Evasive QBot Malware Leverages Short-lived Residential IPs for Dynamic Attacks
An analysis of the "evasive and tenacious" malware known as QBot has revealed that 25% of its command-and-control (C2) servers...
North Korea’s Kimsuky Group Mimics Key Figures in Targeted Cyber Attacks
U.S. and South Korean intelligence agencies have issued a new alert warning of North Korean cyber actors' use of social...
Camaro Dragon Strikes with New TinyNote Backdoor for Intelligence Gathering
The Chinese nation-stage group known as Camaro Dragon has been linked to yet another backdoor that's designed to meet its...
The Importance of Managing Your Data Security Posture
Data security is reinventing itself. As new data security posture management solutions come to market, organizations are increasingly recognizing the...
Evasive QBot Malware Leverages Short-lived Residential IPs for Dynamic Attacks
An analysis of the "evasive and tenacious" malware known as QBot has revealed that 25% of its command-and-control (C2) servers...
LockBit 3.0 Ransomware Victim: ykk[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: fsd[.]se
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 47[.]108[.]239[.]81:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]106[.]176[.]108:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]155[.]138[.]189:7443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]66[.]230[.]215:10443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 77[.]242[.]250[.]36:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]155[.]145[.]128:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 114[.]115[.]201[.]249:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
DedeCMS code execution | CVE-2023-2928
NAME__________DedeCMS code executionPlatforms Affected:DedeCMS DedeCMS 5.7.87 DedeCMS DedeCMS 5.7.93 DedeCMS DedeCMS 5.7.95 DedeCMS DedeCMS 5.7.97Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________DedeCMS could allow...
Integration for Contact Form 7 and Zoho CRM, Bigin Plugin for WordPress cross-site request forgery | CVE-2023-25976
NAME__________Integration for Contact Form 7 and Zoho CRM, Bigin Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Integration for Contact Form...
Comment System cross-site scripting | CVE-2023-2922
NAME__________Comment System cross-site scriptingPlatforms Affected:Sourcecodester Comment System 1.0Risk Level:3.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Comment System is vulnerable to cross-site scripting, caused by improper...
Bus Dispatch and Information System SQL injection | CVE-2023-2951
NAME__________Bus Dispatch and Information System SQL injectionPlatforms Affected:code-projects Bus Dispatch and Information System 1.0Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Bus Dispatch and Information...
Students Online Internship Timesheet System SQL injection | CVE-2023-2955
NAME__________Students Online Internship Timesheet System SQL injectionPlatforms Affected:Sourcecodester Students Online Internship Timesheet System 1.0Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Students Online Internship Timesheet...
Advantech WebAccess/SCADA code execution | CVE-2023-2866
NAME__________Advantech WebAccess/SCADA code executionPlatforms Affected:Advantech WebAccess/SCADA 8.4.5Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Advantech WebAccess/SCADA could allow a remote authenticated attacker to execute arbitrary...
Krayin CRM cross-site scripting | CVE-2023-2925
NAME__________Krayin CRM cross-site scriptingPlatforms Affected:Webkul Software Krayin CRM 1.2.4Risk Level:2.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Krayin CRM is vulnerable to cross-site scripting, caused by...
Pimcore directory traversal | CVE-2023-2984
NAME__________Pimcore directory traversalPlatforms Affected:Pimcore Pimcore 10.5.21Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Pimcore could allow a remote authenticated attacker to traverse directories on the...
Faculty Evaluation System SQL injection | CVE-2023-2962
NAME__________Faculty Evaluation System SQL injectionPlatforms Affected:Sourcecodester Faculty Evaluation System 1.0Risk Level:4.7Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Faculty Evaluation System is vulnerable to SQL injection....
Xibo CMS SQL injection | CVE-2023-33179
NAME__________Xibo CMS SQL injectionPlatforms Affected:Xibo CMS 3.3.4 Xibo CMS 2.3.16Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Xibo CMS is vulnerable to SQL injection. A...
