[MEDUSA] – Ransomware Victim: Ideker
Ransomware Group: MEDUSA VICTIM NAME: Ideker NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[RHYSIDA] – Ransomware Victim: Microworks
Ransomware Group: RHYSIDA VICTIM NAME: Microworks NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[SARCOMA] – Ransomware Victim: McMunn & Yates Building Suppliesorp
Ransomware Group: SARCOMA VICTIM NAME: McMunn & Yates Building Suppliesorp NOTE: No files or stolen information are by RedPacket Security....
New Linux Variant of FASTCash Malware Targets Payment Switches in ATM Heists
North Korean threat actors have been observed using a Linux variant of a known malware family called FASTCash to steal...
CVE Alert: CVE-2024-7847
Vulnerability Summary: CVE-2024-7847 VULNERABILITY DETAILS Rockwell Automation used the latest versions of the CVSS scoring system to assess the following...
CVE Alert: CVE-2024-9137
Vulnerability Summary: CVE-2024-9137 The affected product lacks an authentication check when sending commands to the server via the Moxa service....
CVE Alert: CVE-2024-9823
Vulnerability Summary: CVE-2024-9823 There exists a security vulnerability in Jetty's DosFilter which can be exploited by unauthorized users to cause...
CVE Alert: CVE-2024-6762
Vulnerability Summary: CVE-2024-6762 Jetty PushSessionCacheFilter can be exploited by unauthenticated users to launch remote DoS attacks by exhausting the server’s...
CVE Alert: CVE-2024-8184
Vulnerability Summary: CVE-2024-8184 There exists a security vulnerability in Jetty's ThreadLimitHandler.getRemote() which can be exploited by unauthorized users to cause...
CVE Alert: CVE-2024-45733
Vulnerability Summary: CVE-2024-45733 In Splunk Enterprise for Windows versions below 9.2.3 and 9.1.6, a low-privileged user that does not hold...
CVE Alert: CVE-2024-45731
Vulnerability Summary: CVE-2024-45731 In Splunk Enterprise for Windows versions below 9.3.1, 9.2.3, and 9.1.6, a low-privileged user that does not...
CVE Alert: CVE-2024-6763
Vulnerability Summary: CVE-2024-6763 Eclipse Jetty is a lightweight, highly scalable, Java-based web server and Servlet engine . It includes a...
CVE Alert: CVE-2024-45734
Vulnerability Summary: CVE-2024-45734 In Splunk Enterprise versions 9.3.0, 9.2.3, and 9.1.6, a low-privileged user that does not hold the "admin"...
CVE Alert: CVE-2024-45732
Vulnerability Summary: CVE-2024-45732 In Splunk Enterprise versions below 9.3.1, and 9.2.0 versions below 9.2.3, and Splunk Cloud Platform versions below...
Cobalt Strike Beacon Detected – 8[.]141[.]24[.]20:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 120[.]46[.]4[.]42:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]238[.]103[.]180:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 103[.]146[.]179[.]79:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 8[.]220[.]192[.]59:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 150[.]158[.]36[.]17:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[HUNTERS] – Ransomware Victim: Aaren Scientific
Ransomware Group: HUNTERS VICTIM NAME: Aaren Scientific NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
The Rise of Zero-Day Vulnerabilities: Why Traditional Security Solutions Fall Short
In recent years, the number and sophistication of zero-day vulnerabilities have surged, posing a critical threat to organizations of all...
China Accuses U.S. of Fabricating Volt Typhoon to Hide Its Own Hacking Campaigns
China's National Computer Virus Emergency Response Center (CVERC) has doubled down on claims that the threat actor known as the...
CVE Alert: CVE-2024-45739
Vulnerability Summary: CVE-2024-45739 In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes plaintext passwords for local...
