HIVE Ransomware Victim: Eurocell
HIVE Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Buzzing in the Background: BumbleBee, a New Modular Backdoor Evolved From BookWorm
In March 2021, we investigated a backdoor with a unique modular architecture and called it BumbleBee due to a string...
The Prynt Stealer malware contains a secret backdoor. Crooks steal data from other cybercriminals
The information-stealing malware Prynt Stealer contains a backdoor that allows stealing the data it has infiltrated from victims. Zscaler researchers...
LockBit 3.0 Ransomware Victim: peakinternational[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
HackerOne Bug Bounty Disclosure: wordpress-users-disclosure-from-json-and-xml-filebydrak3hft7
Programme HackerOne MTN Group MTN Group Submitted by drak3hft7 drak3hft7 Report Wordpress users disclosure from json and xml file Full...
CISA: Mozilla Releases Security Update for Thunderbird
Mozilla Releases Security Update for Thunderbird Mozilla has released security update to address a vulnerability in Thunderbird. An attacker could...
CISA: CISA, NSA, and ODNI Release Part One of Guidance on Securing the Software Supply Chain
CISA, NSA, and ODNI Release Part One of Guidance on Securing the Software Supply Chain CISA, the National Security Agency...
Another Ransomware For Linux Likely In Development
Uptycs researchers recently spotted a new Linux ransomware that appears to be under active development. The Uptycs Threat Research team...
Experts link Raspberry Robin Malware to Evil Corp cybercrime gang
Researchers attribute the Raspberry Robin malware to the Russian cybercrime group known as Evil Corp group. IBM Security X-Force researchers...
Aced – Tool to parse and resolve a single targeted Active Directory principal’s DACL
Aced is a tool to parse and resolve a single targeted Active Directory principal's DACL. Aced will identify interesting inbound...
Google Chrome issue allows overwriting the clipboard content
A security issue in the Google Chrome browser could allow malicious web pages to automatically overwrite clipboard content. A vulnerability...
Cobalt Stike Beacon Detected – 42[.]192[.]144[.]49:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]210[.]113[.]43:444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 172[.]87[.]30[.]180:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Mozilla Thunderbird information disclosure | CVE-2022-3033
NAME Mozilla Thunderbird information disclosure Platforms Affected:Mozilla Thunderbird 102.2Risk Level:8.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Mozilla Thunderbird could allow a remote attacker to...
Node.js tbgo6 module code execution |
NAME Node.js tbgo6 module code execution Platforms Affected:Node.js tbgo6Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js tbgo6 module could allow a remote attacker...
Node.js pratikyadavpack module code execution |
NAME Node.js pratikyadavpack module code execution Platforms Affected:Node.js pratikyadavpackRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js pratikyadavpack module could allow a remote attacker...
Node.js tolbichgo1 module code execution |
NAME Node.js tolbichgo1 module code execution Platforms Affected:Node.js tolbichgo1Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js tolbichgo1 module could allow a remote attacker...
Node.js starlink 5 module code execution |
NAME Node.js starlink 5 module code execution Platforms Affected:Node.js starlink5Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js starlink 5 module could allow a...
Node.js vscode-clangd module code execution |
NAME Node.js vscode-clangd module code execution Platforms Affected:Node.js vscode-clangdRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js vscode-clangd module could allow a remote attacker...
ClusterLabs PCS privilege escalation | CVE-2022-2735
NAME ClusterLabs PCS privilege escalation Platforms Affected:ClusterLabs PCS 0.10 ClusterLabs PCS 0.11Risk Level:8.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION ClusterLabs PCS could allow a...
Node.js viewgenerator module code execution |
NAME Node.js viewgenerator module code execution Platforms Affected:Node.js viewgeneratorRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js viewgenerator module could allow a remote attacker...
Node.js ember-addon-with-dependencies module code execution |
NAME Node.js ember-addon-with-dependencies module code execution Platforms Affected:Node.js ember-addon-with-dependenciesRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ember-addon-with-dependencies module could allow a remote attacker...
Node.js tbgo7 module code execution |
NAME Node.js tbgo7 module code execution Platforms Affected:Node.js tbgo7Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js tbgo7 module could allow a remote attacker...
