threatintel

CVE Alert: CVE-2025-53637

July 11, 2025

Vulnerability Summary: CVE-2025-53637 Meshtastic is an open source mesh networking solution. The main_matrix.yml GitHub Action is triggered by the pull_request_target...

CVE Alert: CVE-2025-7415

July 11, 2025

Vulnerability Summary: CVE-2025-7415 A vulnerability, which was classified as critical, has been found in Tenda O3V2 1.0.0.12(3880). This issue affects...

CVE Alert: CVE-2025-7419

July 11, 2025

Vulnerability Summary: CVE-2025-7419 A vulnerability was found in Tenda O3V2 1.0.0.12(3880). It has been classified as critical. This affects the...

CVE Alert: CVE-2025-7417

July 11, 2025

Vulnerability Summary: CVE-2025-7417 A vulnerability has been found in Tenda O3V2 1.0.0.12(3880) and classified as critical. Affected by this vulnerability...

CVE Alert: CVE-2025-7418

July 11, 2025

Vulnerability Summary: CVE-2025-7418 A vulnerability was found in Tenda O3V2 1.0.0.12(3880) and classified as critical. Affected by this issue is...

CVE Alert: CVE-2025-24798

July 11, 2025

Vulnerability Summary: CVE-2025-24798 Meshtastic is an open source mesh networking solution. From 1.2.1 until 2.6.2, a packet sent to the...

CVE Alert: CVE-2025-1727

July 11, 2025

Vulnerability Summary: CVE-2025-1727 The protocol used for remote linking over RF for End-of-Train and Head-of-Train (also known as a FRED)...

b45c85b1a93c117030e05035b20db416c6734381608ccb43822a06da7448bb7b

Outlook Takes Another Sick Day

July 11, 2025

updated Microsoft Outlook was down for the count in a major outage affecting millions of users worldwide for the more...

4a763f9153223480b6f301216ba8ce630aefc0b7bd9c28dde7d4af1585e33ea2

At Last, A Use Case For Ai Agents With Sky High Roi: Stealing Crypto

July 11, 2025

Using AI models to generate exploits for cryptocurrency contract flaws appears to be a promising business model, though not necessarily...

[NOVA] – Ransomware Victim: LCM Construção e Comércio S/A

July 11, 2025

Ransomware Group: NOVA VICTIM NAME: LCM Construção e Comércio S/A NOTE: No files or stolen information are by RedPacket Security....

CVE Alert: CVE-2025-7204

July 11, 2025

Vulnerability Summary: CVE-2025-7204 In ConnectWise PSA versions older than 2025.9, a vulnerability exists where authenticated users could gain access to...

CVE Alert: CVE-2025-52364

July 11, 2025

Vulnerability Summary: CVE-2025-52364 Insecure Permissions vulnerability in Tenda CP3 Pro Firmware V22.5.4.93 allows the telnet service (telnetd) by default at...

CVE Alert: CVE-2025-2670

July 11, 2025

Vulnerability Summary: CVE-2025-2670 IBM OpenPages 9.0 is vulnerable to information disclosure of sensitive information due to a weaker than expected...

Vulnerability Summary: CVE-2025-53546 Folo organizes feeds content into one timeline. Using pull_request_target on .github/workflows/auto-fix-lint-format-commit.yml can be exploited by attackers, since...

CVE Alert: CVE-2025-1112

July 11, 2025

Vulnerability Summary: CVE-2025-1112 IBM OpenPages with Watson 8.3 and 9.0 could allow an authenticated user to obtain sensitive information that...

CVE Alert: CVE-2025-44526

July 11, 2025

Vulnerability Summary: CVE-2025-44526 Realtek RTL8762EKF-EVB RTL8762E SDK V1.4.0 was discovered to utilize insufficient permission checks on critical fields within Bluetooth...

CVE Alert: CVE-2025-53654

July 11, 2025

Vulnerability Summary: CVE-2025-53654 Jenkins Statistics Gatherer Plugin 2.0.3 and earlier stores the AWS Secret Key unencrypted in its global configuration...

CVE Alert: CVE-2025-44177

July 11, 2025

Vulnerability Summary: CVE-2025-44177 A directory traversal vulnerability was discovered in White Star Software Protop version 4.4.2-2024-11-27, specifically in the /pt3upd/...

CVE Alert: CVE-2025-53653

July 11, 2025

Vulnerability Summary: CVE-2025-53653 Jenkins Aqua Security Scanner Plugin 3.2.8 and earlier stores Scanner Tokens for Aqua API unencrypted in job...

CVE Alert: CVE-2025-53655

July 11, 2025

Vulnerability Summary: CVE-2025-53655 Jenkins Statistics Gatherer Plugin 2.0.3 and earlier does not mask the AWS Secret Key on the global...

Cobalt Strike Beacon Detected – 8[.]140[.]239[.]162:81

July 11, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 8[.]210[.]78[.]137:81

July 11, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 111[.]92[.]242[.]44:443

July 11, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 8[.]152[.]6[.]86:81

July 11, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

threatintel

CVE Alert: CVE-2025-53637

CVE Alert: CVE-2025-7415

CVE Alert: CVE-2025-7419

CVE Alert: CVE-2025-7417

CVE Alert: CVE-2025-7418

CVE Alert: CVE-2025-24798

CVE Alert: CVE-2025-1727

Outlook Takes Another Sick Day

At Last, A Use Case For Ai Agents With Sky High Roi: Stealing Crypto

[NOVA] – Ransomware Victim: LCM Construção e Comércio S/A

CVE Alert: CVE-2025-7204

CVE Alert: CVE-2025-52364

CVE Alert: CVE-2025-2670

CVE Alert: CVE-2025-53546

CVE Alert: CVE-2025-1112

CVE Alert: CVE-2025-44526

CVE Alert: CVE-2025-53654

CVE Alert: CVE-2025-44177

CVE Alert: CVE-2025-53653

CVE Alert: CVE-2025-53655

Cobalt Strike Beacon Detected – 8[.]140[.]239[.]162:81

Cobalt Strike Beacon Detected – 8[.]210[.]78[.]137:81

Cobalt Strike Beacon Detected – 111[.]92[.]242[.]44:443

Cobalt Strike Beacon Detected – 8[.]152[.]6[.]86:81

BugCrowd Bug Bounty Disclosure: P3 – Publicly Editable Google Docs Linked from NASA SnowEx PPT –

BugCrowd Bug Bounty Disclosure: P3 – Details of the collaboration between NASA and Inmarsat Government and the type of contract –

Apple Products Multiple Vulnerabilities

Miljödata – 870,108 breached accounts

Cobalt Strike Beacon Detected – 119[.]91[.]203[.]199:88

You may have missed