OSINT

[PLAY] – Ransomware Victim: Dishaka

May 14, 2025

Ransomware Group: PLAY VICTIM NAME: Dishaka NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2025-4561

May 13, 2025

Vulnerability Summary: CVE-2025-4561 The KFOX from KingFor has an Arbitrary File Upload vulnerability, allowing remote attackers with regular privilege to...

CVE Alert: CVE-2025-4559

May 13, 2025

Vulnerability Summary: CVE-2025-4559 The ISOinsight from Netvision has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL...

CVE Alert: CVE-2025-41393

May 13, 2025

Vulnerability Summary: CVE-2025-41393 Reflected cross-site scripting vulnerability exists in the laser printers and MFPs (multifunction printers) which implement Ricoh Web...

CVE Alert: CVE-2025-3649

May 13, 2025

Vulnerability Summary: CVE-2025-3649 The LightPress Lightbox WordPress plugin before 2.3.4 does not check download links point to valid, non-Javascript URLs,...

CVE Alert: CVE-2025-4560

May 13, 2025

Vulnerability Summary: CVE-2025-4560 The ISOinsight from Netvision has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to access certain system...

CVE Alert: CVE-2025-45835

May 13, 2025

Vulnerability Summary: CVE-2025-45835 A null pointer dereference vulnerability was discovered in Netis WF2880 v2.1.40207. The vulnerability exists in the FUN_004904c8...

CVE Alert: CVE-2025-3496

May 13, 2025

Vulnerability Summary: CVE-2025-3496 An unauthenticated remote attacker can cause a buffer overflow which could lead to unexpected behaviour or DoS...

CVE Alert: CVE-2024-56524

May 13, 2025

Vulnerability Summary: CVE-2024-56524 Radware Cloud Web Application Firewall (WAF) before 2025-05-07 allows remote attackers to bypass firewall filters by adding...

CVE Alert: CVE-2025-22247

May 13, 2025

Vulnerability Summary: CVE-2025-22247 VMware Tools contains an insecure file handling vulnerability. A malicious actor with non-administrative privileges on a guest...

CVE Alert: CVE-2025-47270

May 13, 2025

Vulnerability Summary: CVE-2025-47270 nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. The...

[AKIRA] – Ransomware Victim: Superior Steel

May 13, 2025

Ransomware Group: AKIRA VICTIM NAME: Superior Steel NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[AKIRA] – Ransomware Victim: Precision Tax Relief

May 13, 2025

Ransomware Group: AKIRA VICTIM NAME: Precision Tax Relief NOTE: No files or stolen information are by RedPacket Security. Any legal...

CVE Alert: CVE-2025-46717

May 13, 2025

Vulnerability Summary: CVE-2025-46717 sudo-rs is a memory safe implementation of sudo and su written in Rust. Prior to version 0.2.6,...

CVE Alert: CVE-2024-56523

May 13, 2025

Vulnerability Summary: CVE-2024-56523 Radware Cloud Web Application Firewall (WAF) before 2025-05-07 allows remote attackers to bypass firewall filters by placing...

CVE Alert: CVE-2025-26846

May 13, 2025

Vulnerability Summary: CVE-2025-26846 An issue was discovered in Znuny before 7.1.4. Permissions are not checked properly when using the Generic...

CVE Alert: CVE-2025-26841

May 13, 2025

Vulnerability Summary: CVE-2025-26841 Cross Site Scripting vulnerability in WPEVEREST Everest Forms before 3.0.9 allows an attacker to execute arbitrary code...

CVE Alert: CVE-2025-46718

May 13, 2025

Vulnerability Summary: CVE-2025-46718 sudo-rs is a memory safe implementation of sudo and su written in Rust. Prior to version 0.2.6,...

CVE Alert: CVE-2025-46610

May 13, 2025

Vulnerability Summary: CVE-2025-46610 ARTEC EMA Mail 6.92 allows CSRF. Affected Endpoints: No affected endpoints listed. Published Date: 5/12/2025, 3:16:01 PM...

CVE Alert: CVE-2025-46738

May 13, 2025

Vulnerability Summary: CVE-2025-46738 An authenticated attacker can maliciously modify layout data files in the SEL-5033 installation directory to execute arbitrary...

CVE Alert: CVE-2025-47578

May 13, 2025

Vulnerability Summary: CVE-2025-47578 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Edward Caissie BNS Twitter Follow...

CVE Alert: CVE-2025-46611

May 13, 2025

Vulnerability Summary: CVE-2025-46611 Cross Site Scripting vulnerability in ARTEC EMA Mail v6.92 allows an attacker to execute arbitrary code via...

CVE Alert: CVE-2025-46737

May 13, 2025

Vulnerability Summary: CVE-2025-46737 SEL-5037 Grid Configurator contains an overly permissive Cross Origin Resource Sharing (CORS) configuration for a data gateway...

Cobalt Strike Beacon Detected – 43[.]139[.]124[.]56:8080

May 13, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

OSINT

[PLAY] – Ransomware Victim: Dishaka

CVE Alert: CVE-2025-4561

CVE Alert: CVE-2025-4559

CVE Alert: CVE-2025-41393

CVE Alert: CVE-2025-3649

CVE Alert: CVE-2025-4560

CVE Alert: CVE-2025-45835

CVE Alert: CVE-2025-3496

CVE Alert: CVE-2024-56524

CVE Alert: CVE-2025-22247

CVE Alert: CVE-2025-47270

[AKIRA] – Ransomware Victim: Superior Steel

[AKIRA] – Ransomware Victim: Precision Tax Relief

CVE Alert: CVE-2025-46717

CVE Alert: CVE-2024-56523

CVE Alert: CVE-2025-26846

CVE Alert: CVE-2025-26841

CVE Alert: CVE-2025-46718

CVE Alert: CVE-2025-46610

CVE Alert: CVE-2025-46738

CVE Alert: CVE-2025-47578

CVE Alert: CVE-2025-46611

CVE Alert: CVE-2025-46737

Cobalt Strike Beacon Detected – 43[.]139[.]124[.]56:8080

Cobalt Strike Beacon Detected – 121[.]43[.]37[.]134:4434

Cobalt Strike Beacon Detected – 119[.]29[.]231[.]118:443

Cobalt Strike Beacon Detected – 39[.]101[.]74[.]162:443

Cobalt Strike Beacon Detected – 8[.]218[.]112[.]112:8880

Cobalt Strike Beacon Detected – 47[.]109[.]48[.]57:443

You may have missed