standing weaknesses to...
