OilRig Exploits Windows Kernel Flaw in Espionage Campaign Targeting UAE and Gulf
The Iranian threat actor known as OilRig has been observed exploiting a now-patched privilege escalation flaw impacting the Windows Kernel...
OSINT
Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware
Threat actors are actively attempting to exploit a now-patched security flaw in Veeam Backup & Replication to deploy Akira and...
GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks
A new tax-themed malware campaign targeting insurance and finance sectors has been observed leveraging GitHub links in phishing email messages...
FBI Creates Fake Cryptocurrency to Expose Widespread Crypto Market Manipulation
The U.S. Department of Justice (DoJ) has announced arrests and charges against several individuals and entities in connection with allegedly...
[BLACKBASTA] – Ransomware Victim: caseparts[.]com
Ransomware Group: BLACKBASTA VICTIM NAME: casepartscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[STORMOUS] – Ransomware Victim: Ascires
Ransomware Group: STORMOUS VICTIM NAME: Ascires NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[MEOW] – Ransomware Victim: Astero
Ransomware Group: MEOW VICTIM NAME: Astero NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[ELDORADO] – Ransomware Victim: compra-aruba[.]com
Ransomware Group: ELDORADO VICTIM NAME: compra-arubacom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[BLACKBASTA] – Ransomware Victim: gfm-uk[.]com
Ransomware Group: BLACKBASTA VICTIM NAME: gfm-ukcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[DRAGONFORCE] – Ransomware Victim: Durham Region
Ransomware Group: DRAGONFORCE VICTIM NAME: Durham Region NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Cobalt Strike Beacon Detected – 114[.]132[.]159[.]247:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 154[.]221[.]19[.]134:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 115[.]159[.]149[.]77:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 43[.]138[.]132[.]137:444
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 110[.]40[.]67[.]252:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 23[.]94[.]66[.]68:8081
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 43[.]138[.]132[.]137:8081
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]96[.]157[.]135:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2024-9905
Vulnerability Summary: CVE-2024-9905 A vulnerability, which was classified as critical, has been found in SourceCodester Online Eyewear Shop 1.0. This...
CVE Alert: CVE-2024-9904
Vulnerability Summary: CVE-2024-9904 A vulnerability classified as critical was found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 1.2.0. This vulnerability...
CVE Alert: CVE-2024-9906
Vulnerability Summary: CVE-2024-9906 A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear Shop 1.0. Affected is...
CVE Alert: CVE-2024-9908
Vulnerability Summary: CVE-2024-9908 A vulnerability, which was classified as critical, was found in D-Link DIR-619L B1 2.06. Affected is the...
CVE Alert: CVE-2024-9907
Vulnerability Summary: CVE-2024-9907 A vulnerability classified as problematic was found in QileCMS up to 1.1.3. This vulnerability affects the function...
CVE Alert: CVE-2024-6959
Vulnerability Summary: CVE-2024-6959 A vulnerability in parisneo/lollms-webui version 9.8 allows for a Denial of Service (DOS) attack when uploading an...
