CISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector Organization Today, CISA released Enhancing Cyber Resilience:...
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on November 21, 2024. These...
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
Ransomware Group: SAFEPAY VICTIM NAME: titleninecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Vulnerability Summary: CVE-2024-11362 The Payments Plugin and Checkout Plugin for WooCommerce: Stripe, PayPal, Square, Authorize.net plugin for WordPress is vulnerable...
Vulnerability Summary: CVE-2024-10874 The Quotes llama plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'quotes-llama' shortcode...
Vulnerability Summary: CVE-2024-10961 The Social Login plugin for WordPress is vulnerable to authentication bypass in all versions up to, and...
Vulnerability Summary: CVE-2024-10886 The Tribute Testimonials – WordPress Testimonial Grid/Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
Vulnerability Summary: CVE-2024-10869 The WordPress Brute Force Protection – Stop Brute Force Attacks plugin for WordPress is vulnerable to Reflected...
Vulnerability Summary: CVE-2024-9223 The WPDash Notes plugin for WordPress is vulnerable to unauthorized access of data due to a missing...
Vulnerability Summary: CVE-2024-11408 The Slotti Ajanvaraus plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slotti' shortcode...
Vulnerability Summary: CVE-2024-11265 The Increase Maximum Upload File Size | Increase Execution Time plugin for WordPress is vulnerable to Full...
Ransomware Group: EVEREST VICTIM NAME: Concord Orthopaedics NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Ransomware Group: EVEREST VICTIM NAME: STIIIZY NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
Ransomware Group: INCRANSOM VICTIM NAME: Pastor Real Estate NOTE: No files or stolen information are by RedPacket Security. Any legal...
Vulnerability Summary: CVE-2024-11387 The Easy Liveblogs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'elb_liveblog' shortcode...
Vulnerability Summary: CVE-2024-10873 The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all...
Vulnerability Summary: CVE-2024-11332 The HIPAA Compliant Forms with Drag’n’Drop HIPAA Form Builder. Sign HIPAA documents plugin for WordPress is vulnerable...
Vulnerability Summary: CVE-2024-11361 The PDF Invoices & Packing Slips Generator for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site...
Vulnerability Summary: CVE-2024-10880 The JobBoardWP – Job Board Listings and Submissions plugin for WordPress is vulnerable to Reflected Cross-Site Scripting...
Vulnerability Summary: CVE-2024-11426 The AutoListicle: Automatically Update Numbered List Articles plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
Vulnerability Summary: CVE-2024-9942 The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to arbitrary file uploads due...
Vulnerability Summary: CVE-2024-10803 The MP3 Sticky Player plugin for WordPress is vulnerable to Directory Traversal in all versions up to,...
Ransomware Group: HANDALA VICTIM NAME: Silicom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
