[QILIN] – Ransomware Victim: Metricon Homes
Ransomware Group: QILIN VICTIM NAME: Metricon Homes NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
OSINT
Kongtuke Filefix Leads To New Interlock Rat Variant
Researchers from The DFIR Report, in partnership with Proofpoint, have identified a new and resilient variant of the Interlock ransomware...
CVE Alert: CVE-2025-40596
Vulnerability Summary: CVE-2025-40596 A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause...
CVE Alert: CVE-2025-40597
Vulnerability Summary: CVE-2025-40597 A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause...
CVE Alert: CVE-2025-6018
Vulnerability Summary: CVE-2025-6018 A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules (PAM)....
CVE Alert: CVE-2025-40598
Vulnerability Summary: CVE-2025-40598 A Reflected cross-site scripting (XSS) vulnerability exists in the SMA100 series web interface, allowing a remote unauthenticated...
CVE Alert: CVE-2025-33020
Vulnerability Summary: CVE-2025-33020 IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 transmits sensitive information without encryption that could allow...
CVE Alert: CVE-2025-50481
Vulnerability Summary: CVE-2025-50481 A cross-site scripting (XSS) vulnerability in the component /blog/blogpost/add of Mezzanine CMS v6.1.0 allows attackers to execute...
CVE Alert: CVE-2025-8069
Vulnerability Summary: CVE-2025-8069 During the AWS Client VPN client installation on Windows devices, the install process references the C:\usr\local\windows-x86_64-openssl-localbuild\ssl directory...
CVE Alert: CVE-2025-46171
Vulnerability Summary: CVE-2025-46171 vBulletin 3.8.7 is vulnerable to a denial-of-service condition via the misc.php?do=buddylist endpoint. If an authenticated user has...
CVE Alert: CVE-2025-2633
Vulnerability Summary: CVE-2025-2633 Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in lvre!UDecStrToNum that may...
CVE Alert: CVE-2025-2634
Vulnerability Summary: CVE-2025-2634 Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in fontmgr may result...
$380m Lawsuit Claims Intruder Got Clorox’s Passwords From Cognizant Simply Byasking
Clorox is suing its service desk provider, Cognizant, for $380 million in a California state court, alleging the IT support...
Copilot Vision On Windows 11 Sends Data To Microsoft Servers
Microsoft is again throwing AI at Windows 11 to see what sticks, releasing features including the even more eyebrow-raising successor...
CVE Alert: CVE-2025-4439
Vulnerability Summary: CVE-2025-4439 An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 before 18.0.5, 18.1 before...
CVE Alert: CVE-2025-50477
Vulnerability Summary: CVE-2025-50477 A URL redirection in lbry-desktop v0.53.9 allows attackers to redirect victim users to attacker-controlled pages. Affected Endpoints:...
CVE Alert: CVE-2025-46686
Vulnerability Summary: CVE-2025-46686 Redis through 7.4.3 allows memory consumption via a multi-bulk command composed of many bulks, sent by an...
CVE Alert: CVE-2025-4700
Vulnerability Summary: CVE-2025-4700 An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 before 18.0.5, 18.1 before...
CVE Alert: CVE-2025-47187
Vulnerability Summary: CVE-2025-47187 A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970...
CVE Alert: CVE-2025-47281
Vulnerability Summary: CVE-2025-47281 Kyverno is a policy engine designed for cloud native platform engineering teams. In versions 1.14.1 and below,...
CVE Alert: CVE-2025-53537
Vulnerability Summary: CVE-2025-53537 LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions...
CVE Alert: CVE-2025-44109
Vulnerability Summary: CVE-2025-44109 A URL redirection in Pinokio v3.6.23 allows attackers to redirect victim users to attacker-controlled pages. Affected Endpoints:...
CVE Alert: CVE-2025-54377
Vulnerability Summary: CVE-2025-54377 Roo Code is an AI-powered autonomous coding agent that lives in users' editors. In versions 3.23.18 and...
CVE Alert: CVE-2025-32019
Vulnerability Summary: CVE-2025-32019 Harbor is an open source trusted cloud native registry project that stores, signs, and scans content. Versions...
