[MEOW] – Ransomware Victim: Barnes Cohen and Sullivan
Ransomware Group: MEOW VICTIM NAME: Barnes Cohen and Sullivan NOTE: No files or stolen information are by RedPacket Security. Any...
threatintel
[MEOW] – Ransomware Victim: La Futura
Ransomware Group: MEOW VICTIM NAME: La Futura NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
Cobalt Strike Beacon Detected – 38[.]147[.]172[.]45:6667
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 91[.]186[.]211[.]102:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 117[.]72[.]83[.]32:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
[MEOW] – Ransomware Victim: Atlantic Coast Consulting Inc
Ransomware Group: MEOW VICTIM NAME: Atlantic Coast Consulting Inc NOTE: No files or stolen information are by RedPacket Security. Any...
[HUNTERS] – Ransomware Victim: Glacier
Ransomware Group: HUNTERS VICTIM NAME: Glacier NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2024-47763
Vulnerability Summary: CVE-2024-47763 Wasmtime is an open source runtime for WebAssembly. Wasmtime's implementation of WebAssembly tail calls combined with stack...
CVE Alert: CVE-2024-47812
Vulnerability Summary: CVE-2024-47812 ImportDump is an extension for mediawiki designed to automate user import requests. Anyone who can edit the...
CVE Alert: CVE-2024-47813
Vulnerability Summary: CVE-2024-47813 Wasmtime is an open source runtime for WebAssembly. Under certain concurrent event orderings, a `wasmtime::Engine`'s internal type...
CVE Alert: CVE-2024-43610
Vulnerability Summary: CVE-2024-43610 Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view...
CVE Alert: CVE-2024-46292
Vulnerability Summary: CVE-2024-46292 A buffer overflow in modsecurity v3.0.12 allows attackers to cause a Denial of Service (DoS) via a...
CVE Alert: CVE-2024-47828
Vulnerability Summary: CVE-2024-47828 ampache is a web based audio/video streaming application and file manager. A CSRF attack can be performed...
CVE Alert: CVE-2024-47815
Vulnerability Summary: CVE-2024-47815 IncidentReporting is a MediaWiki extension for moving incident reports from wikitext to database tables. There are a...
CVE Alert: CVE-2024-3656
Vulnerability Summary: CVE-2024-3656 A flaw was found in Keycloak. Certain endpoints in Keycloak's admin REST API allow low-privilege users to...
CVE Alert: CVE-2024-7038
Vulnerability Summary: CVE-2024-7038 An information disclosure vulnerability exists in open-webui version 0.3.8. The vulnerability is related to the embedding model...
CVE Alert: CVE-2024-47816
Vulnerability Summary: CVE-2024-47816 ImportDump is a mediawiki extension designed to automate user import requests. A user's local actor ID is...
[HANDALA] – Ransomware Victim: Doscast
Ransomware Group: HANDALA VICTIM NAME: Doscast NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[UNDERGROUND] – Ransomware Victim: Casio Computer Co[.], Ltd
Ransomware Group: UNDERGROUND VICTIM NAME: Casio Computer Co, Ltd NOTE: No files or stolen information are by RedPacket Security. Any...
CVE Alert: CVE-2024-39525
Vulnerability Summary: CVE-2024-39525 An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos...
CVE Alert: CVE-2024-38815
Vulnerability Summary: CVE-2024-38815 VMware NSX contains a content spoofing vulnerability. An unauthenticated malicious actor may be able to craft a...
CVE Alert: CVE-2024-39515
Vulnerability Summary: CVE-2024-39515 An Improper Validation of Consistency within Input vulnerability in the routing protocol daemon (rpd) of Juniper Networks...
CVE Alert: CVE-2024-30118
Vulnerability Summary: CVE-2024-30118 HCL Connections is vulnerable to an information disclosure vulnerability which could allow a user to obtain sensitive...
CVE Alert: CVE-2024-39516
Vulnerability Summary: CVE-2024-39516 An Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos...
