Cobalt Strike Beacon Detected – 8[.]155[.]0[.]238:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Strike Beacon Detected – 47[.]116[.]208[.]81:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
BugCrowd Bug Bounty Disclosure: P4 – Unauthorised Access to GoAccess Logs on https://mwsci.jpl.nasa.gov – green_hats
Unauthorised Access to GoAccess Logs on https://mwsci.jpl.nasa.gov Unauthorised Access to GoAccess Logs on https://mwsci.jpl.nasa.gov Researcher: green_hats Engagement: National Aeronautics and...
BugCrowd Bug Bounty Disclosure: P3 – Public Exposure of NASA FTP Credentials in CORAL Document (PDF Hosted on Google Docs) – sanrock
Public Exposure of NASA FTP Credentials in CORAL Document (PDF Hosted on Google Docs) Public Exposure of NASA FTP Credentials...
BugCrowd Bug Bounty Disclosure: P3 – Reflected XSS in Multiple Endpoints on GSFC Subdomain – Rahul-Hoysala
Reflected XSS in Multiple Endpoints on GSFC Subdomain Reflected XSS in Multiple Endpoints on GSFC Subdomain Researcher: Rahul-Hoysala Engagement: National...
BugCrowd Bug Bounty Disclosure: P2 – Exposed Emails and Names on https://mttc.jpl.nasa.gov/api/retrieve-certs.php – green_hats
Exposed Emails and Names on https://mttc.jpl.nasa.gov/api/retrieve-certs.php Exposed Emails and Names on https://mttc.jpl.nasa.gov/api/retrieve-certs.php Researcher: green_hats Engagement: National Aeronautics and Space Administration...
CovenantC2 Detected – 154[.]44[.]10[.]42:7443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
[BLACKSHRANTAC] – Ransomware Victim: CCI Tax Pros, Inc
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...
[CLOP] – Ransomware Victim: MASTEC[.]COM
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...
[SAFEPAY] – Ransomware Victim: holtzofficesupport[.]com
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...
[INCRANSOM] – Ransomware Victim: aa-llp[.]com (aa[.]law)
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...
[ALPHALOCKER] – Ransomware Victim: www[.]verdugohillsdental[.]com
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...
[CLOP] – Ransomware Victim: ANSELL[.]COM
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...
[BLACKSHRANTAC] – Ransomware Victim: CyPark Resources Berhad
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...
CVE Alert: CVE-2025-12115 – wpclever – WPC Name Your Price for WooCommerce
CVE-2025-12115 HIGHNo exploitation known The WPC Name Your Price for WooCommerce plugin for WordPress is vulnerable to unauthorized price alteration...
CVE Alert: CVE-2025-33003 – IBM – InfoSphere Information Server
CVE-2025-33003 HIGHNo exploitation known IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow a non-root user to gain higher privileges/capabilities...
[QILIN] – Ransomware Victim: Gun Accessory Supply
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...
[AKIRA] – Ransomware Victim: Hometown Credit Union
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...
CVE Alert: CVE-2025-7846 – vanquish – WordPress User Extra Fields
CVE-2025-7846 HIGHNo exploitation known The WordPress User Extra Fields plugin for WordPress is vulnerable to arbitrary file deletion due to...
CVE Alert: CVE-2025-10897 – JMA Plugins – WooCommerce Designer Pro
CVE-2025-10897 HIGHNo exploitation known The WooCommerce Designer Pro theme for WordPress is vulnerable to arbitrary file read in all versions...
[INCRANSOM] – Ransomware Victim: VZW Avalon
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...
Ai Layoffs To Backfire: Half Quietly Rehired At Lower Pay
Many organizations rushing to cut staff in the name of AI efficiency are expected to quietly rehire those roles –...
[BLACKSHRANTAC] – Ransomware Victim: The Matlusky Firm LLC
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...
[QILIN] – Ransomware Victim: bagnoles[.]nl
NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...
