OSINT

Cobalt Strike Beacon Detected – 47[.]117[.]125[.]219:80

May 29, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 8[.]148[.]20[.]113:443

May 29, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 124[.]221[.]64[.]229:8081

May 29, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

[QILIN] – Ransomware Victim: innovasystems[.]com

May 28, 2025

Ransomware Group: QILIN VICTIM NAME: innovasystemscom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2025-41649

May 28, 2025

Vulnerability Summary: CVE-2025-41649 An unauthenticated remote attacker can exploit insufficient input validation to write data beyond the bounds of a...

CVE Alert: CVE-2025-5244

May 28, 2025

Vulnerability Summary: CVE-2025-5244 A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected...

CVE Alert: CVE-2025-5271

May 28, 2025

Vulnerability Summary: CVE-2025-5271 Previewing a response in Devtools ignored CSP headers, which could have allowed content injection attacks. This vulnerability...

CVE Alert: CVE-2025-5117

May 28, 2025

Vulnerability Summary: CVE-2025-5117 The Property plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on...

CVE Alert: CVE-2025-5270

May 28, 2025

Vulnerability Summary: CVE-2025-5270 In certain cases, SNI could have been sent unencrypted even when encrypted DNS was enabled. This vulnerability...

CVE Alert: CVE-2025-5265

May 28, 2025

Vulnerability Summary: CVE-2025-5265 Due to insufficient escaping of the ampersand character in the “Copy as cURL” feature, an attacker could...

CVE Alert: CVE-2025-5268

May 28, 2025

Vulnerability Summary: CVE-2025-5268 Memory safety bugs present in Firefox 138, Thunderbird 138, Firefox ESR 128.10, and Thunderbird 128.10. Some of...

CVE Alert: CVE-2025-5266

May 28, 2025

Vulnerability Summary: CVE-2025-5266 Script elements loading cross-origin resources generated load and error events which leaked information enabling XS-Leaks attacks. This...

CVE Alert: CVE-2025-5269

May 28, 2025

Vulnerability Summary: CVE-2025-5269 Memory safety bug present in Firefox ESR 128.10, and Thunderbird 128.10. This bug showed evidence of memory...

CVE Alert: CVE-2025-5267

May 28, 2025

Vulnerability Summary: CVE-2025-5267 A clickjacking vulnerability could have been used to trick a user into leaking saved payment card details...

[RHYSIDA] – Ransomware Victim: Cator Ruma & Associates

May 28, 2025

Ransomware Group: RHYSIDA VICTIM NAME: Cator Ruma & Associates NOTE: No files or stolen information are by RedPacket Security. Any...

[BLACKLOCK] – Ransomware Victim: Quick Frames USA

May 28, 2025

Ransomware Group: BLACKLOCK VICTIM NAME: Quick Frames USA NOTE: No files or stolen information are by RedPacket Security. Any legal...

[AKIRA] – Ransomware Victim: LaboratoriosBelloch (Nelly, Yunsey,Fresh feel)

May 28, 2025

Ransomware Group: AKIRA VICTIM NAME: LaboratoriosBelloch (Nelly, Yunsey,Fresh feel) NOTE: No files or stolen information are by RedPacket Security. Any...

[AKIRA] – Ransomware Victim: High Grade Materials

May 28, 2025

Ransomware Group: AKIRA VICTIM NAME: High Grade Materials NOTE: No files or stolen information are by RedPacket Security. Any legal...

[SPACEBEARS] – Ransomware Victim: Fujipoly Ltd

May 28, 2025

Ransomware Group: SPACEBEARS VICTIM NAME: Fujipoly Ltd NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

CVE Alert: CVE-2025-5263

May 28, 2025

Vulnerability Summary: CVE-2025-5263 Error handling for script execution was incorrectly isolated from web content, which could have allowed cross-origin leak...

CVE Alert: CVE-2025-5264

May 28, 2025

Vulnerability Summary: CVE-2025-5264 Due to insufficient escaping of the newline character in the “Copy as cURL” feature, an attacker could...

CVE Alert: CVE-2025-48798

May 28, 2025

Vulnerability Summary: CVE-2025-48798 A flaw was found in GIMP when processing XCF image files. If a user opens one of...

CVE Alert: CVE-2025-5272

May 28, 2025

Vulnerability Summary: CVE-2025-5272 Memory safety bugs present in Firefox 138 and Thunderbird 138. Some of these bugs showed evidence of...

CVE Alert: CVE-2025-48796

May 28, 2025

Vulnerability Summary: CVE-2025-48796 A flaw was found in GIMP. The GIMP ani_load_image() function is vulnerable to a stack-based overflow. If...

OSINT

Cobalt Strike Beacon Detected – 47[.]117[.]125[.]219:80

Cobalt Strike Beacon Detected – 8[.]148[.]20[.]113:443

Cobalt Strike Beacon Detected – 124[.]221[.]64[.]229:8081

[QILIN] – Ransomware Victim: innovasystems[.]com

CVE Alert: CVE-2025-41649

CVE Alert: CVE-2025-5244

CVE Alert: CVE-2025-5271

CVE Alert: CVE-2025-5117

CVE Alert: CVE-2025-5270

CVE Alert: CVE-2025-5265

CVE Alert: CVE-2025-5268

CVE Alert: CVE-2025-5266

CVE Alert: CVE-2025-5269

CVE Alert: CVE-2025-5267

[RHYSIDA] – Ransomware Victim: Cator Ruma & Associates

[BLACKLOCK] – Ransomware Victim: Quick Frames USA

[AKIRA] – Ransomware Victim: LaboratoriosBelloch (Nelly, Yunsey,Fresh feel)

[AKIRA] – Ransomware Victim: High Grade Materials

[SPACEBEARS] – Ransomware Victim: Fujipoly Ltd

CVE Alert: CVE-2025-5263

CVE Alert: CVE-2025-5264

CVE Alert: CVE-2025-48798

CVE Alert: CVE-2025-5272

CVE Alert: CVE-2025-48796

[AKIRA] – Ransomware Victim: Souleret Engineering(LSSE)

[NOVA] – Ransomware Victim: Eurofins Scientific

[NOVA] – Ransomware Victim: Eurofins Healthcare

CVE Alert: CVE-2025-6248

CVE Alert: CVE-2025-6231

You may have missed