CVE Alert: CVE-2025-26594
Vulnerability Summary: CVE-2025-26594 A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X...
CVE Alert: CVE-2025-26600
Vulnerability Summary: CVE-2025-26600 A use-after-free flaw was found in X.Org and Xwayland. When a device is removed while still frozen,...
[HUNTERS] – Ransomware Victim: Kendall Auto Group
Ransomware Group: HUNTERS VICTIM NAME: Kendall Auto Group NOTE: No files or stolen information are by RedPacket Security. Any legal...
[RANSOMHUB] – Ransomware Victim: www[.]emeryair[.]net
Ransomware Group: RANSOMHUB VICTIM NAME: wwwemeryairnet NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: www[.]amerasphalt[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: wwwamerasphaltcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: www[.]cmsg[.]cl
Ransomware Group: RANSOMHUB VICTIM NAME: wwwcmsgcl NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: www[.]newburghhealthcarecenter[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: wwwnewburghhealthcarecentercom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RANSOMHUB] – Ransomware Victim: www[.]obrienavocats[.]qc[.]ca
Ransomware Group: RANSOMHUB VICTIM NAME: wwwobrienavocatsqcca NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
HackerOne Bug Bounty Disclosure: account-takeover-via-password-reset-without-user-interactions-asterion
Company Name: GitLab Company HackerOne URL: https://hackerone.com/gitlab Submitted By:asterion04Link to Submitters Profile:https://hackerone.com/asterion04 Report Title:Account Takeover via Password Reset without user...
HackerOne Bug Bounty Disclosure: burp-suite-extensions-can-execute-arbitrary-code-iamunixtz
Company Name: PortSwigger Web Security Company HackerOne URL: https://hackerone.com/portswigger Submitted By:iamunixtzLink to Submitters Profile:https://hackerone.com/iamunixtz Report Title:Burp Suite extensions can execute...
HackerOne Bug Bounty Disclosure: non-production-api-endpoints-for-the-datazone-service-fail-to-log-to-cloudtrail-resulting-in-silent-permission-enumeration-nick-frichette-dd
Company Name: AWS VDP Company HackerOne URL: https://hackerone.com/aws_vdp Submitted By:nick_frichette_ddLink to Submitters Profile:https://hackerone.com/nick_frichette_dd Report Title:Non-Production API Endpoints for the Datazone...
HackerOne Bug Bounty Disclosure: stored-xss-via-post-tittle-enabling-non-privileged-user-to-privileged-user-exploitation-on-hxxps-forums-autodesk-com-the-white-evil
Company Name: Autodesk Company HackerOne URL: https://hackerone.com/autodesk Submitted By:the-white-evilLink to Submitters Profile:https://hackerone.com/the-white-evil Report Title:Stored XSS via Post Tittle Enabling Non-Privileged...
HackerOne Bug Bounty Disclosure: unsufficent-input-verification-leads-to-dos-and-resource-consumption-tinine
Company Name: Sorare Company HackerOne URL: https://hackerone.com/sorare Submitted By:tinineLink to Submitters Profile:https://hackerone.com/tinine Report Title:Unsufficent input verification leads to DoS and...
[AKIRA] – Ransomware Victim: Chimu Agropecuaria S[.]A[.]
Ransomware Group: AKIRA VICTIM NAME: Chimu Agropecuaria SA NOTE: No files or stolen information are by RedPacket Security. Any legal...
[HUNTERS] – Ransomware Victim: Omni United
Ransomware Group: HUNTERS VICTIM NAME: Omni United NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[CACTUS] – Ransomware Victim: alphabaking[.]com
Ransomware Group: CACTUS VICTIM NAME: alphabakingcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[CACTUS] – Ransomware Victim: holtcat[.]com
Ransomware Group: CACTUS VICTIM NAME: holtcatcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-1067
Vulnerability Summary: CVE-2025-1067 There is an untrusted search path vulnerability in Esri ArcGIS Pro 3.3 and 3.4 that may allow...
CVE Alert: CVE-2024-12368
Vulnerability Summary: CVE-2024-12368 Improper access control in the auth_oauth module of Odoo Community 15.0 and Odoo Enterprise 15.0 allows an...
CVE Alert: CVE-2025-26599
Vulnerability Summary: CVE-2025-26599 An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect() may...
CVE Alert: CVE-2025-25192
Vulnerability Summary: CVE-2025-25192 GLPI is a free asset and IT management software package. Prior to version 10.0.18, a low privileged...
CVE Alert: CVE-2025-1068
Vulnerability Summary: CVE-2025-1068 There is an untrusted search path vulnerability in Esri ArcGIS AllSource 1.2 and 1.3 that may allow...
CVE Alert: CVE-2024-36259
Vulnerability Summary: CVE-2024-36259 Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows remote authenticated...
CVE Alert: CVE-2024-45425
Vulnerability Summary: CVE-2024-45425 Incorrect user management in some Zoom Workplace Apps may allow a privileged user to conduct an information...
