ALPHV ransomware exploits Veritas Backup Exec bugs for initial access
An ALPHV/BlackCat ransomware affiliate was observed exploiting three vulnerabilities impacting the Veritas Backup product for initial access to the target network. The...
IRS-authorized eFile.com tax return software caught serving JS malware
eFile.com, an IRS-authorized e-file software service provider used by many for filing their tax returns, has been caught serving JavaScript...
HP to patch critical bug in LaserJet printers within 90 days
HP announced in a security bulletin this week that it would take up to 90 days to patch a critical-severity...
FBI seizes stolen credentials market Genesis in Operation Cookie Monster
The domains for Genesis Market, one of the most popular marketplaces for stolen credentials of all types, were seized by...
BugCrowd Bug Bounty Disclosure: – Auth.Tesla.com Account Takeover of Internal Tesla Accounts – By evanconnelly
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
US-CERT Vulnerability Summary for the Week of March 20, 2023
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and...
HackerOne Bug Bounty Disclosure: csrf-protection-on-oidc-login-is-brokenbymikaelgundersen
Programme HackerOne Nextcloud Nextcloud Submitted by mikaelgundersen mikaelgundersen Report CSRF protection on OIDC login is broken Full Report A...
Rorschach Ransomware Emerges: Experts Warn of Advanced Evasion Strategies
Cybersecurity researchers have taken the wraps off a previously undocumented ransomware strain called Rorschach that's both sophisticated and fast. "What...
New Rilide Malware Targeting Chromium-Based Browsers to Steal Cryptocurrency
Chromium-based web browsers are the target of a new malware called Rilide that masquerades itself as a seemingly legitimate extension...
Sorting Through Haystacks to Find CTI Needles
Clouded vision# CTI systems are confronted with some major issues ranging from the size of the collection networks to their...
Arid Viper Hacking Group Using Upgraded Malware in Middle East Cyber Attacks
The threat actor known as Arid Viper has been observed using refreshed variants of its malware toolkit in its attacks...
Think Before You Share the Link: SaaS in the Real World
Collaboration sits at the essence of SaaS applications. The word, or some form of it, appears in the top two...
LockBit 3.0 Ransomware Victim: aralaw[.]cr
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: garrottbros[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: thened[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: vissan[.]com[.]vn
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: vernegroup[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Booking calendar, Appointment Booking System Plugin for WordPress cross-site scripting | CVE-2022-47438
NAME__________Booking calendar, Appointment Booking System Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WpDevArt Booking calendar Appointment Booking System Plugin for WordPress...
IBOS SQL injection | CVE-2023-1742
NAME__________IBOS SQL injectionPlatforms Affected:Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________IBOS is vulnerable to SQL injection. A remote authenticated attacker could send specially-crafted SQL...
NVIDIA GPU Display Driver denial of service | CVE-2023-0185
NAME__________NVIDIA GPU Display Driver denial of servicePlatforms Affected:NVIDIA GPU Display Driver for Linux 15.0 NVIDIA GPU Display Driver for Linux...
Simple and Beautiful Shopping Cart System file upload | CVE-2023-1739
NAME__________Simple and Beautiful Shopping Cart System file uploadPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Simple and Beautiful Shopping Cart System could allow a...
NVIDIA GPU Display Driver denial of service | CVE-2023-0182
NAME__________NVIDIA GPU Display Driver denial of servicePlatforms Affected:NVIDIA GPU Display Driver for Windows 15.0 NVIDIA GPU Display Driver for Windows...
NVIDIA GPU Display Driver denial of service | CVE-2023-0198
NAME__________NVIDIA GPU Display Driver denial of servicePlatforms Affected:NVIDIA GPU Display Driver for Linux 15.0 NVIDIA GPU Display Driver for Linux...
NVIDIA GPU Display Driver privilege escalation | CVE-2023-0192
NAME__________NVIDIA GPU Display Driver privilege escalationPlatforms Affected:NVIDIA GPU Display Driver for Linux 15.0 NVIDIA GPU Display Driver for Linux 13.0...
