XenSource Xen information disclosure | CVE-2022-42331
NAME__________XenSource Xen information disclosurePlatforms Affected:XenSource Xen 4.5 XenSource Xen 4.6 XenSource Xen 4.7 XenSource Xen 4.8 XenSource Xen 4.9 XenSource...
Jenkins AbsInt a3 Plugin information disclosure | CVE-2023-28685
NAME__________Jenkins AbsInt a3 Plugin information disclosurePlatforms Affected:Jenkins AbsInt a3 Plugin 1.1.0Risk Level:7.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins AbsInt a3 Plugin could allow a...
NETGEAR Orbi Router RBR750 command execution | CVE-2022-38452
NAME__________NETGEAR Orbi Router RBR750 command executionPlatforms Affected:NETGEAR Orbi Router RBR750 4.6.8.5Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NETGEAR Orbi Router RBR750 could allow a...
Jenkins Visual Studio Code Metrics Plugin information disclosure | CVE-2023-28681
NAME__________Jenkins Visual Studio Code Metrics Plugin information disclosurePlatforms Affected:Jenkins Visual Studio Code Metrics Plugin 1.7Risk Level:7.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins Visual Studio...
Jenkins OctoPerf Load Testing Plugin security bypass | CVE-2023-28675
NAME__________Jenkins OctoPerf Load Testing Plugin security bypassPlatforms Affected:Jenkins OctoPerf Load Testing Plugin 4.5.2Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Jenkins OctoPerf Load Testing Plugin...
NETGEAR Orbi Satellite RBS750 command execution | CVE-2022-36429
NAME__________NETGEAR Orbi Satellite RBS750 command executionPlatforms Affected:NETGEAR Orbi Satellite RBS750 4.6.8.5Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NETGEAR Orbi Satellite RBS750 could allow a...
Jenkins remote-jobs-view-plugin Plugin information disclosure | CVE-2023-28684
NAME__________Jenkins remote-jobs-view-plugin Plugin information disclosurePlatforms Affected:Jenkins remote-jobs-view-plugin Plugin 0.0.3Risk Level:7.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins remote-jobs-view-plugin Plugin could allow a remote authenticated attacker...
XenSource Xen denial of service | CVE-2022-42333
NAME__________XenSource Xen denial of servicePlatforms Affected:XenSource Xen 4.11 XenSource Xen 4.12 XenSource Xen 4.13 XenSource Xen 4.14 XenSource Xen 4.15...
Jenkins OctoPerf Load Testing Plugin cross-site request forgery | CVE-2023-28674
NAME__________Jenkins OctoPerf Load Testing Plugin cross-site request forgeryPlatforms Affected:Jenkins OctoPerf Load Testing Plugin 4.5.2Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jenkins OctoPerf Load Testing...
NETGEAR Orbi Router RBR750 information disclosure | CVE-2022-38458
NAME__________NETGEAR Orbi Router RBR750 information disclosurePlatforms Affected:NETGEAR Orbi Router RBR750 4.6.8.5Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________NETGEAR Orbi Router RBR750 could allow a...
Jenkins Phabricator Differential Plugin information disclosure | CVE-2023-28683
NAME__________Jenkins Phabricator Differential Plugin information disclosurePlatforms Affected:Jenkins Phabricator Differential Plugin 2.1.5Risk Level:7.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Jenkins Phabricator Differential Plugin could allow a...
Rogue NuGet Packages Infect .NET Developers with Crypto-Stealing Malware
The NuGet repository is the target of a new "sophisticated and highly-malicious attack" aiming to infect .NET developer systems with...
New NAPLISTENER Malware Used by REF2924 Group to Evade Network Detection
The threat group tracked as REF2924 has been observed deploying previously unseen malware in its attacks aimed at entities in...
Coinbase Wallet ‘Red Pill’ flaw allowed attacks to evade detection
Coinbase wallet and other decentralized crypto apps (dapps) were found to be vulnerable to "red pill attacks," a method that...
Breached hacking forum shuts down, fears it’s not ‘safe’ from FBI
The notorious Breached hacking forum has shut down after the remaining administrator, Baphomet, disclosed that they believe law enforcement has...
Clop ransomware claims Saks Fifth Avenue, retailer says mock data stolen
The Clop ransomware gang claims to have attacked Saks Fifth Avenue on its dark web leak site. The cyber security...
LockBit ransomware gang now also claims City of Oakland breach
Another ransomware operation, the LockBit gang, now threatens to leak what it describes as files stolen from the City of Oakland's...
Hackers use new PowerMagic and CommonMagic malware to steal data
Security researchers have discovered attacks from an advanced threat actor that used “a previously unseen malicious framework” called CommonMagic and...
BreachForums Administrator Baphomet Shuts Down Infamous Hacking Forum
In a sudden turn of events, Baphomet, the current administrator of BreachForums, said in an update on March 21, 2023,...
RansomHouse Ransomware Victim: Design CATAPULT
RansomHouse Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Invoke-PSObfuscation – An In-Depth Approach To Obfuscating The Individual Components Of A PowerShell Payload Whether You’Re On Windows Or Kali Linux
Traditional obfuscation techniques tend to add layers to encapsulate standing code, such as base64 or compression. These payloads do continue...
Malware Analysis – amadey – 6cdaede49ef2e633127488885fb06030
Score: 10 MALWARE FAMILY: amadeyTAGS:family:amadey, family:djvu, family:pseudomanuscrypt, family:redline, family:rhadamanthys, family:smokeloader, family:vidar, botnet:fronx2, botnet:pub1, botnet:sprg, backdoor, discovery, infostealer, loader, persistence, ransomware,...
Malware Analysis – djvu – 4fb20686bc89af2e05086d23acd03ded
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 4fb20686bc89af2e05086d23acd03dedSHA1: 1819399d18736fef25382b70f566a343a0190a4dANALYSIS DATE: 2023-03-21T16:32:32ZTTPS: T1012, T1082, T1005, T1081, T1060,...
Malware Analysis – djvu – 137e1a10363bdc6bcda337cc0366c4a0
Score: 10 MALWARE FAMILY: djvuTAGS:family:djvu, family:vidar, discovery, persistence, ransomware, spyware, stealerMD5: 137e1a10363bdc6bcda337cc0366c4a0SHA1: 17bb4a66bcf72c91dd19dba83ef0df2b75999d8bANALYSIS DATE: 2023-03-21T16:39:21ZTTPS: T1222, T1053, T1005, T1081, T1012,...
