[LYNX] – Ransomware Victim: Interoute agency
Ransomware Group: LYNX VICTIM NAME: Interoute agency NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2024-51739
Vulnerability Summary: CVE-2024-51739 Combodo iTop is a simple, web based IT Service Management tool. Unauthenticated user can perform users enumeration,...
CVE Alert: CVE-2024-9579
Vulnerability Summary: CVE-2024-9579 A potential vulnerability was discovered in certain Poly video conferencing devices. The firmware flaw does not properly...
CVE Alert: CVE-2024-49377
Vulnerability Summary: CVE-2024-49377 OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up until and including 1.10.2...
CVE Alert: CVE-2024-0134
Vulnerability Summary: CVE-2024-0134 NVIDIA Container Toolkit and NVIDIA GPU Operator for Linux contain a UNIX vulnerability where a specially crafted...
CVE Alert: CVE-2024-49772
Vulnerability Summary: CVE-2024-49772 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. In SuiteCRM versions 7.14.4, poor input...
CVE Alert: CVE-2024-49774
Vulnerability Summary: CVE-2024-49774 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. SuiteCRM relies on the blacklist of...
CVE Alert: CVE-2024-50333
Vulnerability Summary: CVE-2024-50333 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. User input is not validated and...
CVE Alert: CVE-2024-49773
Vulnerability Summary: CVE-2024-49773 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Poor input validation in export allows...
CVE Alert: CVE-2024-51493
Vulnerability Summary: CVE-2024-51493 OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up until and including 1.10.2...
CVE Alert: CVE-2024-50332
Vulnerability Summary: CVE-2024-50332 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Insufficient input value validation causes Blind...
South Korea Fines Meta $15.67M for Illegally Sharing Sensitive User Data with Advertisers
Meta has been fined 21.62 billion won ($15.67 million) by South Korea's data privacy watchdog for illegally collecting sensitive personal...
Canadian Suspect Arrested Over Snowflake Customer Breach and Extortion Attacks
Canadian law enforcement authorities have arrested an individual who is suspected to have conducted a series of hacks stemming from...
Google Cloud to Enforce Multi-Factor Authentication by 2025 for All Users
Google's cloud division has announced that it will enforce mandatory multi-factor authentication (MFA) for all users by the end of...
CVE Alert: CVE-2024-7995
Vulnerability Summary: CVE-2024-7995 A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT AUTHORITY/SYSTEM due...
CVE Alert: CVE-2024-10084
Vulnerability Summary: CVE-2024-10084 The Contact Form 7 – Dynamic Text Extension plugin for WordPress is vulnerable to Basic Information Disclosure...
CVE Alert: CVE-2024-50335
Vulnerability Summary: CVE-2024-50335 SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. The "Publish Key" field in SuiteCRM's...
CVE Alert: CVE-2024-51740
Vulnerability Summary: CVE-2024-51740 Combodo iTop is a simple, web based IT Service Management tool. This vulnerability can be used to...
CVE Alert: CVE-2024-47462
Vulnerability Summary: CVE-2024-47462 An arbitrary file creation vulnerability exists in the Instant AOS-8 and AOS-10 command line interface. Successful exploitation...
CVE Alert: CVE-2024-47461
Vulnerability Summary: CVE-2024-47461 An authenticated command injection vulnerability exists in the Instant AOS-8 and AOS-10 command line interface. A successful...
CVE Alert: CVE-2024-47464
Vulnerability Summary: CVE-2024-47464 An authenticated Path Traversal vulnerability exists in Instant AOS-8 and AOS-10. Successful exploitation of this vulnerability allows...
CVE Alert: CVE-2024-47463
Vulnerability Summary: CVE-2024-47463 An arbitrary file creation vulnerability exists in the Instant AOS-8 and AOS-10 command line interface. Successful exploitation...
CVE Alert: CVE-2024-42509
Vulnerability Summary: CVE-2024-42509 Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending...
CVE Alert: CVE-2024-47460
Vulnerability Summary: CVE-2024-47460 Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending...
