OSINT

[NIGHTSPIRE] – Ransomware Victim: Ecoinside

May 22, 2025

Ransomware Group: NIGHTSPIRE VICTIM NAME: Ecoinside NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[NIGHTSPIRE] – Ransomware Victim: TeamLease

May 22, 2025

Ransomware Group: NIGHTSPIRE VICTIM NAME: TeamLease NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Cobalt Strike Beacon Detected – 47[.]121[.]222[.]227:9999

May 22, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 185[.]130[.]249[.]116:443

May 22, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 120[.]24[.]206[.]137:81

May 22, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 139[.]196[.]234[.]220:443

May 22, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

CVE Alert: CVE-2024-5878

May 22, 2025

Vulnerability Summary: CVE-2024-5878 Multiple plugins for WordPress are vulnerable to Stored Cross-Site Scripting via the plugin's bundled SimpleLightbox JavaScript library...

CVE Alert: CVE-2025-4951

May 22, 2025

Vulnerability Summary: CVE-2025-4951 Editions of Rapid7 AppSpider Pro before version 7.5.018 is vulnerable to a stored cross-site scripting vulnerability in...

CVE Alert: CVE-2025-30193

May 22, 2025

Vulnerability Summary: CVE-2025-30193 In some circumstances, when DNSdist is configured to allow an unlimited number of queries on a single,...

CVE Alert: CVE-2025-41230

May 22, 2025

Vulnerability Summary: CVE-2025-41230 VMware Cloud Foundation contains an information disclosure vulnerability. A malicious actor with network access to port 443...

CVE Alert: CVE-2025-41229

May 22, 2025

Vulnerability Summary: CVE-2025-41229 VMware Cloud Foundation contains a directory traversal vulnerability. A malicious actor with network access to port 443...

CVE Alert: CVE-2025-41231

May 22, 2025

Vulnerability Summary: CVE-2025-41231 VMware Cloud Foundation contains a missing authorisation vulnerability. A malicious actor with access to VMware Cloud Foundation...

CVE Alert: CVE-2025-4978

May 22, 2025

Vulnerability Summary: CVE-2025-4978 A vulnerability, which was classified as very critical, was found in Netgear DGND3700 1.1.00.15_1.00.15NA. This affects an...

CVE Alert: CVE-2025-45862

May 22, 2025

Vulnerability Summary: CVE-2025-45862 TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the interfacenameds parameter in the formDhcpv6s...

CVE Alert: CVE-2024-53359

May 22, 2025

Vulnerability Summary: CVE-2024-53359 An issue in Zalo v23.09.01 allows attackers to obtain sensitive user information via a crafted GET request....

CVE Alert: CVE-2025-4977

May 22, 2025

Vulnerability Summary: CVE-2025-4977 A vulnerability, which was classified as problematic, has been found in Netgear DGND3700 1.1.00.15_1.00.15NA. Affected by this...

[PLAY] – Ransomware Victim: AttainX

May 22, 2025

Ransomware Group: PLAY VICTIM NAME: AttainX NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[QILIN] – Ransomware Victim: The Holiday:Adult Care Community & Retirement Homes

May 22, 2025

Ransomware Group: QILIN VICTIM NAME: The Holiday:Adult Care Community & Retirement Homes NOTE: No files or stolen information are by...

[PLAY] – Ransomware Victim: CNHI LLC

May 22, 2025

Ransomware Group: PLAY VICTIM NAME: CNHI LLC NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[PLAY] – Ransomware Victim: Greater Seattle Concrete

May 22, 2025

Ransomware Group: PLAY VICTIM NAME: Greater Seattle Concrete NOTE: No files or stolen information are by RedPacket Security. Any legal...

[SAFEPAY] – Ransomware Victim: proctorlane[.]com

May 21, 2025

Ransomware Group: SAFEPAY VICTIM NAME: proctorlanecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[SAFEPAY] – Ransomware Victim: sb-p[.]de

May 21, 2025

Ransomware Group: SAFEPAY VICTIM NAME: sb-pde NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[SAFEPAY] – Ransomware Victim: schoene-aussicht-kassel[.]de

May 21, 2025

Ransomware Group: SAFEPAY VICTIM NAME: schoene-aussicht-kasselde NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[SAFEPAY] – Ransomware Victim: dawg-dok[.]de

May 21, 2025

Ransomware Group: SAFEPAY VICTIM NAME: dawg-dokde NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

OSINT

[NIGHTSPIRE] – Ransomware Victim: Ecoinside

[NIGHTSPIRE] – Ransomware Victim: TeamLease

Cobalt Strike Beacon Detected – 47[.]121[.]222[.]227:9999

Cobalt Strike Beacon Detected – 185[.]130[.]249[.]116:443

Cobalt Strike Beacon Detected – 120[.]24[.]206[.]137:81

Cobalt Strike Beacon Detected – 139[.]196[.]234[.]220:443

CVE Alert: CVE-2024-5878

CVE Alert: CVE-2025-4951

CVE Alert: CVE-2025-30193

CVE Alert: CVE-2025-41230

CVE Alert: CVE-2025-41229

CVE Alert: CVE-2025-41231

CVE Alert: CVE-2025-4978

CVE Alert: CVE-2025-45862

CVE Alert: CVE-2024-53359

CVE Alert: CVE-2025-4977

[PLAY] – Ransomware Victim: AttainX

[QILIN] – Ransomware Victim: The Holiday:Adult Care Community & Retirement Homes

[PLAY] – Ransomware Victim: CNHI LLC

[PLAY] – Ransomware Victim: Greater Seattle Concrete

[SAFEPAY] – Ransomware Victim: proctorlane[.]com

[SAFEPAY] – Ransomware Victim: sb-p[.]de

[SAFEPAY] – Ransomware Victim: schoene-aussicht-kassel[.]de

[SAFEPAY] – Ransomware Victim: dawg-dok[.]de

Debian Isn’t Waiting For 2038 To Blow Up, Switches To 64 Bit Time For Everything

CVE Alert: CVE-2025-8191

CVE Alert: CVE-2025-8190

CVE Alert: CVE-2025-8203

CVE Alert: CVE-2025-8189

You may have missed