threatintel

CVE Alert: CVE-2025-28171

July 30, 2025

Vulnerability Summary: CVE-2025-28171 An issue in Grandstream UCM6510 v.1.0.20.52 and before allows a remote attacker to obtain sensitive information via...

CVE Alert: CVE-2025-46059

July 30, 2025

Vulnerability Summary: CVE-2025-46059 langchain-ai v0.3.51 was discovered to contain an indirect prompt injection vulnerability in the GmailToolkit component. This vulnerability...

CVE Alert: CVE-2025-2533

July 30, 2025

Vulnerability Summary: CVE-2025-2533 IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 is vulnerable to a denial of service as the...

CVE Alert: CVE-2025-31965

July 30, 2025

Vulnerability Summary: CVE-2025-31965 Improper access restrictions in HCL BigFix Remote Control Server WebUI (versions 10.1.0.0248 and lower) allow non-admin users...

CVE Alert: CVE-2025-2928

July 30, 2025

Vulnerability Summary: CVE-2025-2928 SQL Injection affecting the Archiver role. Affected Endpoints: No affected endpoints listed. Published Date: 7/29/2025, 6:15:27 PM...

CVE Alert: CVE-2025-27514

July 30, 2025

Vulnerability Summary: CVE-2025-27514 GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses...

CVE Alert: CVE-2025-36010

July 30, 2025

Vulnerability Summary: CVE-2025-36010 IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 could allow an unauthenticated user to cause a denial...

[QILIN] – Ransomware Victim: PDC www[.]cobranzasbeta[.]com[.]co

July 30, 2025

Ransomware Group: QILIN VICTIM NAME: PDC wwwcobranzasbetacomco NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[GLOBAL] – Ransomware Victim: RUKU Tore – Türen

July 30, 2025

Ransomware Group: GLOBAL VICTIM NAME: RUKU Tore - Türen NOTE: No files or stolen information are by RedPacket Security. Any...

[INCRANSOM] – Ransomware Victim: fsl[.]org

July 30, 2025

Ransomware Group: INCRANSOM VICTIM NAME: fslorg NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[EVEREST] – Ransomware Victim: Bitbox

July 30, 2025

Ransomware Group: EVEREST VICTIM NAME: Bitbox NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2025-5043

July 30, 2025

Vulnerability Summary: CVE-2025-5043 A maliciously crafted 3DM file, when linked or imported into certain Autodesk products, can force a Heap-Based...

CVE Alert: CVE-2025-5038

July 30, 2025

Vulnerability Summary: CVE-2025-5038 A maliciously crafted X_T file, when parsed through certain Autodesk products, can force a Memory Corruption vulnerability....

CVE Alert: CVE-2025-7675

July 30, 2025

Vulnerability Summary: CVE-2025-7675 A maliciously crafted 3DM file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability....

CVE Alert: CVE-2025-52284

July 30, 2025

Vulnerability Summary: CVE-2025-52284 Totolink X6000R V9.4.0cu.1360_B20241207 was found to contain a command injection vulnerability in the sub_4184C0 function via the...

CVE Alert: CVE-2025-6631

July 30, 2025

Vulnerability Summary: CVE-2025-6631 A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability....

CVE Alert: CVE-2025-7497

July 30, 2025

Vulnerability Summary: CVE-2025-7497 A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability....

CVE Alert: CVE-2025-6636

July 30, 2025

Vulnerability Summary: CVE-2025-6636 A maliciously crafted PRT file, when parsed through certain Autodesk products, can force a Use-After-Free vulnerability. A...

CVE Alert: CVE-2024-42651

July 30, 2025

Vulnerability Summary: CVE-2024-42651 NanoMQ v0.17.9 was discovered to contain a heap use-after-free vulnerability via the component sub_Ctx_handle. This vulnerability allows...

CVE Alert: CVE-2025-6637

July 30, 2025

Vulnerability Summary: CVE-2025-6637 A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability....

CVE Alert: CVE-2025-6635

July 30, 2025

Vulnerability Summary: CVE-2025-6635 A maliciously crafted PRT file, when linked or imported into certain Autodesk products, can force an Out-of-Bounds...

[LYNX] – Ransomware Victim: Tooling Systems Group

July 30, 2025

Ransomware Group: LYNX VICTIM NAME: Tooling Systems Group NOTE: No files or stolen information are by RedPacket Security. Any legal...

[BLACKBYTE] – Ransomware Victim: Towne Mortgage

July 30, 2025

Ransomware Group: BLACKBYTE VICTIM NAME: Towne Mortgage NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[INCRANSOM] – Ransomware Victim: Dollar Tree

July 30, 2025

Ransomware Group: INCRANSOM VICTIM NAME: Dollar Tree NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

threatintel

CVE Alert: CVE-2025-28171

CVE Alert: CVE-2025-46059

CVE Alert: CVE-2025-2533

CVE Alert: CVE-2025-31965

CVE Alert: CVE-2025-2928

CVE Alert: CVE-2025-27514

CVE Alert: CVE-2025-36010

[QILIN] – Ransomware Victim: PDC www[.]cobranzasbeta[.]com[.]co

[GLOBAL] – Ransomware Victim: RUKU Tore – Türen

[INCRANSOM] – Ransomware Victim: fsl[.]org

[EVEREST] – Ransomware Victim: Bitbox

CVE Alert: CVE-2025-5043

CVE Alert: CVE-2025-5038

CVE Alert: CVE-2025-7675

CVE Alert: CVE-2025-52284

CVE Alert: CVE-2025-6631

CVE Alert: CVE-2025-7497

CVE Alert: CVE-2025-6636

CVE Alert: CVE-2024-42651

CVE Alert: CVE-2025-6637

CVE Alert: CVE-2025-6635

[LYNX] – Ransomware Victim: Tooling Systems Group

[BLACKBYTE] – Ransomware Victim: Towne Mortgage

[INCRANSOM] – Ransomware Victim: Dollar Tree

Google Chrome Multiple Vulnerabilities

Cobalt Strike Beacon Detected – 124[.]221[.]116[.]169:80

Cobalt Strike Beacon Detected – 196[.]251[.]87[.]191:4433

Cobalt Strike Beacon Detected – 179[.]43[.]186[.]243:80

Cobalt Strike Beacon Detected – 118[.]25[.]91[.]151:80

You may have missed