The popularity of Dark Utilities ‘C2-as-a-Service’ rapidly increases
Dark Utilities “C2-as-a-Service” is attracting a growing number of customers searching for a command-and-control for their campaigns. The popularity of the...
DHS warns of critical flaws in Emergency Alert System encoder/decoder devices
The U.S. DHS warns of critical security vulnerabilities in Emergency Alert System (EAS) encoder/decoder devices. The Department of Homeland Security...
CISA adds Zimbra email bug to Known Exploited Vulnerabilities Catalog
US Critical Infrastructure Security Agency (CISA) adds a recently disclosed flaw in the Zimbra email suite to its Known Exploited...
Peetch – An eBPF Playground
peetch is a collection of tools aimed at experimenting with different aspects of eBPF to bypass TLS protocol protections. Currently,...
QuestionPro (unverified) – 22,229,637 breached accounts
In May 2022, the survey website QuestionPro was the target of an extortion attempt relating to an alleged data breach....
Black Basta Ransomware Victim: LYDECKER
Black Basta Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 47[.]97[.]70[.]163:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]234[.]72[.]26:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]75[.]93[.]75:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 139[.]155[.]39[.]230:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]142[.]214[.]167:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 198[.]144[.]191[.]172:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 175[.]178[.]36[.]137:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]103[.]189[.]229:5555
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 27[.]102[.]118[.]76:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 116[.]63[.]252[.]248:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]227[.]198[.]195:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Mysterious threat actor TAC-040 used previously undetected Ljl Backdoor
A threat actor, tracked as TAC-040, exploited Atlassian Confluence flaw CVE-2022-26134 to deploy previously undetected Ljl Backdoor. Cybersecurity firm Deepwatch...
VMware Workspace ONE Access, Identity Manager and vRealize Automation code execution | CVE-2022-31658
NAME VMware Workspace ONE Access, Identity Manager and vRealize Automation code execution Platforms Affected:VMware vRealize Automation 7.6 VMware Workspace ONE...
Node.js ctv-appletv3-router module code execution |
NAME Node.js ctv-appletv3-router module code execution Platforms Affected:Node.js ctv-appletv3-routerRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ctv-appletv3-router module could allow a remote attacker...
Quest KACE Systems Management Appliance (SMA) security bypass | CVE-2022-30285
NAME Quest KACE Systems Management Appliance (SMA) security bypass Platforms Affected:Quest KACE Systems Management Appliance 12.0Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Quest...
D-Link DIR820LA1 devices buffer overflow | CVE-2022-34973
NAME D-Link DIR820LA1 devices buffer overflow Platforms Affected:D-Link DIR820LA1 FW106B02Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION D-Link DIR820LA1 devices are vulnerable to a...
Node.js chawla-init-3 module code execution |
NAME Node.js chawla-init-3 module code execution Platforms Affected:Node.js chawla-init-3Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js chawla-init-3 module could allow a remote attacker...
BookWyrm brute force | CVE-2022-35925
NAME BookWyrm brute force Platforms Affected:BookWyrm BookWyrm 0.4.4Risk Level:9.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION BookWyrm is vulnerable to a brute force attack, caused...
