Colorado State University says data breach impacts students, staff
Colorado State University (CSU) has confirmed that the Clop ransomware operation stole sensitive personal information of current and former students...
Genesis Market infrastructure and inventory sold on hacker forum
Image: Bing Create The administrators of the Genesis Market for stolen credentials announced on a hacker forum that they sold...
CISA: Microsoft Releases July 2023 Security Updates
Microsoft Releases July 2023 Security Updates Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker can...
CISA: Mozilla Releases Security Update for Firefox and Firefox ESR
Mozilla Releases Security Update for Firefox and Firefox ESR Mozilla has released a security update to address a vulnerability in...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on July 11, 2023. These...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Critical Industrial Control Systems (ICS) advisory on July 12, 2023....
CISA: Adobe Releases Security Updates for ColdFusion and InDesign
Adobe Releases Security Updates for ColdFusion and InDesign Adobe has released security updates to address vulnerabilities affecting ColdFusion(link is external) and...
CISA: CISA Adds Two Known Vulnerabilities to Catalog
CISA Adds Two Known Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Nine Industrial Control Systems Advisories
CISA Releases Nine Industrial Control Systems Advisories CISA released nine Industrial Control Systems (ICS) advisories on July 13, 2023. These...
CISA: CISA and FBI Release Cybersecurity Advisory on Enhanced Monitoring to Detect APT Activity Targeting Outlook Online
CISA and FBI Release Cybersecurity Advisory on Enhanced Monitoring to Detect APT Activity Targeting Outlook Online The Cybersecurity and Infrastructure...
CISA: Juniper Releases Multiple Security Updates for Juno OS
Juniper Releases Multiple Security Updates for Juno OS Juniper has released updates to address multiple vulnerabilities in Juno OS(link is...
CISA: Cisco Releases Security Update for SD-WAN vManage API
Cisco Releases Security Update for SD-WAN vManage API Cisco has released a security update to address a critical vulnerability affecting...
US-CERT Vulnerability Summary for the Week of July 3, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infosem-cms -- semcmsFile Upload vulnerability in SEMCMS PHP 3.7 allows remote attackers...
Akira Ransomware Victim: 4LEAF, Inc
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: Schmidt Salzman & Mo ran, Ltd
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: Gerber Childrenswear LLC
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
HackerOne Bug Bounty Disclosure: an-attacker-can-can-view-any-hacker-email-via-savecollaboratorsmutation-operation-name–xrayan
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:0xrayan1996Link to Submitters Profile:https://hackerone.com/0xrayan1996 Report Title:An attacker can can view any hacker...
HackerOne Bug Bounty Disclosure: indriver-job-admin-approval-bypass-mikejohnson
Company Name: inDrive Company HackerOne URL: https://hackerone.com/indrive Submitted By:mikejohnson_1Link to Submitters Profile:https://hackerone.com/mikejohnson_1 Report Title:inDriver Job - Admin Approval BypassReport Link:https://hackerone.com/reports/1861487Date...
HackerOne Bug Bounty Disclosure: metamask-browser-url-and-transaction-origin-spoofing-metamask-wallet-android-metamask-wallet-ios-renekroka
Company Name: MetaMask Company HackerOne URL: https://hackerone.com/metamask Submitted By:renekrokaLink to Submitters Profile:https://hackerone.com/renekroka Report Title:MetaMask Browser URL and Transaction Origin Spoofing...
HackerOne Bug Bounty Disclosure: endpoint-disclosing-user-password-team-tsk
Company Name: Newegg Company HackerOne URL: https://hackerone.com/newegg Submitted By:team_tskLink to Submitters Profile:https://hackerone.com/team_tsk Report Title:Endpoint disclosing user passwordReport Link:https://hackerone.com/reports/1986731Date Submitted:05 July...
HackerOne Bug Bounty Disclosure: basic-xss-waf-bypasses-mega
Company Name: Cloudflare Public Bug Bounty Company HackerOne URL: https://hackerone.com/cloudflare Submitted By:mega7Link to Submitters Profile:https://hackerone.com/mega7 Report Title:Basic XSS Report Link:https://hackerone.com/reports/1615743Date...
HackerOne Bug Bounty Disclosure: arbitrary-file-write-triggered-by-deeplink-abuse-metamask-android-hackerontwowheels
Company Name: MetaMask Company HackerOne URL: https://hackerone.com/metamask Submitted By:hackerontwowheelsLink to Submitters Profile:https://hackerone.com/hackerontwowheels Report Title:Arbitrary file write triggered by deeplink abuse...
HackerOne Bug Bounty Disclosure: banned-user-still-able-to-invited-to-reports-as-a-collabrator-and-reset-the-password-light-r
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:light3rLink to Submitters Profile:https://hackerone.com/light3r Report Title:Banned user still able to invited to...
HackerOne Bug Bounty Disclosure: internal-machine-learning-api-endpoint-for-cwe-classification-is-vulnerable-to-path-traversal-jobert
Company Name: HackerOne Company HackerOne URL: https://hackerone.com/security Submitted By:jobertLink to Submitters Profile:https://hackerone.com/jobert Report Title:Internal machine learning API endpoint for CWE...
