CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook
CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook Today, CISA released the Microsoft Expanded Cloud Logs Implementation Playbook to help...
CISA: CISA and Partners Release Call to Action to Close the National Software Understanding Gap
CISA and Partners Release Call to Action to Close the National Software Understanding Gap Today, CISA—in partnership with the Defense Advanced...
CISA: CISA and FBI Release Updated Guidance on Product Security Bad Practices
CISA and FBI Release Updated Guidance on Product Security Bad Practices In partnership with the Federal Bureau of Investigation (FBI),...
CISA: CISA Releases Twelve Industrial Control Systems Advisories
CISA Releases Twelve Industrial Control Systems Advisories CISA released twelve Industrial Control Systems (ICS) advisories on January 16, 2025. These...
Cobalt Strike Beacon Detected – 112[.]74[.]184[.]37:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[KAIROS] – Ransomware Victim: nightingalehammerson[.]org
Ransomware Group: KAIROS VICTIM NAME: nightingalehammersonorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[LYNX] – Ransomware Victim: Gossett Motor Cars
Ransomware Group: LYNX VICTIM NAME: Gossett Motor Cars NOTE: No files or stolen information are by RedPacket Security. Any legal...
[FUNKSEC] – Ransomware Victim: funkforum
Ransomware Group: FUNKSEC VICTIM NAME: funkforum NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-23922
Vulnerability Summary: CVE-2025-23922 Cross-Site Request Forgery (CSRF) vulnerability in Harsh iSpring Embedder allows Upload a Web Shell to a Web...
CVE Alert: CVE-2025-23919
Vulnerability Summary: CVE-2025-23919 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Ella van Durpe...
CVE Alert: CVE-2025-23907
Vulnerability Summary: CVE-2025-23907 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in closed SOCIAL.NINJA allows Stored XSS....
CVE Alert: CVE-2025-23902
Vulnerability Summary: CVE-2025-23902 Cross-Site Request Forgery (CSRF) vulnerability in Taras Dashkevych Error Notification allows Cross Site Request Forgery.This issue affects...
CVE Alert: CVE-2025-23901
Vulnerability Summary: CVE-2025-23901 Cross-Site Request Forgery (CSRF) vulnerability in Oliver Schaal GravatarLocalCache allows Cross Site Request Forgery.This issue affects GravatarLocalCache:...
CVE Alert: CVE-2025-23915
Vulnerability Summary: CVE-2025-23915 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Roninwp...
CVE Alert: CVE-2025-23917
Vulnerability Summary: CVE-2025-23917 Missing Authorization vulnerability in Chandrika Guntur, Morgan Kay Chamber Dashboard Business Directory allows Exploiting Incorrectly Configured Access...
CVE Alert: CVE-2025-23916
Vulnerability Summary: CVE-2025-23916 Missing Authorization vulnerability in Nuanced Media WP Meetup allows Exploiting Incorrectly Configured Access Control Security Levels.This issue...
CVE Alert: CVE-2025-23930
Vulnerability Summary: CVE-2025-23930 Missing Authorization vulnerability in iTechArt-Group PayPal Marketing Solutions allows Exploiting Incorrectly Configured Access Control Security Levels.This issue...
CVE Alert: CVE-2025-23913
Vulnerability Summary: CVE-2025-23913 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in pankajpragma, rahulpragma WordPress...
[APT73] – Ransomware Victim: fol-23[.]fr
Ransomware Group: APT73 VICTIM NAME: fol-23fr NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CISA: CISA and FBI Release Updated Guidance on Product Security Bad Practices
CISA and FBI Release Updated Guidance on Product Security Bad Practices In partnership with the Federal Bureau of Investigation (FBI),...
[FUNKSEC] – Ransomware Victim: aquamanaesp[.]gov[.]co
Ransomware Group: FUNKSEC VICTIM NAME: aquamanaespgovco NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[AKIRA] – Ransomware Victim: Divimast
Ransomware Group: AKIRA VICTIM NAME: Divimast NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[AKIRA] – Ransomware Victim: VODOTEHNIKA D[.]D[.]
Ransomware Group: AKIRA VICTIM NAME: VODOTEHNIKA DD NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
