Cobalt Strike Beacon Detected – 20[.]0[.]106[.]6:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
threatintel
CVE Alert: CVE-2024-12452
Vulnerability Summary: CVE-2024-12452 The Ziggeo plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ziggeo_event' shortcode in...
CVE Alert: CVE-2024-13461
Vulnerability Summary: CVE-2024-13461 The Autoship Cloud for WooCommerce Subscription Products plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
CVE Alert: CVE-2024-13353
Vulnerability Summary: CVE-2024-13353 The Responsive Addons for Elementor – Free Elementor Addons Plugin and Elementor Templates plugin for WordPress is...
CVE Alert: CVE-2024-13648
Vulnerability Summary: CVE-2024-13648 The Maps for WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'MapOnePoint'...
CVE Alert: CVE-2025-1410
Vulnerability Summary: CVE-2025-1410 The Events Calendar Made Simple – Pie Calendar plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
CVE Alert: CVE-2024-13455
Vulnerability Summary: CVE-2024-13455 The igumbi Online Booking plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'igumbi_calendar'...
CVE Alert: CVE-2025-1402
Vulnerability Summary: CVE-2025-1402 The Event Tickets and Registration plugin for WordPress is vulnerable to unauthorized loss of data due to...
CVE Alert: CVE-2024-12276
Vulnerability Summary: CVE-2024-12276 The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for...
CVE Alert: CVE-2025-1535
Vulnerability Summary: CVE-2025-1535 A vulnerability was found in Baiyi Cloud Asset Management System 8.142.100.161. It has been classified as critical....
CVE Alert: CVE-2025-1489
Vulnerability Summary: CVE-2025-1489 The WP-Appbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's appbox shortcode in...
[MEDUSA] – Ransomware Victim: G&S Electric LLC
Ransomware Group: MEDUSA VICTIM NAME: G&S Electric LLC NOTE: No files or stolen information are by RedPacket Security. Any legal...
[MEDUSA] – Ransomware Victim: Metropolitan Borough of Gateshead
Ransomware Group: MEDUSA VICTIM NAME: Metropolitan Borough of Gateshead NOTE: No files or stolen information are by RedPacket Security. Any...
[MEDUSA] – Ransomware Victim: Benton Police Department
Ransomware Group: MEDUSA VICTIM NAME: Benton Police Department NOTE: No files or stolen information are by RedPacket Security. Any legal...
[MEDUSA] – Ransomware Victim: Martin Energy Group Services
Ransomware Group: MEDUSA VICTIM NAME: Martin Energy Group Services NOTE: No files or stolen information are by RedPacket Security. Any...
[HUNTERS] – Ransomware Victim: SPEED Co
Ransomware Group: HUNTERS VICTIM NAME: SPEED Co NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[DRAGONFORCE] – Ransomware Victim: Tristram European
Ransomware Group: DRAGONFORCE VICTIM NAME: Tristram European NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[HUNTERS] – Ransomware Victim: CCOO Servicios
Ransomware Group: HUNTERS VICTIM NAME: CCOO Servicios NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[RHYSIDA] – Ransomware Victim: Peter Glenn Ski Sport
Ransomware Group: RHYSIDA VICTIM NAME: Peter Glenn Ski Sport NOTE: No files or stolen information are by RedPacket Security. Any...
CVE Alert: CVE-2020-6158
Vulnerability Summary: CVE-2020-6158 Opera Mini for Android before version 52.2 is vulnerable to an address bar spoofing attack. The vulnerability...
CVE Alert: CVE-2024-13846
Vulnerability Summary: CVE-2024-13846 The Indeed Ultimate Learning Pro plugin for WordPress is vulnerable to time-based SQL Injection via the ‘post_id’...
CVE Alert: CVE-2024-13900
Vulnerability Summary: CVE-2024-13900 The Head, Footer and Post Injections plugin for WordPress is vulnerable to PHP Code Injection in all...
CVE Alert: CVE-2024-13713
Vulnerability Summary: CVE-2024-13713 The WPExperts Square For GiveWP plugin for WordPress is vulnerable to SQL Injection via the 'post' parameter...
CVE Alert: CVE-2025-26794
Vulnerability Summary: CVE-2025-26794 Exim 4.98 before 4.98.1, when SQLite hints and ETRN serialization are used, allows remote SQL injection. Affected...
