Cobalt Stike Beacon Detected – 120[.]53[.]232[.]55:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]54[.]182[.]249:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 42[.]193[.]145[.]27:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 54[.]152[.]184[.]14:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Conti vs. LockBit: A Comparative Analysis of Ransomware Groups
We compare the targeting and business models of the Conti and LockBit ransomware groups using data analysis approaches. This will...
US-CERT Bulletin (SB22-178):Vulnerability Summary for the Week of June 20, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
The government of Lithuania confirmed it had been hit by an intense cyberattack
Lithuania confirmed it had been hit by an “intense” cyberattack, after Vilnius imposed restrictions on the rail transit of certain...
Cuba Ransomware Victim: R1group
Cuba Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
HackerOne Bug Bounty Disclosure: bypassing-cache-deception-armor-using–avif-extension-filebybombon
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by bombon bombon Report Bypassing Cache Deception Armor using...
HackerOne Bug Bounty Disclosure: sign-in-with-apple-works-on-existing-accounts,-bypasses-2fabymattipv4
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by mattipv4 mattipv4 Report Sign in with Apple works...
HackerOne Bug Bounty Disclosure: cve-2022-32205:-set-cookie-denial-of-servicebynyymi
Programme HackerOne curl curl Submitted by nyymi nyymi Report CVE-2022-32205: Set-Cookie denial of service Full Report
HackerOne Bug Bounty Disclosure: cve-2022-32208:-ftp-krb-bad-message-verificationbynyymi
Programme HackerOne curl curl Submitted by nyymi nyymi Report CVE-2022-32208: FTP-KRB bad message verification Full Report
HackerOne Bug Bounty Disclosure: http-request-smuggling-with-origin-rules-using-newlines-in-the-host_header-action-parameterbyalbertspedersen
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by albertspedersen albertspedersen Report HTTP request smuggling with Origin...
HackerOne Bug Bounty Disclosure: cve-2022-32207:-unpreserved-file-permissionsbynyymi
Programme HackerOne curl curl Submitted by nyymi nyymi Report CVE-2022-32207: Unpreserved file permissions Full Report
HackerOne Bug Bounty Disclosure: credential-leak-when-use-two-urlbychen172
Programme HackerOne curl curl Submitted by chen172 chen172 Report Credential leak when use two url Full Report
HackerOne Bug Bounty Disclosure: sign-in-with-apple-generates-long-life-jwts,-seemingly-irrevocable,-that-grant-immediate-access-to-accountsbymattipv4
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by mattipv4 mattipv4 Report Sign in with Apple generates...
HackerOne Bug Bounty Disclosure: api-docs-expose-an-active-token-for-the-sample-domain-theburritobot-combysainaen
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by sainaen sainaen Report API docs expose an active...
HackerOne Bug Bounty Disclosure: cve-2022-32206:-http-compression-denial-of-servicebynyymi
Programme HackerOne curl curl Submitted by nyymi nyymi Report CVE-2022-32206: HTTP compression denial of service Full Report
CISA: CISA Adds Eight Known Exploited Vulnerabilities to Catalog
CISA Adds Eight Known Exploited Vulnerabilities to Catalog CISA has added eight new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
New Matanbuchus Campaign drops Cobalt Strike beacons
Matanbuchus malware-as-a-service (Maas) has been observed spreading through phishing campaigns, dropping Cobalt Strike beacons. Threat intelligence firm Cyble has observed a...
LockBit 3.0 Dark Web site is online
LockBit has released a new TOR onion page with offers of bug bounties up to $1m aimed at all security...
Cyberattack halted the production at the Iranian state-owned Khuzestan Steel company
Iranian state-owned Khuzestan Steel Company was hit by a cyber attack that forced the company to halt its production. The Khuzestan Steel...
EmoCheck – Emotet Detection Tool For Windows OS
Emotet detection tool for Windows OS. How to use Download EmoCheck from the Releases page. Run EmoCheck on the host....
BlackCat/ALPHV Ransomware Victim: nutis-com
BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
