threatintel

CVE Alert: CVE-2024-47518

January 11, 2025

Vulnerability Summary: CVE-2024-47518 Specially constructed queries targeting ETM could discover active remote access sessions Affected Endpoints: No affected endpoints listed....

CVE Alert: CVE-2025-23110

January 11, 2025

Vulnerability Summary: CVE-2025-23110 An issue was discovered in REDCap 14.9.6. A Reflected cross-site scripting (XSS) vulnerability in the email-subject field...

CVE Alert: CVE-2024-9134

January 11, 2025

Vulnerability Summary: CVE-2024-9134 Multiple SQL Injection vulnerabilities exist in the reporting application. A user with advanced report application access rights...

CVE Alert: CVE-2024-9188

January 11, 2025

Vulnerability Summary: CVE-2024-9188 Specially constructed queries cause cross platform scripting leaking administrator tokens Affected Endpoints: No affected endpoints listed. Published...

CVE Alert: CVE-2025-23111

January 11, 2025

Vulnerability Summary: CVE-2025-23111 An issue was discovered in REDCap 14.9.6. It allows HTML Injection via the Survey field name, exposing...

CVE Alert: CVE-2025-23113

January 11, 2025

Vulnerability Summary: CVE-2025-23113 An issue was discovered in REDCap 14.9.6. It has an action=myprojects&logout=1 CSRF issue in the alert-title while...

[EVEREST] – Ransomware Victim: Protected: Title Hidden

January 11, 2025

Ransomware Group: EVEREST VICTIM NAME: Protected: Title Hidden NOTE: No files or stolen information are by RedPacket Security. Any legal...

Empire C2 Detected – 45[.]60[.]39[.]14:8880

January 11, 2025

The Information provided at the time of posting was detected as "Empire C2". Depending on when you are viewing this...

CISA: Microsoft Releases December 2024 Security Updates

January 11, 2025

Microsoft Releases December 2024 Security Updates Microsoft released security updates to address vulnerabilities in multiple Microsoft products. A cyber threat...

CISA: Ivanti Releases Security Updates for Multiple Products

January 11, 2025

Ivanti Releases Security Updates for Multiple Products Ivanti released security updates to address vulnerabilities in Ivanti Cloud Service Application, Ivanti...

CISA: Cisco Releases Security Updates for NX-OS Software

January 11, 2025

Cisco Releases Security Updates for NX-OS Software Cisco released security updates to address a vulnerability in Cisco NX-OS software. A...

CISA: ASD’s ACSC, CISA, and US and International Partners Release Guidance on Choosing Secure and Verifiable Technologies

January 11, 2025

ASD’s ACSC, CISA, and US and International Partners Release Guidance on Choosing Secure and Verifiable Technologies Today, CISA—in partnership with...

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

January 11, 2025

CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...

CISA: Adobe Releases Security Updates for Multiple Products

January 11, 2025

Adobe Releases Security Updates for Multiple Products Adobe released security updates to address vulnerabilities in multiple Adobe software products including...

CISA: CISA Releases Seven Industrial Control Systems Advisories

January 11, 2025

CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on December 10, 2024. These...

CISA: CISA and EPA Release Joint Fact Sheet Detailing Risks Internet-Exposed HMIs Pose to WWS Sector

January 11, 2025

CISA and EPA Release Joint Fact Sheet Detailing Risks Internet-Exposed HMIs Pose to WWS Sector Today, CISA and the Environmental...

CISA: CISA Releases Ten Industrial Control Systems Advisories

January 11, 2025

CISA Releases Ten Industrial Control Systems Advisories CISA released ten Industrial Control Systems (ICS) advisories on December 12, 2024. These...

CISA: Apple Releases Security Updates for Multiple Products

January 11, 2025

Apple Releases Security Updates for Multiple Products Apple released security updates to address vulnerabilities in multiple Apple products. A cyber...

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

January 11, 2025

CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...

CISA: CISA and ONCD Release Playbook for Strengthening Cybersecurity in Federal Grant Programs for Critical Infrastructure

January 11, 2025

CISA and ONCD Release Playbook for Strengthening Cybersecurity in Federal Grant Programs for Critical Infrastructure Today, CISA and the Office...

threatintel

CVE Alert: CVE-2024-47518

CVE Alert: CVE-2025-23110

CVE Alert: CVE-2024-9134

CVE Alert: CVE-2024-9188

CVE Alert: CVE-2025-23111

CVE Alert: CVE-2025-23113

[EVEREST] – Ransomware Victim: Protected: Title Hidden

Empire C2 Detected – 45[.]60[.]39[.]14:8880

CISA: Microsoft Releases December 2024 Security Updates

CISA: Ivanti Releases Security Updates for Multiple Products

CISA: Cisco Releases Security Updates for NX-OS Software

CISA: ASD’s ACSC, CISA, and US and International Partners Release Guidance on Choosing Secure and Verifiable Technologies

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: Adobe Releases Security Updates for Multiple Products

CISA: CISA Releases Seven Industrial Control Systems Advisories

CISA: CISA and EPA Release Joint Fact Sheet Detailing Risks Internet-Exposed HMIs Pose to WWS Sector

CISA: CISA Releases Ten Industrial Control Systems Advisories

CISA: Apple Releases Security Updates for Multiple Products

CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA: CISA and ONCD Release Playbook for Strengthening Cybersecurity in Federal Grant Programs for Critical Infrastructure

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Requests Public Comment for Draft National Cyber Incident Response Plan Update

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Releases Five Industrial Control Systems Advisories

CVE Alert: CVE-2023-29113

CVE Alert: CVE-2023-28910

CVE Alert: CVE-2025-6818

CVE Alert: CVE-2023-28911

CVE Alert: CVE-2023-28912

You may have missed