Chinese Hackers Exploit VMware Zero-Day to Backdoor Windows and Linux Systems
The Chinese state-sponsored group known as UNC3886 has been found to exploit a zero-day flaw in VMware ESXi hosts to...
threatintel
CISA: CISA and Partners Release Joint Advisory on Understanding Ransomware Threat Actors: LockBit
CISA and Partners Release Joint Advisory on Understanding Ransomware Threat Actors: LockBit Today, CISA, the Federal Bureau of Investigation (FBI),...
Where from, Where to — The Evolution of Network Security
For the better part of the 90s and early aughts, the sysadmin handbook said, "Filter your incoming traffic, not everyone...
Severe Vulnerabilities Reported in Microsoft Azure Bastion and Container Registry
Two "dangerous" security vulnerabilities have been disclosed in Microsoft Azure Bastion and Azure Container Registry that could have been exploited...
Where from, Where to — The Evolution of Network Security
For the better part of the 90s and early aughts, the sysadmin handbook said, "Filter your incoming traffic, not everyone...
New Golang-based Skuld Malware Stealing Discord and Browser Data from Windows PCs
A new Golang-based information stealer called Skuld has compromised Windows systems across Europe, Southeast Asia, and the U.S. "This new...
Critical Security Vulnerability Discovered in WooCommerce Stripe Gateway Plugin
A security flaw has been uncovered in the WooCommerce Stripe Gateway WordPress plugin that could lead to the unauthorized disclosure...
Fake Researcher Profiles Spread Malware through GitHub Repositories as PoC Exploits
At least half of dozen GitHub accounts from fake researchers associated with a fraudulent cybersecurity company have been observed pushing...
Webinar – Mastering API Security: Understanding Your True Attack Surface
Believe it or not, your attack surface is expanding faster than you realize. How? APIs, of course! More formally known...
LockBit 3.0 Ransomware Victim: nosm[.]ca
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: prioritydispatch[.]net
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: eriematerials[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: gslelectric[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: rammutual[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Cobalt Stike Beacon Detected – 194[.]50[.]153[.]114:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Microsoft Releases Updates to Patch Critical Flaws in Windows and Other Software
Microsoft has rolled out fixes for its Windows operating system and other software components to remediate major security shortcomings as...
Webinar – Mastering API Security: Understanding Your True Attack Surface
Believe it or not, your attack surface is expanding faster than you realize. How? APIs, of course! More formally known...
Why Now? The Rise of Attack Surface Management
The term "attack surface management" (ASM) went from unknown to ubiquitous in the cybersecurity space over the past few years....
Vice Society Ransomware Victim: Bogleboo
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Massive phishing campaign uses 6,000 sites to impersonate 100 brands
A widespread brand impersonation campaign targeting over a hundred popular apparel, footwear, and clothing brands has been underway since June...
Blink Copilot Brings Generative AI to Security Automation
Imagine if all you needed to do to turn a security policy into an enforced workflow was type it out...
RDP honeypot targeted 3.5 million times in brute-force attacks
Remote desktop connections are so powerful a magnet for hackers that an exposed connection can average more than 37,000 times...
Chinese hackers used VMware ESXi zero-day to backdoor VMs
VMware patched today a VMware ESXi zero-day vulnerability exploited by a Chinese-sponsored hacking group to backdoor Windows and Linux virtual...
Pirated Windows 10 ISOs install clipper malware via EFI partitions
Hackers are distributing Windows 10 using torrents that hide cryptocurrency hijackers in the EFI (Extensible Firmware Interface) partition to evade...
