OSINT

CVE Alert: CVE-2025-6499

June 24, 2025

Vulnerability Summary: CVE-2025-6499 A vulnerability classified as problematic was found in vstakhov libucl up to 0.9.2. Affected by this vulnerability...

CVE Alert: CVE-2025-6502

June 24, 2025

Vulnerability Summary: CVE-2025-6502 A vulnerability has been found in code-projects Inventory Management System 1.0 and classified as critical. This vulnerability...

CVE Alert: CVE-2024-3511

June 24, 2025

Vulnerability Summary: CVE-2024-3511 An incorrect authorization vulnerability exists in multiple WSO2 products that allows unauthorized access to versioned files stored...

CVE Alert: CVE-2024-45347

June 24, 2025

Vulnerability Summary: CVE-2024-45347 An unauthorized access vulnerability exists in the Xiaomi Mi Connect Service APP. The vulnerability is caused by...

CVE Alert: CVE-2025-52921

June 24, 2025

Vulnerability Summary: CVE-2025-52921 In Innoshop through 0.4.1, an authenticated attacker could exploit the File Manager functions in the admin panel...

CVE Alert: CVE-2025-52920

June 24, 2025

Vulnerability Summary: CVE-2025-52920 Innoshop through 0.4.1 allows Insecure Direct Object Reference (IDOR) at multiple places within the frontend shop. Anyone...

CVE Alert: CVE-2025-52922

June 24, 2025

Vulnerability Summary: CVE-2025-52922 Innoshop through 0.4.1 allows directory traversal via FileManager API endpoints. An authenticated attacker with access to the...

CVE Alert: CVE-2025-27387

June 24, 2025

Vulnerability Summary: CVE-2025-27387 OPPO Clone Phone uses a weak password WiFi hotspot to transfer files, resulting in Information disclosure. Affected...

[METAENCRYPTOR] – Ransomware Victim: The Lowell Hotel New York

June 24, 2025

Ransomware Group: METAENCRYPTOR VICTIM NAME: The Lowell Hotel New York NOTE: No files or stolen information are by RedPacket Security....

[AKIRA] – Ransomware Victim: Keystone Shipping

June 24, 2025

Ransomware Group: AKIRA VICTIM NAME: Keystone Shipping NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[AKIRA] – Ransomware Victim: VS Associates

June 24, 2025

Ransomware Group: AKIRA VICTIM NAME: VS Associates NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[AKIRA] – Ransomware Victim: Integrity Mortgage

June 24, 2025

Ransomware Group: AKIRA VICTIM NAME: Integrity Mortgage NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[AKIRA] – Ransomware Victim: Datrose

June 24, 2025

Ransomware Group: AKIRA VICTIM NAME: Datrose NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: Sweeney Design

June 24, 2025

Ransomware Group: AKIRA VICTIM NAME: Sweeney Design NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[LYNX] – Ransomware Victim: motorsport-de-la-capitale

June 24, 2025

Ransomware Group: LYNX VICTIM NAME: motorsport-de-la-capitale NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[LYNX] – Ransomware Victim: lurie-glass

June 24, 2025

Ransomware Group: LYNX VICTIM NAME: lurie-glass NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[QILIN] – Ransomware Victim: www[.]covenanthealth[.]net

June 24, 2025

Ransomware Group: QILIN VICTIM NAME: wwwcovenanthealthnet NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2025-52877

June 24, 2025

Vulnerability Summary: CVE-2025-52877 In JetBrains TeamCity before 2025.03.3 reflected XSS on diskUsageBuildsStats page was possible Affected Endpoints: No affected endpoints...

CVE Alert: CVE-2025-6512

June 24, 2025

Vulnerability Summary: CVE-2025-6512 On a client with a non-admin user, a script can be integrated into a report. The reports...

CVE Alert: CVE-2025-52878

June 24, 2025

Vulnerability Summary: CVE-2025-52878 In JetBrains TeamCity before 2025.03.3 usernames were exposed to the users without proper permissions Affected Endpoints: No...

CVE Alert: CVE-2025-52879

June 24, 2025

Vulnerability Summary: CVE-2025-52879 In JetBrains TeamCity before 2025.03.3 reflected XSS in the NPM Registry integration was possible Affected Endpoints: No...

CVE Alert: CVE-2025-6513

June 24, 2025

Vulnerability Summary: CVE-2025-6513 Standard Windows users can access the configuration file for database access of the BRAIN2 application and decrypt...

CVE Alert: CVE-2025-4563

June 24, 2025

Vulnerability Summary: CVE-2025-4563 A vulnerability exists in the NodeRestriction admission controller where nodes can bypass dynamic resource allocation authorization checks....

CVE Alert: CVE-2025-52967

June 24, 2025

Vulnerability Summary: CVE-2025-52967 gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation. Affected Endpoints: No affected endpoints listed. Published Date: 6/23/2025,...

OSINT

CVE Alert: CVE-2025-6499

CVE Alert: CVE-2025-6502

CVE Alert: CVE-2024-3511

CVE Alert: CVE-2024-45347

CVE Alert: CVE-2025-52921

CVE Alert: CVE-2025-52920

CVE Alert: CVE-2025-52922

CVE Alert: CVE-2025-27387

[METAENCRYPTOR] – Ransomware Victim: The Lowell Hotel New York

[AKIRA] – Ransomware Victim: Keystone Shipping

[AKIRA] – Ransomware Victim: VS Associates

[AKIRA] – Ransomware Victim: Integrity Mortgage

[AKIRA] – Ransomware Victim: Datrose

[AKIRA] – Ransomware Victim: Sweeney Design

[LYNX] – Ransomware Victim: motorsport-de-la-capitale

[LYNX] – Ransomware Victim: lurie-glass

[QILIN] – Ransomware Victim: www[.]covenanthealth[.]net

CVE Alert: CVE-2025-52877

CVE Alert: CVE-2025-6512

CVE Alert: CVE-2025-52878

CVE Alert: CVE-2025-52879

CVE Alert: CVE-2025-6513

CVE Alert: CVE-2025-4563

CVE Alert: CVE-2025-52967

Cobalt Strike Beacon Detected – 49[.]233[.]32[.]31:9443

Cobalt Strike Beacon Detected – 103[.]171[.]35[.]26:9443

Cobalt Strike Beacon Detected – 45[.]141[.]233[.]66:8080

Cobalt Strike Beacon Detected – 8[.]216[.]80[.]229:9443

Cobalt Strike Beacon Detected – 193[.]112[.]83[.]36:8080

You may have missed