RedPacket Security - InfoSec News & Tutorials

CVE Alert: CVE-2025-54441

July 25, 2025

Vulnerability Summary: CVE-2025-54441 Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This...

[INCRANSOM] – Ransomware Victim: seasonsfour[.]com

July 25, 2025

Ransomware Group: INCRANSOM VICTIM NAME: seasonsfourcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2025-54448

July 25, 2025

Vulnerability Summary: CVE-2025-54448 Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This...

CVE Alert: CVE-2025-6174

July 25, 2025

Vulnerability Summary: CVE-2025-6174 The Qwizcards | online quizzes and flashcards WordPress plugin through 3.9.4 does not sanitise and escape the...

CVE Alert: CVE-2025-54449

July 25, 2025

Vulnerability Summary: CVE-2025-54449 Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9 Server allows Code Injection.This...

CVE Alert: CVE-2025-54455

July 25, 2025

Vulnerability Summary: CVE-2025-54455 Use of Hard-coded Credentials vulnerability in Samsung Electronics MagicINFO 9 Server allows Authentication Bypass.This issue affects MagicINFO...

CVE Alert: CVE-2025-54450

July 25, 2025

Vulnerability Summary: CVE-2025-54450 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Samsung Electronics MagicINFO 9...

Bug Bounty

BugCrowd Bug Bounty Disclosure: P5 – Account Takeover via Password Reset Token and Insecure Email Change Handling – David007

July 25, 2025

Account Takeover via Password Reset Token and Insecure Email Change Handling Account Takeover via Password Reset Token and Insecure Email...

CVE Alert: CVE-2025-41687

July 24, 2025

Vulnerability Summary: CVE-2025-41687 An unauthenticated remote attacker may use a stack based buffer overflow in the u-link Management API to...

CVE Alert: CVE-2025-41684

July 24, 2025

Vulnerability Summary: CVE-2025-41684 An authenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack...

CVE Alert: CVE-2025-41683

July 24, 2025

Vulnerability Summary: CVE-2025-41683 An authenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack...

CVE Alert: CVE-2025-31700

July 24, 2025

Vulnerability Summary: CVE-2025-31700 A vulnerability has been found in Dahua products. Attackers could exploit a buffer overflow vulnerability by sending...

CVE Alert: CVE-2025-31701

July 24, 2025

Vulnerability Summary: CVE-2025-31701 A vulnerability has been found in Dahua products. Attackers could exploit a buffer overflow vulnerability by sending...

[QILIN] – Ransomware Victim: BALNEARIO DE MONDARIZ

July 24, 2025

Ransomware Group: QILIN VICTIM NAME: BALNEARIO DE MONDARIZ NOTE: No files or stolen information are by RedPacket Security. Any legal...

[QILIN] – Ransomware Victim: foiegrasespinet

July 24, 2025

Ransomware Group: QILIN VICTIM NAME: foiegrasespinet NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2024-40682

July 24, 2025

Vulnerability Summary: CVE-2024-40682 IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 could allow a local...

CVE Alert: CVE-2025-27930

July 24, 2025

Vulnerability Summary: CVE-2025-27930 Zohocorp ManageEngine Applications Manager versions 176600 and prior are vulnerable to stored cross-site scripting in the File/Directory...

CVE Alert: CVE-2024-40686

July 24, 2025

Vulnerability Summary: CVE-2024-40686 IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 is vulnerable to HTTP...

CVE Alert: CVE-2025-53882

July 24, 2025

Vulnerability Summary: CVE-2025-53882 A Reliance on Untrusted Inputs in a Security Decision vulnerability in the logrotate configuration for openSUSEs mailman3...

CVE Alert: CVE-2024-41750

July 24, 2025

Vulnerability Summary: CVE-2024-41750 IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 could allow a local,...

HackerOne Bug Bounty Disclosure: use-after-free-or-assert-triggered-with-failed-allocations-in-openssl-catenacyber

July 24, 2025

Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:catenacyberLink to Submitters Profile:https://hackerone.com/catenacyber Report Title:Use after free (or assert triggered) with...

HackerOne Bug Bounty Disclosure: security-check-up-ejejohn

July 24, 2025

Company Name: curl Company HackerOne URL: https://hackerone.com/curl Submitted By:ejejohnLink to Submitters Profile:https://hackerone.com/ejejohn Report Title:Security check upReport Link:https://hackerone.com/reports/3269761Date Submitted:24 July 2025...

[QILIN] – Ransomware Victim: moonsafari

July 24, 2025

Ransomware Group: QILIN VICTIM NAME: moonsafari NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: Pilipili

July 24, 2025

Ransomware Group: AKIRA VICTIM NAME: Pilipili NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed