CVE Alert: CVE-2024-30114
Vulnerability Summary: CVE-2024-30114 Insufficient sanitization in HCL Leap allows client-side script injection in the authoring environment. Affected Endpoints: No affected...
threatintel
[AKIRA] – Ransomware Victim: Cohn Lifland Pearlman Herrmann and Knopf
Ransomware Group: AKIRA VICTIM NAME: Cohn Lifland Pearlman Herrmann and Knopf NOTE: No files or stolen information are by RedPacket...
[INTERLOCK] – Ransomware Victim: Madison School District Schools
Ransomware Group: INTERLOCK VICTIM NAME: Madison School District Schools NOTE: No files or stolen information are by RedPacket Security. Any...
[DEVMAN] – Ransomware Victim: EU victim
Ransomware Group: DEVMAN VICTIM NAME: EU victim NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[AKIRA] – Ransomware Victim: Santa Cruz Properties
Ransomware Group: AKIRA VICTIM NAME: Santa Cruz Properties NOTE: No files or stolen information are by RedPacket Security. Any legal...
[INTERLOCK] – Ransomware Victim: DaVita
Ransomware Group: INTERLOCK VICTIM NAME: DaVita NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
PEGASUS-NEO – A Comprehensive Penetration Testing Framework Designed For Security Professionals And Ethical Hackers. It Combines Multiple Security Tools And Custom Modules For Reconnaissance, Exploitation, Wireless Attacks, Web Hacking, And More
____ _ _ | _ \ ___ __ _ __ _ ___ _ _ ___| \ | | | |_)...
CVE Alert: CVE-2023-45720
Vulnerability Summary: CVE-2023-45720 Insufficient default configuration in HCL Leap allows anonymous access to directory information. Affected Endpoints: No affected endpoints...
CVE Alert: CVE-2024-30113
Vulnerability Summary: CVE-2024-30113 Insufficient sanitization policy in HCL Leap allows client-side script injection in the deployed application through the HTML...
CVE Alert: CVE-2025-31324
Vulnerability Summary: CVE-2025-31324 SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to...
CVE Alert: CVE-2023-37534
Vulnerability Summary: CVE-2023-37534 Insufficient URI protocol whitelist in HCL Leap allows script injection through query parameters. Affected Endpoints: No affected...
CVE Alert: CVE-2024-30147
Vulnerability Summary: CVE-2024-30147 Multiple vectors in HCL Leap allow client-side script injection in the authoring environment and deployed applications. Affected...
CVE Alert: CVE-2022-44760
Vulnerability Summary: CVE-2022-44760 Unsafe default file type filter policy in HCL Leap allows execution of unsafe JavaScript in deployed applications....
CVE Alert: CVE-2022-44759
Vulnerability Summary: CVE-2022-44759 Improper sanitization of SVG files in HCL Leap allows client-side script injection in deployed applications. Affected Endpoints:...
Booby Trapped Alpine Quest Android App Geolocates Russian Soldiers
Russian soldiers are being targeted with an Android app specially altered to pinpoint their location and scan their phones for...
Blue Shield Says It Shared Health Info On Up To 4.7m Patients With Google Ads
US health insurance giant Blue Shield of California handed sensitive health information belonging to as many as 4.7 million members...
Who Needs Phishing When Your Login’s Already In The Wild?
Criminals used stolen credentials more frequently than email phishing to gain access into their victims' IT systems last year, marking...
M&s Takes Systems Offline As ‘cyber Incident’ Lingers
UK high street retailer Marks & Spencer says contactless payments are still down following its "cyber incident" and order delays...
America’s Cyber Defenses Are Being Dismantled From The Inside
Opinion We almost lost the Common Vulnerabilities and Exposures (CVE) database system, but that's only the tip of the iceberg...
Devs Sound Alarm After Microsoft Subtracts C/c++ Extension From Vs Code Forks
Microsoft's C/C++ extension for Visual Studio Code (VS Code) no longer works with derivative products such as VS Codium and...
This Is Not Just Any ‘cyber Incident’ … This Is An M&s ‘cyber Incident’
UK high street mainstay Marks & Spencer told the London Stock Exchange this afternoon it has been managing a "cyber...
Only 3,000 Staff Jump From Sap After 10,000 Earmarked To Be Pushed
SAP says 3,000 people have left the company in its restructuring plan but that it will wait to see if...
Ransomware Scum And Other Crims Bilked Victims Out Of A ‘staggering’ $16.6b Lastyear, Says Fbi
Digital scammers and extortionists bilked businesses and individuals in the US out of a "staggering" $16.6 billion last year, according...
Ripple Npm Supply Chain Attack Hunts For Private Keys
Many versions of the Ripple ledger (XRPL) official NPM package are compromised with malware injected to steal cryptocurrency.The NPM package,...
