LockBit 3.0 Ransomware Victim: tier1techs[.]screenconnect[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
HackerOne Bug Bounty Disclosure: idor-allowing-to-read-another-user’s-token-on-the-social-media-ads-servicebya_d_a_m
Programme HackerOne Semrush Semrush Submitted by a_d_a_m a_d_a_m Report IDOR allowing to read another user's token on the Social Media...
CISA: Threat Actors Exploiting Multiple Vulnerabilities Against Zimbra Collaboration Suite
Threat Actors Exploiting Multiple Vulnerabilities Against Zimbra Collaboration Suite CISA and the Multi-State Information Sharing & Analysis Center (MS-ISAC) have...
VLANPWN – VLAN Attacks Toolkit
VLAN attacks toolkit DoubleTagging.py - This tool is designed to carry out a VLAN Hopping attack. As a result of...
Cobalt Stike Beacon Detected – 106[.]15[.]231[.]36:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 159[.]223[.]44[.]243:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]243[.]102[.]167:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]94[.]208[.]105:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]142[.]80[.]49:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 121[.]196[.]198[.]98:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 182[.]92[.]238[.]128:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 149[.]255[.]35[.]173:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 94[.]232[.]41[.]105:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 175[.]178[.]183[.]226:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 1[.]14[.]6[.]69:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Russia-linked Gamaredon APT continues to target Ukraine
Russia-linked Gamaredon APT group targets Ukrainian entities with PowerShell info-stealer malware dubbed GammaLoad. Russia-linked Gamaredon APT group (aka Shuckworm, Actinium, Armageddon, Primitive...
SourceCodester Loan Management System SQL injection | CVE-2022-2766
NAME SourceCodester Loan Management System SQL injection Platforms Affected:Sourcecodester Loan Management System 1.0Risk Level:7.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION SourceCodester Loan Management System...
Ivanti Pulse Secure Pulse Connect Secure (PCS) privilege escalation | CVE-2021-44720
NAME Ivanti Pulse Secure Pulse Connect Secure (PCS) privilege escalation Platforms Affected:Ivanti Pulse Secure Pulse Connect Secure (PCS) 9.1R12Risk Level:9.8Exploitability:UnprovenConsequences:Gain...
Zoom Client for Meetings for macOS privilege escalation | CVE-2022-28756
NAME Zoom Client for Meetings for macOS privilege escalation Platforms Affected:Zoom Client for Meetings for MacOS 5.11 Zoom Client for...
Company Website CMS file upload | CVE-2022-2750
NAME Company Website CMS file upload Platforms Affected:Sourcecodester Company Website CMS 1.0Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Company Website CMS could allow...
Simple Online Book Store file upload | CVE-2022-2746
NAME Simple Online Book Store file upload Platforms Affected:Sourcecodester Gym Management System 1.0Risk Level:9.8Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION Simple Online Book Store...
Sourcecodester Company Website CMS security bypass | CVE-2022-2765
NAME Sourcecodester Company Website CMS security bypass Platforms Affected:Sourcecodester Company Website CMS 1.0Risk Level:9.8Exploitability:Proof of ConceptConsequences:Bypass Security DESCRIPTION Sourcecodester Company...
Company Website CMS file upload | CVE-2022-2751
NAME Company Website CMS file upload Platforms Affected:Sourcecodester Company Website CMS 1.0Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Company Website CMS could allow...
Node.js react-editable-json-tree module code execution | CVE-2022-36010
NAME Node.js react-editable-json-tree module code execution Platforms Affected:Node.js react-editable-json-tree 2.2.1Risk Level:10Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js react-editable-json-tree module could allow a remote...
