OSINT

CVE Alert: CVE-2024-8804

October 5, 2024

Vulnerability Summary: CVE-2024-8804 The Code Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's script embed...

CVE Alert: CVE-2024-9421

October 5, 2024

Vulnerability Summary: CVE-2024-9421 The Login Logout Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'class' parameter...

CVE Alert: CVE-2024-47854

October 5, 2024

Vulnerability Summary: CVE-2024-47854 A vulnerability was discovered in Veritas Data Insight before 7.1. It allows a remote attacker to inject...

CVE Alert: CVE-2024-9242

October 5, 2024

Vulnerability Summary: CVE-2024-9242 The Memberful – Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...

CVE Alert: CVE-2024-6442

October 5, 2024

Vulnerability Summary: CVE-2024-6442 In ascs_cp_rsp_add in /subsys/bluetooth/audio/ascs.c, an unchecked tailroom could lead to a global buffer overflow. Affected Endpoints: No...

[HUNTERS] – Ransomware Victim: Ibermutuamur

October 5, 2024

Ransomware Group: HUNTERS VICTIM NAME: Ibermutuamur NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2024-9306

October 5, 2024

Vulnerability Summary: CVE-2024-9306 The WP Booking Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in...

CVE Alert: CVE-2024-6443

October 5, 2024

Vulnerability Summary: CVE-2024-6443 In utf8_trunc in zephyr/lib/utils/utf8.c, last_byte_p can point to one byte before the string pointer if the string...

CVE Alert: CVE-2024-6444

October 5, 2024

Vulnerability Summary: CVE-2024-6444 No proper validation of the length of user input in olcp_ind_handler in zephyr/subsys/bluetooth/services/ots/ots_client.c. Affected Endpoints: No affected...

CVE Alert: CVE-2024-9435

October 5, 2024

Vulnerability Summary: CVE-2024-9435 The ShiftController Employee Shift Scheduling plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URL keys...

CVE Alert: CVE-2024-9071

October 5, 2024

Vulnerability Summary: CVE-2024-9071 The Easy Demo Importer – A Modern One-Click Demo Import Solution plugin for WordPress is vulnerable to...

CVE Alert: CVE-2024-8499

October 5, 2024

Vulnerability Summary: CVE-2024-8499 The Checkout Field Editor (Checkout Manager) for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting...

CVE Alert: CVE-2024-9481

October 5, 2024

Vulnerability Summary: CVE-2024-9481 An out-of-bounds write in the engine module in AVG/Avast Antivirus signature

CVE Alert: CVE-2024-9482

October 5, 2024

Vulnerability Summary: CVE-2024-9482 An out-of-bounds write in the engine module in AVG/Avast Antivirus signature

CVE Alert: CVE-2024-9483

October 5, 2024

Vulnerability Summary: CVE-2024-9483 A null-pointer-dereference in the signature verification module in AVG/Avast Antivirus signature

CVE Alert: CVE-2024-9271

October 5, 2024

Vulnerability Summary: CVE-2024-9271 The Re:WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all...

[KILLSEC] – Ransomware Victim: betterhalf[.]ai

October 5, 2024

Ransomware Group: KILLSEC VICTIM NAME: betterhalfai NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[CLOP] – Ransomware Victim: HARTSON-KENNEDY[.]COM

October 5, 2024

Ransomware Group: CLOP VICTIM NAME: HARTSON-KENNEDYCOM NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Cobalt Strike Beacon Detected – 1[.]94[.]52[.]236:443

October 5, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 118[.]31[.]16[.]216:80

October 5, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

[HUNTERS] – Ransomware Victim: BNBuilders

October 5, 2024

Ransomware Group: HUNTERS VICTIM NAME: BNBuilders NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[RANSOMHUB] – Ransomware Victim: omniboxx[.]nl

October 5, 2024

Ransomware Group: RANSOMHUB VICTIM NAME: omniboxxnl NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Posh C2 Detected – 3[.]109[.]173[.]1:443

October 5, 2024

The Information provided at the time of posting was detected as "Posh C2". Depending on when you are viewing this...

CVE Alert: CVE-2024-9410

October 5, 2024

Vulnerability Summary: CVE-2024-9410 Ada.cx's Sentry configuration allowed for blind server-side request forgeries (SSRF) through the use of a data scraping...

OSINT

CVE Alert: CVE-2024-8804

CVE Alert: CVE-2024-9421

CVE Alert: CVE-2024-47854

CVE Alert: CVE-2024-9242

CVE Alert: CVE-2024-6442

[HUNTERS] – Ransomware Victim: Ibermutuamur

CVE Alert: CVE-2024-9306

CVE Alert: CVE-2024-6443

CVE Alert: CVE-2024-6444

CVE Alert: CVE-2024-9435

CVE Alert: CVE-2024-9071

CVE Alert: CVE-2024-8499

CVE Alert: CVE-2024-9481

CVE Alert: CVE-2024-9482

CVE Alert: CVE-2024-9483

CVE Alert: CVE-2024-9271

[KILLSEC] – Ransomware Victim: betterhalf[.]ai

[CLOP] – Ransomware Victim: HARTSON-KENNEDY[.]COM

Cobalt Strike Beacon Detected – 1[.]94[.]52[.]236:443

Cobalt Strike Beacon Detected – 118[.]31[.]16[.]216:80

[HUNTERS] – Ransomware Victim: BNBuilders

[RANSOMHUB] – Ransomware Victim: omniboxx[.]nl

Posh C2 Detected – 3[.]109[.]173[.]1:443

CVE Alert: CVE-2024-9410

Endpoint Protection Reimagined for Modern Enterprises

Cobalt Strike Beacon Detected – 101[.]35[.]109[.]246:443

Cobalt Strike Beacon Detected – 47[.]110[.]32[.]120:8880

Cobalt Strike Beacon Detected – 117[.]72[.]96[.]48:443

Cobalt Strike Beacon Detected – 74[.]48[.]223[.]225:51235

You may have missed