threatintel

Cobalt Strike Beacon Detected – 3[.]232[.]168[.]159:443

January 20, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 8[.]141[.]95[.]197:6688

January 20, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 106[.]75[.]62[.]120:8000

January 20, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 124[.]71[.]164[.]7:4433

January 20, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 124[.]221[.]100[.]215:80

January 20, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

CVE Alert: CVE-2024-13515

January 19, 2025

Vulnerability Summary: CVE-2024-13515 The Image Source Control Lite – Show Image Credits and Captions plugin for WordPress is vulnerable to...

CVE Alert: CVE-2023-50739

January 19, 2025

Vulnerability Summary: CVE-2023-50739 A buffer overflow vulnerability has been identified in the Internet Printing Protocol (IPP) in various Lexmark devices....

CVE Alert: CVE-2024-12071

January 19, 2025

Vulnerability Summary: CVE-2024-12071 The Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media plugin for...

CVE Alert: CVE-2025-23209

January 19, 2025

Vulnerability Summary: CVE-2025-23209 Craft is a flexible, user-friendly CMS for creating custom digital experiences on the web and beyond. This...

CVE Alert: CVE-2024-11923

January 19, 2025

Vulnerability Summary: CVE-2024-11923 Under certain log settings the IAM or CORE service will log credentials in the iam logfile in...

[RHYSIDA] – Ransomware Victim: TG3 Electronics

January 19, 2025

Ransomware Group: RHYSIDA VICTIM NAME: TG3 Electronics NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[QILIN] – Ransomware Victim: Richardson

January 19, 2025

Ransomware Group: QILIN VICTIM NAME: Richardson NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2025-0308

January 19, 2025

Vulnerability Summary: CVE-2025-0308 The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for...

CVE Alert: CVE-2025-0318

January 19, 2025

Vulnerability Summary: CVE-2025-0318 The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for...

CVE Alert: CVE-2025-0554

January 19, 2025

Vulnerability Summary: CVE-2025-0554 The Podlove Podcast Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Feed Name...

CVE Alert: CVE-2024-13516

January 19, 2025

Vulnerability Summary: CVE-2024-13516 The Kubio AI Page Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'message'...

CVE Alert: CVE-2024-12385

January 19, 2025

Vulnerability Summary: CVE-2024-12385 The WP Abstracts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to,...

CVE Alert: CVE-2024-13393

January 19, 2025

Vulnerability Summary: CVE-2024-13393 The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored...

CVE Alert: CVE-2024-13391

January 19, 2025

Vulnerability Summary: CVE-2024-13391 The MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Tokens Wallet plugin for WordPress is vulnerable...

CVE Alert: CVE-2024-13432

January 19, 2025

Vulnerability Summary: CVE-2024-13432 The Webcamconsult plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and...

CVE Alert: CVE-2024-13317

January 19, 2025

Vulnerability Summary: CVE-2024-13317 The ShipWorks Connector for Woocommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...

CVE Alert: CVE-2024-13385

January 19, 2025

Vulnerability Summary: CVE-2024-13385 The JSM Screenshot Machine Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's...

Cobalt Strike Beacon Detected – 182[.]160[.]14[.]158:7777

January 19, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Cobalt Strike Beacon Detected – 156[.]224[.]19[.]17:443

January 19, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

threatintel

Cobalt Strike Beacon Detected – 3[.]232[.]168[.]159:443

Cobalt Strike Beacon Detected – 8[.]141[.]95[.]197:6688

Cobalt Strike Beacon Detected – 106[.]75[.]62[.]120:8000

Cobalt Strike Beacon Detected – 124[.]71[.]164[.]7:4433

Cobalt Strike Beacon Detected – 124[.]221[.]100[.]215:80

CVE Alert: CVE-2024-13515

CVE Alert: CVE-2023-50739

CVE Alert: CVE-2024-12071

CVE Alert: CVE-2025-23209

CVE Alert: CVE-2024-11923

[RHYSIDA] – Ransomware Victim: TG3 Electronics

[QILIN] – Ransomware Victim: Richardson

CVE Alert: CVE-2025-0308

CVE Alert: CVE-2025-0318

CVE Alert: CVE-2025-0554

CVE Alert: CVE-2024-13516

CVE Alert: CVE-2024-12385

CVE Alert: CVE-2024-13393

CVE Alert: CVE-2024-13391

CVE Alert: CVE-2024-13432

CVE Alert: CVE-2024-13317

CVE Alert: CVE-2024-13385

Cobalt Strike Beacon Detected – 182[.]160[.]14[.]158:7777

Cobalt Strike Beacon Detected – 156[.]224[.]19[.]17:443

[BLACKSUIT] – Ransomware Victim: Gloucester County Virginia

Cobalt Strike Beacon Detected – 47[.]92[.]216[.]212:8080

Cobalt Strike Beacon Detected – 193[.]124[.]41[.]54:80

Brute Ratel C4 Detected – 18[.]181[.]128[.]244:80

Google Chrome Multiple Vulnerabilities

You may have missed