Critical Vulnerability in WordPress Backup Migration Plugin
WordPress has released updates addressing a critical vulnerability (CVE-2023-6553) in their Backup Migration plugin. The vulnerability has a Common Vulnerability...
OSINT
CISA: FBI, CISA, and ASD’s ACSC Release Advisory on Play Ransomware
FBI, CISA, and ASD’s ACSC Release Advisory on Play Ransomware Today, the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure...
Medusa Locker Ransomware Victim: Biomatrix LLC
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
Medusa Locker Ransomware Victim: ATCO Products Inc
Medusa Locker Logo NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...
QakBot Malware Resurfaces with New Tactics, Targeting the Hospitality Industry
A new wave of phishing messages distributing the QakBot malware has been observed, more than three months after a law...
Four U.S. Nationals Charged in $80 Million Pig Butchering Crypto Scam
Four U.S. nationals have been charged for participating in an illicit scheme that earned them more than $80 million via...
MongoDB Suffers Security Breach, Exposing Customer Data
MongoDB on Saturday disclosed it's actively investigating a security incident that has led to unauthorized access to "certain" corporate systems,...
New Security Vulnerabilities Uncovered in pfSense Firewall Software – Patch Now
Multiple security vulnerabilities have been discovered in the open-source Netgate pfSense firewall solution called pfSense that could be chained by...
CISA Urges Manufacturers Eliminate Default Passwords to Thwart Cyber Threats
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is urging manufacturers to get rid of default passwords on internet-exposed systems...
Crypto Hardware Wallet Ledger’s Supply Chain Breach Results in $600,000 Theft
Crypto hardware wallet maker Ledger published a new version of its "@ledgerhq/connect-kit" npm module after unidentified threat actors pushed malicious...
China’s MIIT Introduces Color-Coded Action Plan for Data Security Incidents
China's Ministry of Industry and Information Technology (MIIT) on Friday unveiled draft proposals detailing its plans to tackle data security...
New KV-Botnet Targeting Cisco, DrayTek, and Fortinet Devices for Stealthy Attacks
A new botnet consisting of firewalls and routers from Cisco, DrayTek, Fortinet, and NETGEAR is being used as a covert...
Microsoft Warns of Storm-0539: The Rising Threat Behind Holiday Gift Card Frauds
Microsoft is warning of an uptick in malicious activity from an emerging threat cluster it's tracking as Storm-0539 for orchestrating...
BianLian Ransomware Victim: Greenbox Loans Inc[.]
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
WordPress Hosting Service Kinsta Targeted By Google Phishing Ads
WordPress hosting provider Kinsta is warning customers that Google ads have been observed promoting phishing sites to steal hosting credentials....
Rhadamanthys Stealer Malware Evolves With More Powerful Features
The developers of the Rhadamanthys information-stealing malware have recently released two major versions to add improvements and enhancements across the...
What To Do When Receiving Unprompted Mfa Otp Codes
Receiving an unprompted one-time passcode (OTP) sent as an email or text should be a cause for concern as it...
Qbot Malware Returns In Campaign Targeting Hospitality Industry
The QakBot malware is once again being distributed in phishing campaigns after the botnet was disrupted by law enforcement over...
CISA: Adobe Releases Security Updates for Multiple Products
Adobe Releases Security Updates for Multiple Products Adobe has released security updates to address multiple vulnerabilities in Adobe software. A...
CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple has released security updates for Safari, iOS and iPadOS, Sonoma, Ventura, and...
CISA: CISA Releases SCuBA Google Workspace Secure Configuration Baselines for Public Comment
CISA Releases SCuBA Google Workspace Secure Configuration Baselines for Public Comment Today, CISA released the draft Secure Cloud Business Applications...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on December 12, 2023. These...
CISA: The Apache Software Foundation Updates Struts 2
The Apache Software Foundation Updates Struts 2 The Apache Software Foundation has released security updates to address a vulnerability (CVE-2023-50164)...
CISA: CISA Releases Seventeen Industrial Control Systems Advisories
CISA Releases Seventeen Industrial Control Systems Advisories CISA released seventeen Industrial Control Systems (ICS) advisories on December 14, 2023. These...
