Gssapi-Abuse – A Tool For Enumerating Potential Hosts That Are Open To GSSAPI Abuse Within Active Directory Networks
gssapi-abuse was released as part of my DEF CON 31 talk. A full write up on the abuse vector can...
threatintel
Akira Ransomware Victim: Hamilton-Madison Hou se
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: Hydratek
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Akira Ransomware Victim: DENHAM the Jeanmaker
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
Vans North Face Owner Says Ransomware Breach Affects 35 Million People
VF Corporation, the company behind brands like Vans, Timberland, The North Face, Dickies, and Supreme, said that more than 35...
Payoneer Accounts In Argentina Hacked In 2fa Bypass Attacks
Numerous Payoneer users in Argentina report waking up to find that their 2FA-protected accounts were hacked and funds stolen after...
Ftc Bans One More Data Broker From Selling Your Location Info
The U.S. Federal Trade Commission (FTC) continues to target data brokers, this time in a settlement with InMarket Media, which...
Breachforums Hacking Forum Admin Sentenced To 20 Years Supervised Release
Conor Brian Fitzpatrick was sentenced to 20 years of supervised release today in the Eastern District of Virginia for operating...
Russian Hackers Stole Microsoft Corporate Emails In Month Long Breach
Microsoft warned Friday night that some of its corporate email accounts were breached and data stolen by a Russian state-sponsored...
Vmware Confirms Critical Vcenter Flaw Now Exploited In Attacks
VMware has confirmed that a critical vCenter Server remote code execution vulnerability patched in October is now under active exploitation....
Chinese Hackers Exploit Vmware Bug As Zero Day For Two Years
A Chinese hacking group has been exploiting a critical vCenter Server vulnerability (CVE-2023-34048) as a zero-day since at least late...
Cisa Emergency Directive Mitigate Ivanti Zero Days Immediately
CISA issued this year's first emergency directive ordering Federal Civilian Executive Branch (FCEB) agencies to immediately mitigate two Ivanti Connect...
Microsoft’s Top Execs’ Emails Breached in Sophisticated Russia-Linked APT Attack
Microsoft on Friday revealed that it was the target of a nation-state attack on its corporate systems that resulted in...
Invoice Phishing Alert: TA866 Deploys WasabiSeed & Screenshotter Malware
The threat actor tracked as TA866 has resurfaced after a nine-month hiatus with a new large-volume phishing campaign to deliver...
CISA Issues Emergency Directive to Federal Agencies on Ivanti Zero-Day Exploits
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday issued an emergency directive urging Federal Civilian Executive Branch (FCEB)...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: VMware Releases Security Advisory for Aria Automation
VMware Releases Security Advisory for Aria Automation VMware released a security advisory to address a vulnerability (CVE-2023-34063) in Aria Automation....
CISA: Incident Response Guide for the WWS Sector
Incident Response Guide for the WWS Sector Today, CISA, the Federal Bureau of Investigation (FBI), and the Environmental Protection Agency...
CISA: Citrix Releases Security Updates for NetScaler ADC and NetScaler Gateway
Citrix Releases Security Updates for NetScaler ADC and NetScaler Gateway Citrix released security updates to address vulnerabilities (CVE-2023-6548 and CVE-2023-6549)...
CISA: Oracle Releases Critical Patch Update Advisory for January 2024
Oracle Releases Critical Patch Update Advisory for January 2024 Oracle released its Critical Patch Update Advisory for January 2024 to...
CISA: Drupal Releases Security Advisory for Drupal Core
Drupal Releases Security Advisory for Drupal Core Drupal released a security advisory to address a vulnerability affecting multiple Drupal core versions....
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on January 18, 2024. These...
CISA: Atlassian Releases Security Updates for Multiple Products
Atlassian Releases Security Updates for Multiple Products Atlassian released a security advisory to address a vulnerability (CVE-2023-22527) in out-of-date versions...
