CVE Alert: CVE-2024-9341
Vulnerability Summary: CVE-2024-9341 A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may...
OSINT
CVE Alert: CVE-2024-47523
Vulnerability Summary: CVE-2024-47523 LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Alert...
CVE Alert: CVE-2024-47525
Vulnerability Summary: CVE-2024-47525 LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Alert...
CVE Alert: CVE-2024-47524
Vulnerability Summary: CVE-2024-47524 LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. User with Admin role can create a Device Groups,...
CVE Alert: CVE-2024-47526
Vulnerability Summary: CVE-2024-47526 LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Self Cross-Site Scripting (Self-XSS) vulnerability in the "Alert...
CVE Alert: CVE-2024-9407
Vulnerability Summary: CVE-2024-9407 A vulnerability exists in the bind-propagation option of the Dockerfile RUN --mount instruction. The system does not...
[STORMOUS] – Ransomware Victim: Acuity Advisor
Ransomware Group: STORMOUS VICTIM NAME: Acuity Advisor NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CISA: ASD’s ACSC, CISA, FBI, NSA, and International Partners Release Guidance on Principles of OT Cybersecurity for Critical Infrastructure Organizations
ASD’s ACSC, CISA, FBI, NSA, and International Partners Release Guidance on Principles of OT Cybersecurity for Critical Infrastructure Organizations Today,...
BudTrader – 2,721,185 breached accounts
HIBP In July 2024, a data breach of the now defunct cannabis social platform BudTrader was posted for sale on...
CVE Alert: CVE-2024-3635
Vulnerability Summary: CVE-2024-3635 The Post Grid WordPress plugin before 7.5.0 does not sanitise and escape some of its Grid settings,...
CVE Alert: CVE-2024-8449
Vulnerability Summary: CVE-2024-8449 Certain switch models from PLANET Technology have a Hard-coded Credential in the password recovering functionality, allowing an...
CVE Alert: CVE-2024-8451
Vulnerability Summary: CVE-2024-8451 Certain switch models from PLANET Technology have an SSH service that improperly handles insufficiently authenticated connection requests,...
CVE Alert: CVE-2024-8452
Vulnerability Summary: CVE-2024-8452 Certain switch models from PLANET Technology only support obsolete algorithms for authentication protocol and encryption protocol in...
CVE Alert: CVE-2024-8448
Vulnerability Summary: CVE-2024-8448 Certain switch models from PLANET Technology have a hard-coded credential in the specific command-line interface, allowing remote...
CVE Alert: CVE-2024-8450
Vulnerability Summary: CVE-2024-8450 Certain switch models from PLANET Technology have a Hard-coded community string in the SNMPv1 service, allowing unauthorized...
CVE Alert: CVE-2024-6394
Vulnerability Summary: CVE-2024-6394 A Local File Inclusion vulnerability exists in parisneo/lollms-webui versions below v9.8. The vulnerability is due to unverified...
Cobalt Strike Beacon Detected – 124[.]222[.]14[.]40:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 103[.]146[.]179[.]110:9443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 43[.]138[.]225[.]249:8099
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 211[.]149[.]159[.]163:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CISA: Ivanti Releases Security Updates for Endpoint Manager, Cloud Service Application, and Workspace Control
Ivanti Releases Security Updates for Endpoint Manager, Cloud Service Application, and Workspace Control Ivanti released security updates to address multiple...
CISA: Cisco Releases Security Updates for IOS XR Software
Cisco Releases Security Updates for IOS XR Software Cisco released security updates to address vulnerabilities in Cisco ISO XR software....
CISA: Adobe Releases Security Updates for Multiple Products
Adobe Releases Security Updates for Multiple Products Adobe released security updates to address multiple vulnerabilities in Adobe software. A cyber...
CISA: CISA Releases Twenty-Five Industrial Control Systems Advisories
CISA Releases Twenty-Five Industrial Control Systems Advisories CISA released twenty-five Industrial Control Systems (ICS) advisories on September 12, 2024. These...
