CISA: Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies
Best Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence Cookies CISA has observed cyber threat actors leveraging unencrypted...
OSINT
CISA: CISA Releases Twenty-One Industrial Control Systems Advisories
CISA Releases Twenty-One Industrial Control Systems Advisories CISA released twenty-one Industrial Control Systems (ICS) advisories on October 10, 2024. These...
CVE Alert: CVE-2024-9675
Vulnerability Summary: CVE-2024-9675 A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the...
CVE Alert: CVE-2024-7293
Vulnerability Summary: CVE-2024-7293 In Progress® Telerik® Report Server versions prior to 2024 Q3 (10.2.24.806), a password brute forcing attack is...
CVE Alert: CVE-2024-7840
Vulnerability Summary: CVE-2024-7840 In Progress Telerik Reporting versions prior to 2024 Q3 (2024.3.924), a command injection attack is possible through...
CVE Alert: CVE-2024-8014
Vulnerability Summary: CVE-2024-8014 In Progress Telerik Reporting versions prior to 2024 Q3 (18.2.24.924), a code execution attack is possible through...
CVE Alert: CVE-2024-7294
Vulnerability Summary: CVE-2024-7294 In Progress® Telerik® Report Server versions prior to 2024 Q3 (10.2.24.806), an HTTP DoS attack is possible...
CVE Alert: CVE-2024-46316
Vulnerability Summary: CVE-2024-46316 DrayTek Vigor3900 v1.5.1.6 was discovered to contain a command injection vulnerability via the sub_2C920 function at /cgi-bin/mainfunction.cgi....
CVE Alert: CVE-2024-8048
Vulnerability Summary: CVE-2024-8048 In Progress Telerik Reporting versions prior to 2024 Q3 (18.2.24.924), a code execution attack is possible using...
CVE Alert: CVE-2024-8015
Vulnerability Summary: CVE-2024-8015 In Progress Telerik Report Server versions prior to 2024 Q3 (10.2.24.924), a remote code execution attack is...
CVE Alert: CVE-2024-9671
Vulnerability Summary: CVE-2024-9671 A vulnerability was found in 3Scale. There is no auth mechanism to see a PDF invoice of...
CVE Alert: CVE-2024-46304
Vulnerability Summary: CVE-2024-46304 A Buffer Overflow vulnerability in libcoap v4.3.5-rc2 and below allows a remote attacker to cause a denial...
[RANSOMHUB] – Ransomware Victim: medexhco[.]com
Ransomware Group: RANSOMHUB VICTIM NAME: medexhcocom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[MEOW] – Ransomware Victim: Barnes Cohen and Sullivan
Ransomware Group: MEOW VICTIM NAME: Barnes Cohen and Sullivan NOTE: No files or stolen information are by RedPacket Security. Any...
[MEOW] – Ransomware Victim: La Futura
Ransomware Group: MEOW VICTIM NAME: La Futura NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Cobalt Strike Beacon Detected – 38[.]147[.]172[.]45:6667
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 91[.]186[.]211[.]102:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 117[.]72[.]83[.]32:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[MEOW] – Ransomware Victim: Atlantic Coast Consulting Inc
Ransomware Group: MEOW VICTIM NAME: Atlantic Coast Consulting Inc NOTE: No files or stolen information are by RedPacket Security. Any...
[HUNTERS] – Ransomware Victim: Glacier
Ransomware Group: HUNTERS VICTIM NAME: Glacier NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-47763
Vulnerability Summary: CVE-2024-47763 Wasmtime is an open source runtime for WebAssembly. Wasmtime's implementation of WebAssembly tail calls combined with stack...
CVE Alert: CVE-2024-47812
Vulnerability Summary: CVE-2024-47812 ImportDump is an extension for mediawiki designed to automate user import requests. Anyone who can edit the...
CVE Alert: CVE-2024-47813
Vulnerability Summary: CVE-2024-47813 Wasmtime is an open source runtime for WebAssembly. Under certain concurrent event orderings, a `wasmtime::Engine`'s internal type...
CVE Alert: CVE-2024-43610
Vulnerability Summary: CVE-2024-43610 Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view...
