[MEDUSA] – Ransomware Victim: Marisa S[.]A
Ransomware Group: MEDUSA VICTIM NAME: Marisa SA NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services
The threat actors behind the AndroxGh0st malware are now exploiting a broader set of security flaws impacting various internet-facing applications,...
IcePeony and Transparent Tribe Target Indian Entities with Cloud-Based Tools
High-profile entities in India have become the target of malicious campaigns orchestrated by the Pakistan-based Transparent Tribe threat actor and...
CVE Alert: CVE-2024-10963
Vulnerability Summary: CVE-2024-10963 A vulnerability was found in pam_access due to the improper handling of tokens in access.conf, interpreted as...
CVE Alert: CVE-2024-9926
Vulnerability Summary: CVE-2024-9926 The Jetpack WordPress plugin does not have proper authorisation in one of its REST endpoint, allowing any...
CVE Alert: CVE-2024-43434
Vulnerability Summary: CVE-2024-43434 The bulk message sending feature in Moodle's Feedback module's non-respondents report had an incorrect CSRF token check,...
CVE Alert: CVE-2024-10965
Vulnerability Summary: CVE-2024-10965 A vulnerability classified as problematic was found in emqx neuron up to 2.10.0. Affected by this vulnerability...
CVE Alert: CVE-2024-8378
Vulnerability Summary: CVE-2024-8378 The Safe SVG WordPress plugin before 2.2.6 has its sanitisation code is only running for paths that...
CVE Alert: CVE-2024-10964
Vulnerability Summary: CVE-2024-10964 A vulnerability classified as critical has been found in emqx neuron up to 2.10.0. Affected is the...
CVE Alert: CVE-2024-48954
Vulnerability Summary: CVE-2024-48954 An issue was discovered in Logpoint before 7.5.0. Unvalidated input during the EventHub Collector setup by an...
CVE Alert: CVE-2024-48953
Vulnerability Summary: CVE-2024-48953 An issue was discovered in Logpoint before 7.5.0. Endpoints for creating, editing, or deleting third-party authentication modules...
CVE Alert: CVE-2024-48952
Vulnerability Summary: CVE-2024-48952 An issue was discovered in Logpoint before 7.5.0. SOAR uses a static JWT secret key to generate...
CVE Alert: CVE-2024-48951
Vulnerability Summary: CVE-2024-48951 An issue was discovered in Logpoint before 7.5.0. Server-Side Request Forgery (SSRF) on SOAR can be used...
Cobalt Strike Beacon Detected – 47[.]92[.]140[.]190:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 1[.]94[.]254[.]25:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 198[.]98[.]58[.]127:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 54[.]251[.]109[.]230:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 114[.]115[.]213[.]248:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 1[.]94[.]254[.]25:8085
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[APT73] – Ransomware Victim: www[.]assurified[.]com
Ransomware Group: APT73 VICTIM NAME: wwwassurifiedcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[APT73] – Ransomware Victim: www[.]botiga[.]com[.]uy
Ransomware Group: APT73 VICTIM NAME: wwwbotigacomuy NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
The vCISO Academy: Transforming MSPs and MSSPs into Cybersecurity Powerhouses
We've all heard a million times: growing demand for robust cybersecurity in the face of rising cyber threats is undeniable....
Malicious NPM Packages Target Roblox Users with Data-Stealing Malware
A new campaign has targeted the npm package repository with malicious JavaScript libraries that are designed to infect Roblox users...
Webinar: Learn How Storytelling Can Make Cybersecurity Training Fun and Effective
Let's face it—traditional security training can feel as thrilling as reading the fine print on a software update. It's routine,...
