threatintel

CISA: Fortinet Releases Security Updates for FortiOS and FortiProxy

January 13, 2024

Fortinet Releases Security Updates for FortiOS and FortiProxy Fortinet has released a security update to address a vulnerability in FortiOS...

CISA: CISA Releases One Industrial Control Systems Advisory

January 13, 2024

CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on January 9, 2024. These...

CISA: Microsoft Releases Security Updates for Multiple Products

January 13, 2024

Microsoft Releases Security Updates for Multiple Products Microsoft has released security updates to address vulnerabilities in multiple products. A cyber threat...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

January 13, 2024

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Adds Six Known Exploited Vulnerabilities to Catalog

January 13, 2024

CISA Adds Six Known Exploited Vulnerabilities to Catalog CISA has added six new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

January 13, 2024

CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: Ivanti Releases Security Update for Connect Secure and Policy Secure Gateways

January 13, 2024

Ivanti Releases Security Update for Connect Secure and Policy Secure Gateways Ivanti has released a security update to address an...

CISA: Juniper Networks Releases Security Bulletin for Junos OS and Junos OS Evolved

January 13, 2024

Juniper Networks Releases Security Bulletin for Junos OS and Junos OS Evolved Juniper Networks has released a security advisory to address...

CISA: Cisco Releases Security Advisory for Cisco Unity Connection

January 13, 2024

Cisco Releases Security Advisory for Cisco Unity Connection Cisco released a security advisory to address a vulnerability (CVE-2024-20272) in Cisco...

CISA: CISA Releases Nine Industrial Control Systems Advisories

January 13, 2024

CISA Releases Nine Industrial Control Systems Advisories CISA released nine Industrial Control Systems (ICS) advisories on January 11, 2024. These...

BlackCat/ALPHV Ransomware Victim: Builcore

January 12, 2024

BlackCat / ALPHV Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the...

EmploLeaks – An OSINT Tool That Helps Detect Members Of A Company With Leaked Credentials

January 12, 2024

This is a tool designed for Open Source Intelligence (OSINT) purposes, which helps to gather information about employees of...

Urgent: GitLab Releases Patch for Critical Vulnerabilities – Update ASAP

January 12, 2024

GitLab has released security updates to address two critical vulnerabilities, including one that could be exploited to take over accounts...

Medusa Ransomware on the Rise: From Data Leaks to Multi-Extortion

January 12, 2024

The threat actors associated with the Medusa ransomware have ramped up their activities following the debut of a dedicated data...

Nation-State Actors Weaponize Ivanti VPN Zero-Days, Deploying 5 Malware Families

January 12, 2024

As many as five different malware families were deployed by suspected nation-state actors as part of post-exploitation activities leveraging two...

Associated Press Espn Cbs Among Top Sites Serving Fake Virus Alerts

January 12, 2024

ScamClub is a threat actor who’s been involved in malvertising activities since 2018. Chances are you probably ran into one...

Malvertisers Zoom In On Cryptocurrencies And Initial Access

January 12, 2024

During the past month, we have observed an increase in the number of malicious ads on Google searches for “Zoom”,...

Atomic Stealer Distributed To Mac Users Via Fake Browser Updates

January 12, 2024

Atomic Stealer, also known as AMOS, is a popular stealer for Mac OS. Back in September, we described how malicious...

Ransomware Review November 2023

January 12, 2024

This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...

Ransomware Review December 2023

January 12, 2024

This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...

Atomic Stealer Rings In The New Year With Updated Version

January 12, 2024

Last year, we documented malware distribution campaigns both via malvertising and compromised sites delivering Atomic Stealer (AMOS) onto Mac users....

Pikabot Distributed Via Malicious Ads

January 12, 2024

During this past year, we have seen an increase in the use of malicious ads (malvertising) and specifically those via...

New Metastealer Malvertising Campaigns

January 12, 2024

MetaStealer is a popular piece of malware that came out in 2022, levering previous code base from RedLine. Stealers have...

Ransomware Review January 2024

January 12, 2024

This article is based on research by Marcelo Rivero, Malwarebytes’ ransomware specialist, who monitors information published by ransomware gangs on...

threatintel

CISA: Fortinet Releases Security Updates for FortiOS and FortiProxy

CISA: CISA Releases One Industrial Control Systems Advisory

CISA: Microsoft Releases Security Updates for Multiple Products

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Adds Six Known Exploited Vulnerabilities to Catalog

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA: Ivanti Releases Security Update for Connect Secure and Policy Secure Gateways

CISA: Juniper Networks Releases Security Bulletin for Junos OS and Junos OS Evolved

CISA: Cisco Releases Security Advisory for Cisco Unity Connection

CISA: CISA Releases Nine Industrial Control Systems Advisories

BlackCat/ALPHV Ransomware Victim: Builcore

EmploLeaks – An OSINT Tool That Helps Detect Members Of A Company With Leaked Credentials

Urgent: GitLab Releases Patch for Critical Vulnerabilities – Update ASAP

Medusa Ransomware on the Rise: From Data Leaks to Multi-Extortion

Nation-State Actors Weaponize Ivanti VPN Zero-Days, Deploying 5 Malware Families

Associated Press Espn Cbs Among Top Sites Serving Fake Virus Alerts

Malvertisers Zoom In On Cryptocurrencies And Initial Access

Atomic Stealer Distributed To Mac Users Via Fake Browser Updates

Ransomware Review November 2023

Ransomware Review December 2023

Atomic Stealer Rings In The New Year With Updated Version

Pikabot Distributed Via Malicious Ads

New Metastealer Malvertising Campaigns

Ransomware Review January 2024

Cobalt Strike Beacon Detected – 101[.]200[.]193[.]211:8090

Cobalt Strike Beacon Detected – 47[.]113[.]217[.]92:8001

Cobalt Strike Beacon Detected – 121[.]40[.]112[.]176:8087

Cobalt Strike Beacon Detected – 43[.]143[.]114[.]43:8090

Cobalt Strike Beacon Detected – 101[.]43[.]94[.]35:9180

You may have missed