US-CERT Vulnerability Summary for the Week of July 28, 2025
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded in the past week. In some...
threatintel
[QILIN] – Ransomware Victim: alpresor[.]se
Ransomware Group: QILIN VICTIM NAME: alpresorse NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[PLAY] – Ransomware Victim: Terillium
Ransomware Group: PLAY VICTIM NAME: Terillium NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[PLAY] – Ransomware Victim: Backstage Library Works
Ransomware Group: PLAY VICTIM NAME: Backstage Library Works NOTE: No files or stolen information are by RedPacket Security. Any legal...
[INTERLOCK] – Ransomware Victim: Weisman Children’s
Ransomware Group: INTERLOCK VICTIM NAME: Weisman Children's NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[PLAY] – Ransomware Victim: Phoenix Lighting
Ransomware Group: PLAY VICTIM NAME: Phoenix Lighting NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[PLAY] – Ransomware Victim: White Horse Packaging
Ransomware Group: PLAY VICTIM NAME: White Horse Packaging NOTE: No files or stolen information are by RedPacket Security. Any legal...
[QILIN] – Ransomware Victim: easternadjustment[.]com
Ransomware Group: QILIN VICTIM NAME: easternadjustmentcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[DRAGONFORCE] – Ransomware Victim: Koenig Hausverwaltung
Ransomware Group: DRAGONFORCE VICTIM NAME: Koenig Hausverwaltung NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[DRAGONFORCE] – Ransomware Victim: Wedlich
Ransomware Group: DRAGONFORCE VICTIM NAME: Wedlich NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[DRAGONFORCE] – Ransomware Victim: K2L
Ransomware Group: DRAGONFORCE VICTIM NAME: K2L NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CVE Alert: CVE-2025-8494
Vulnerability Summary: CVE-2025-8494 A vulnerability, which was classified as critical, has been found in code-projects Intern Membership Management System 1.0....
CVE Alert: CVE-2025-54349
Vulnerability Summary: CVE-2025-54349 In iperf before 3.19.1, iperf_auth.c has an off-by-one error and resultant heap-based buffer overflow. Affected Endpoints: No...
CVE Alert: CVE-2025-54955
Vulnerability Summary: CVE-2025-54955 OpenNebula Community Edition (CE) before 7.0.0 and Enterprise Edition (EE) before 6.10.3 have a critical FireEdge race...
CVE Alert: CVE-2025-52131
Vulnerability Summary: CVE-2025-52131 The Mocca Calendar application before 2.15 for XWiki allows XSS via the background or text color field....
CVE Alert: CVE-2025-8495
Vulnerability Summary: CVE-2025-8495 A vulnerability, which was classified as critical, was found in code-projects Intern Membership Management System 1.0. Affected...
CVE Alert: CVE-2025-54351
Vulnerability Summary: CVE-2025-54351 In iperf before 3.19.1, net.c has a buffer overflow when --skip-rx-copy is used (for MSG_TRUNC in recv)....
CVE Alert: CVE-2025-54350
Vulnerability Summary: CVE-2025-54350 In iperf before 3.19.1, iperf_auth.c has a Base64Decode assertion failure and application exit upon a malformed authentication...
CVE Alert: CVE-2025-52132
Vulnerability Summary: CVE-2025-52132 The Mocca Calendar application before 2.15 for XWiki allows XSS via a title to the view event...
Brute Ratel C4 Detected – 52[.]194[.]178[.]241:80
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
CVE Alert: CVE-2025-8497
Vulnerability Summary: CVE-2025-8497 A vulnerability was found in code-projects Online Medicine Guide 1.0 and classified as critical. Affected by this...
CVE Alert: CVE-2025-8498
Vulnerability Summary: CVE-2025-8498 A vulnerability was found in code-projects Online Medicine Guide 1.0. It has been classified as critical. This...
CVE Alert: CVE-2025-8496
Vulnerability Summary: CVE-2025-8496 A vulnerability has been found in projectworlds Online Admission System 1.0 and classified as critical. Affected by...
CVE Alert: CVE-2025-8500
Vulnerability Summary: CVE-2025-8500 A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been rated as critical....
