OSINT

Karakurt Ransomware Victim: Chattanooga Heart Institute

May 24, 2023

KARAKURT RANSOMWARE NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...

Cuba ransomware claims cyberattack on Philadelphia Inquirer

May 24, 2023

The Cuba ransomware gang has claimed responsibility for this month's cyberattack on The Philadelphia Inquirer, which temporarily disrupted the newspaper's...

Arms maker Rheinmetall confirms BlackBasta ransomware attack

May 24, 2023

German automotive and arms manufacturer Rheinmetall AG confirms that it suffered a BlackBasta ransomware attack that impacted its civilian business....

GoldenJackal state hackers silently attacking govts since 2019

May 24, 2023

Image: Bing Create A relatively unknown advanced persistent threat (APT) group named 'GoldenJackal' has been targeting government and diplomatic entities...

New AhRat Android malware hidden in app with 50,000 installs

May 24, 2023

Image: Bing Image Creator ESET malware researchers found a new remote access trojan (RAT) on the Google Play Store, hidden...

IT employee impersonates ransomware gang to extort employer

May 24, 2023

A 28-year-old United Kingdom man from Fleetwood, Hertfordshire, has been convicted of unauthorized computer access with criminal intent and blackmailing...

US sanctions orgs behind North Korea’s ‘illicit’ IT worker army

May 24, 2023

The Treasury Department's Office of Foreign Assets Control (OFAC) announced sanctions today against four entities and one individual for their...

CISA: CISA Releases Five Industrial Control Systems Advisories

May 24, 2023

CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on May 16, 2023. These...

CISA: CISA and Partners Release BianLian Ransomware Cybersecurity Advisory

May 24, 2023

CISA and Partners Release BianLian Ransomware Cybersecurity Advisory CISA, the Federal Bureau of Investigation (FBI), and the Australian Cyber Security...

CISA: CISA and FBI Release Joint Advisory in Response to Active Exploitation of PaperCut Vulnerability

May 24, 2023

CISA and FBI Release Joint Advisory in Response to Active Exploitation of PaperCut Vulnerability CISA and FBI have released a...

CISA: CISA Releases Three Industrial Control Systems Advisories

May 24, 2023

CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on May 16, 2023. These...

CISA: CISA Adds Seven Known Exploited Vulnerabilities to Catalog

May 24, 2023

CISA Adds Seven Known Exploited Vulnerabilities to Catalog CISA has added seven new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...

CISA: CISA Releases Four Industrial Control Systems Advisories

May 24, 2023

CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on May 23, 2023. These...

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

May 24, 2023

CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA and Partners Update the #StopRansomware Guide, Developed through the Joint Ransomware Task Force (JRTF)

May 24, 2023

CISA and Partners Update the #StopRansomware Guide, Developed through the Joint Ransomware Task Force (JRTF) Today, CISA, the Federal Bureau...

CISA: Cisco Releases Security Advisory for Small Business Series Switches

May 24, 2023

Cisco Releases Security Advisory for Small Business Series Switches Cisco released a security advisory to address multiple vulnerabilities affecting the...

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

May 24, 2023

CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

Cobalt Stike Beacon Detected – 88[.]214[.]25[.]241:80

May 24, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 23[.]226[.]55[.]68:443

May 24, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 39[.]104[.]76[.]226:6443

May 24, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Stike Beacon Detected – 43[.]138[.]168[.]20:8001

May 24, 2023

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

889fd6968b57dd0b0ae676947ed1d07fa209f5d9fae63f56fc964d8bb96f7dbb

Acheron – Indirect Syscalls For AV/EDR Evasion In Go Assembly

May 23, 2023

Acheron is a library inspired by SysWhisper3/FreshyCalls/RecycledGate, with most of the functionality implemented in Go assembly. acheron package can be...

Royal Ransomware Victim: Dotcom Distribution

May 23, 2023

RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...

Royal Ransomware Victim: Coos Bay

May 23, 2023

RoyalRansomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the...

OSINT

Karakurt Ransomware Victim: Chattanooga Heart Institute

Cuba ransomware claims cyberattack on Philadelphia Inquirer

Arms maker Rheinmetall confirms BlackBasta ransomware attack

GoldenJackal state hackers silently attacking govts since 2019

New AhRat Android malware hidden in app with 50,000 installs

IT employee impersonates ransomware gang to extort employer

US sanctions orgs behind North Korea’s ‘illicit’ IT worker army

CISA: CISA Releases Five Industrial Control Systems Advisories

CISA: CISA and Partners Release BianLian Ransomware Cybersecurity Advisory

CISA: CISA and FBI Release Joint Advisory in Response to Active Exploitation of PaperCut Vulnerability

CISA: CISA Releases Three Industrial Control Systems Advisories

CISA: CISA Adds Seven Known Exploited Vulnerabilities to Catalog

CISA: CISA Releases Four Industrial Control Systems Advisories

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA: CISA and Partners Update the #StopRansomware Guide, Developed through the Joint Ransomware Task Force (JRTF)

CISA: Cisco Releases Security Advisory for Small Business Series Switches

CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

Cobalt Stike Beacon Detected – 88[.]214[.]25[.]241:80

Cobalt Stike Beacon Detected – 23[.]226[.]55[.]68:443

Cobalt Stike Beacon Detected – 39[.]104[.]76[.]226:6443

Cobalt Stike Beacon Detected – 43[.]138[.]168[.]20:8001

Acheron – Indirect Syscalls For AV/EDR Evasion In Go Assembly

Royal Ransomware Victim: Dotcom Distribution

Royal Ransomware Victim: Coos Bay

HackerOne Bug Bounty Disclosure: confirmed-security-misconfigurations-on-curl-se-breach-missing-security-headers-etag-info-disclosure-mohmed-shoukry

CVE Alert: CVE-2025-41701 – Beckhoff – TE1000 | TwinCAT 3 Enineering

CVE Alert: CVE-2025-9539 – rubengc – AutomatorWP – Automator plugin for no-code automations, webhooks & custom integrations in WordPress

CVE Alert: CVE-2025-40796 – Siemens – SIMATIC PCS neo V4.1

CVE Alert: CVE-2025-40798 – Siemens – SIMATIC PCS neo V4.1

You may have missed