threatintel

CVE Alert: CVE-2025-60016 – F5 – BIG-IP

October 16, 2025

CVE-2025-60016 HIGHNo exploitation known When Diffie-Hellman (DH) group Elliptic Curve Cryptography (ECC) Brainpool curves are configured in an SSL profile's...

Read More

CVE Alert: CVE-2025-59481 – F5 – BIG-IP

October 16, 2025

CVE-2025-59481 HIGHNo exploitation known A vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (tmsh) command that may...

Read More

CVE Alert: CVE-2025-59781 – F5 – BIG-IP

October 16, 2025

CVE-2025-59781 HIGHNo exploitation known When DNS cache is configured on a BIG-IP or BIG-IP Next CNF virtual server, undisclosed DNS...

Read More

CVE Alert: CVE-2025-59778 – F5 – F5OS – Chassis

October 16, 2025

CVE-2025-59778 HIGHNo exploitation known When the Allowed IP Addresses feature is configured on the F5OS-C partition control plane, undisclosed traffic...

Read More

CVE Alert: CVE-2025-61938 – F5 – BIG-IP

October 16, 2025

CVE-2025-61938 HIGHNo exploitation known When a BIG-IP Advanced WAF or ASM security policy is configured with a URL greater than...

Read More

CVE Alert: CVE-2025-55669 – F5 – BIG-IP

October 16, 2025

CVE-2025-55669 HIGHNo exploitation known When the BIG-IP Advanced WAF and ASM security policy and a server-side HTTP/2 profile are configured...

Read More

CVE Alert: CVE-2025-59478 – F5 – BIG-IP

October 16, 2025

CVE-2025-59478 HIGHNo exploitation known When a BIG-IP AFM denial-of-service (DoS) protection profile is configured on a virtual server, undisclosed requests...

Read More

CVE Alert: CVE-2025-58120 – F5 – BIG-IP Next SPK

October 16, 2025

CVE-2025-58120 HIGHNo exploitation known When HTTP/2 Ingress is configured, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note:...

Read More

CVE Alert: CVE-2025-58096 – F5 – BIG-IP

October 16, 2025

CVE-2025-58096 HIGHNo exploitation known When the database variable tm.tcpudptxchecksum is configured as non-default value Software-only on a BIG-IP system, undisclosed traffic can...

Read More

CVE Alert: CVE-2025-55036 – F5 – BIG-IP

October 16, 2025

CVE-2025-55036 HIGHNo exploitation known When BIG-IP SSL Orchestrator explicit forward proxy is configured on a virtual server and the proxy...

Read More

[QILIN] – Ransomware Victim: Sprague & Jackson

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[QILIN] – Ransomware Victim: Beta Dyne

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[RADIANT] – Ransomware Victim: Docurail

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[QILIN] – Ransomware Victim: Middlesex Appraisal Associates

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[BLACKSHRANTAC] – Ransomware Victim: Gulf Warranties LLC

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[RADIANT] – Ransomware Victim: Dutch ???

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[QILIN] – Ransomware Victim: Rasi Laboratories

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[QILIN] – Ransomware Victim: Sistema Odontológico Privado

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[QILIN] – Ransomware Victim: Catawba County Government

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[QILIN] – Ransomware Victim: HMP Global

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[QILIN] – Ransomware Victim: American Journal of Managed Care

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[QILIN] – Ransomware Victim: Ditransa

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[DEVMAN] – Ransomware Victim: ****** embassy D[.]C

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[QILIN] – Ransomware Victim: Typology

October 16, 2025

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal...

Read More

[PLAY] – Ransomware Victim: BMP Worldwide

October 16, 2025

hackerone

HackerOne Bug Bounty Disclosure: path-traversal-vulnerability-in-nextcloud-tables-enables-arbitrary-file-exfiltration-of-any-files-supported-by-phpspreadsheet-library-daroo

October 16, 2025

mythic

Mythic C2 Detected – 188[.]124[.]51[.]141:7443

October 16, 2025

[NOVA] – Ransomware Victim: Regency Specialist Hospital

October 16, 2025

[QILIN] – Ransomware Victim: pandarose[.]ca

October 16, 2025