OSINT

CVE Alert: CVE-2024-20492

October 3, 2024

Vulnerability Summary: CVE-2024-20492 A vulnerability in the restricted shell of Cisco Expressway Series could allow an authenticated, local attacker to...

CVE Alert: CVE-2024-20442

October 3, 2024

Vulnerability Summary: CVE-2024-20442 A vulnerability in the REST API endpoints of Cisco Nexus Dashboard could allow an authenticated, low-privileged, remote...

CVE Alert: CVE-2024-20491

October 3, 2024

Vulnerability Summary: CVE-2024-20491 A vulnerability in a logging function of Cisco Nexus Dashboard Insights could allow an attacker with access...

CVE Alert: CVE-2024-20515

October 3, 2024

Vulnerability Summary: CVE-2024-20515 A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated,...

CVE Alert: CVE-2024-20490

October 3, 2024

Vulnerability Summary: CVE-2024-20490 A vulnerability in a logging function of Cisco Nexus Dashboard Fabric Controller (NDFC) and Cisco Nexus Dashboard...

[AKIRA] – Ransomware Victim: TRC Worldwide Engineering (Trcww)

October 3, 2024

Ransomware Group: AKIRA VICTIM NAME: TRC Worldwide Engineering (Trcww) NOTE: No files or stolen information are by RedPacket Security. Any...

[AKIRA] – Ransomware Victim: Rob Levine & Associates (roblevine[.]com)

October 3, 2024

Ransomware Group: AKIRA VICTIM NAME: Rob Levine & Associates (roblevinecom) NOTE: No files or stolen information are by RedPacket Security....

[NITROGEN] – Ransomware Victim: Red Barrels

October 3, 2024

Ransomware Group: NITROGEN VICTIM NAME: Red Barrels NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

CVE Alert: CVE-2024-20519

October 3, 2024

Vulnerability Summary: CVE-2024-20519 A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers...

CVE Alert: CVE-2024-20518

October 3, 2024

Vulnerability Summary: CVE-2024-20518 A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers...

CVE Alert: CVE-2024-20470

October 3, 2024

Vulnerability Summary: CVE-2024-20470 A vulnerability in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual...

CVE Alert: CVE-2024-20477

October 3, 2024

Vulnerability Summary: CVE-2024-20477 A vulnerability in a specific REST API endpoint of Cisco NDFC could allow an authenticated, low-privileged, remote...

CVE Alert: CVE-2024-20517

October 3, 2024

Vulnerability Summary: CVE-2024-20517 A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers...

CVE Alert: CVE-2024-20516

October 3, 2024

Vulnerability Summary: CVE-2024-20516 A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers...

CVE Alert: CVE-2024-20521

October 3, 2024

Vulnerability Summary: CVE-2024-20521 A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers...

CVE Alert: CVE-2024-20523

October 3, 2024

Vulnerability Summary: CVE-2024-20523 A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers...

CVE Alert: CVE-2024-20524

October 3, 2024

Vulnerability Summary: CVE-2024-20524 A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers...

CVE Alert: CVE-2024-20522

October 3, 2024

Vulnerability Summary: CVE-2024-20522 A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers...

[HUNTERS] – Ransomware Victim: CaleyWray

October 3, 2024

Ransomware Group: HUNTERS VICTIM NAME: CaleyWray NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Cobalt Strike Beacon Detected – 137[.]184[.]57[.]50:443

October 3, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 39[.]106[.]153[.]195:9876

October 3, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 39[.]100[.]94[.]226:80

October 3, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 103[.]244[.]226[.]99:4434

October 3, 2024

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

CVE Alert: CVE-2024-41290

October 3, 2024

Vulnerability Summary: CVE-2024-41290 FlatPress CMS v1.3.1 1.3 was discovered to use insecure methods to store authentication data via the cookie's...

OSINT

CVE Alert: CVE-2024-20492

CVE Alert: CVE-2024-20442

CVE Alert: CVE-2024-20491

CVE Alert: CVE-2024-20515

CVE Alert: CVE-2024-20490

[AKIRA] – Ransomware Victim: TRC Worldwide Engineering (Trcww)

[AKIRA] – Ransomware Victim: Rob Levine & Associates (roblevine[.]com)

[NITROGEN] – Ransomware Victim: Red Barrels

CVE Alert: CVE-2024-20519

CVE Alert: CVE-2024-20518

CVE Alert: CVE-2024-20470

CVE Alert: CVE-2024-20477

CVE Alert: CVE-2024-20517

CVE Alert: CVE-2024-20516

CVE Alert: CVE-2024-20521

CVE Alert: CVE-2024-20523

CVE Alert: CVE-2024-20524

CVE Alert: CVE-2024-20522

[HUNTERS] – Ransomware Victim: CaleyWray

Cobalt Strike Beacon Detected – 137[.]184[.]57[.]50:443

Cobalt Strike Beacon Detected – 39[.]106[.]153[.]195:9876

Cobalt Strike Beacon Detected – 39[.]100[.]94[.]226:80

Cobalt Strike Beacon Detected – 103[.]244[.]226[.]99:4434

CVE Alert: CVE-2024-41290

CVE Alert: CVE-2025-20317 – Cisco – Cisco Unified Computing System (Managed)

CVE Alert: CVE-2025-20241 – Cisco – Cisco NX-OS Software

CVE Alert: CVE-2025-9527 – Linksys – E1700

CVE Alert: CVE-2025-9529 – Campcodes – Payroll Management System

[MEDUSA] – Ransomware Victim: Aldagi

You may have missed