CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on January 14, 2025. These...
Cobalt Strike Beacon Detected – 123[.]249[.]4[.]78:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 142[.]11[.]227[.]160:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 123[.]60[.]184[.]253:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[MEDUSA] – Ransomware Victim: AVI Southeast
Ransomware Group: MEDUSA VICTIM NAME: AVI Southeast NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[MEDUSA] – Ransomware Victim: Indus Towers
Ransomware Group: MEDUSA VICTIM NAME: Indus Towers NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[MEDUSA] – Ransomware Victim: The Metropolitan Borough of Gateshead
Ransomware Group: MEDUSA VICTIM NAME: The Metropolitan Borough of Gateshead NOTE: No files or stolen information are by RedPacket Security....
[CLOP] – Ransomware Victim: DURAYDUNCAN[.]COM
Ransomware Group: CLOP VICTIM NAME: DURAYDUNCANCOM NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CISA: Microsoft Releases January 2025 Security Updates
Microsoft Releases January 2025 Security Updates Microsoft released security updates to address vulnerabilities in multiple Microsoft products. A cyber threat...
CVE Alert: CVE-2024-52938
Vulnerability Summary: CVE-2024-52938 Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware...
CVE Alert: CVE-2024-56065
Vulnerability Summary: CVE-2024-56065 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Saleswonder.biz Team WP2LEADS allows Reflected...
CVE Alert: CVE-2025-22828
Vulnerability Summary: CVE-2025-22828 CloudStack users can add and read comments (annotations) on resources they are authorised to access. Due to...
CVE Alert: CVE-2024-56301
Vulnerability Summary: CVE-2024-56301 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eniture Technology Distance Based Shipping...
CVE Alert: CVE-2025-22499
Vulnerability Summary: CVE-2025-22499 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FAKTOR VIER F4 Post Tree...
CVE Alert: CVE-2025-22570
Vulnerability Summary: CVE-2025-22570 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Miloš Đekić Inline Tweets allows...
CVE Alert: CVE-2025-22498
Vulnerability Summary: CVE-2025-22498 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in New Normal LLC LucidLMS allows...
CVE Alert: CVE-2025-22337
Vulnerability Summary: CVE-2025-22337 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Infosoft Consultant Order Audit Log...
CVE Alert: CVE-2025-22344
Vulnerability Summary: CVE-2025-22344 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Convoy Media Category Library allows...
CVE Alert: CVE-2025-22314
Vulnerability Summary: CVE-2025-22314 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Scripts Food Store –...
[SARCOMA] – Ransomware Victim: Boart & Wire
Ransomware Group: SARCOMA VICTIM NAME: Boart & Wire NOTE: No files or stolen information are by RedPacket Security. Any legal...
[RHYSIDA] – Ransomware Victim: The Chicano Federation
Ransomware Group: RHYSIDA VICTIM NAME: The Chicano Federation NOTE: No files or stolen information are by RedPacket Security. Any legal...
HackerOne Bug Bounty Disclosure: blind-ssrf-vulnerability-in-appstore-release-upload-form-offensiveops
Company Name: Nextcloud Company HackerOne URL: https://hackerone.com/nextcloud Submitted By:offensiveopsLink to Submitters Profile:https://hackerone.com/offensiveops Report Title:Blind SSRF Vulnerability in Appstore Release Upload...
HackerOne Bug Bounty Disclosure: critical-data-breach-big-data-for-all-domains-shezxi
Company Name: Basecamp Company HackerOne URL: https://hackerone.com/basecamp Submitted By:shezxiLink to Submitters Profile:https://hackerone.com/shezxi Report Title:Critical Data Breach - Big Data for...
CISA: Fortinet Releases Security Updates for Multiple Products
Fortinet Releases Security Updates for Multiple Products Fortinet released security updates to address vulnerabilities in multiple Fortinet products. A cyber...
