CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on March 4, 2025. These...
threatintel
Cobalt Strike Beacon Detected – 124[.]222[.]82[.]19:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 118[.]193[.]36[.]235:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 1[.]94[.]63[.]197:8989
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 172[.]233[.]26[.]237:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 47[.]97[.]96[.]34:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CovenantC2 Detected – 34[.]152[.]19[.]0:7443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
[LYNX] – Ransomware Victim: Pervedant
Ransomware Group: LYNX VICTIM NAME: Pervedant NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[SAFEPAY] – Ransomware Victim: willms-fleisch[.]de
Ransomware Group: SAFEPAY VICTIM NAME: willms-fleischde NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-1932
Vulnerability Summary: CVE-2025-1932 An inconsistent comparator in xslt/txNodeSorter could have resulted in potentially exploitable out-of-bounds access. Only affected version 122...
CVE Alert: CVE-2025-1933
Vulnerability Summary: CVE-2025-1933 On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from...
CVE Alert: CVE-2025-27426
Vulnerability Summary: CVE-2025-27426 Malicious websites utilizing a server-side redirect to an internal error page could result in a spoofed website...
CVE Alert: CVE-2025-27424
Vulnerability Summary: CVE-2025-27424 Websites redirecting to a non-HTTP scheme URL could allow a website address to be spoofed for a...
CVE Alert: CVE-2025-27425
Vulnerability Summary: CVE-2025-27425 Scanning certain QR codes that included text with a website URL could allow the URL to be...
CVE Alert: CVE-2024-50705
Vulnerability Summary: CVE-2024-50705 Unauthenticated reflected cross-site scripting (XSS) vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to execute arbitrary...
CVE Alert: CVE-2024-50706
Vulnerability Summary: CVE-2024-50706 Unauthenticated SQL injection vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to execute arbitrary SQL queries...
CVE Alert: CVE-2025-1941
Vulnerability Summary: CVE-2025-1941 Under certain circumstances, a user opt-in setting that Focus should require authentication before use could have been...
CVE Alert: CVE-2025-1943
Vulnerability Summary: CVE-2025-1943 Memory safety bugs present in Firefox 135 and Thunderbird 135. Some of these bugs showed evidence of...
CVE Alert: CVE-2025-1942
Vulnerability Summary: CVE-2025-1942 When String.toUpperCase() caused a string to get longer it was possible for uninitialized memory to be incorporated...
[FOG] – Ransomware Victim: SCOLARO FETTER GRIZANTI & McGOUGH, P[.]C[.] (scolaro[.]com)
Ransomware Group: FOG VICTIM NAME: SCOLARO FETTER GRIZANTI & McGOUGH, PC (scolarocom) NOTE: No files or stolen information are by...
[RANSOMHUB] – Ransomware Victim: www[.]black-star[.]fr
Ransomware Group: RANSOMHUB VICTIM NAME: wwwblack-starfr NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-23368
Vulnerability Summary: CVE-2025-23368 A flaw was found in Wildfly Elytron integration. The component does not implement sufficient measures to prevent...
CVE Alert: CVE-2025-27156
Vulnerability Summary: CVE-2025-27156 Tuleap is an Open Source Suite to improve management of software developments and collaboration. The mass emailing...
CVE Alert: CVE-2024-9149
Vulnerability Summary: CVE-2024-9149 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Wind Media E-Commerce...
