threatintel

CVE Alert: CVE-2025-24850

April 17, 2025

Vulnerability Summary: CVE-2025-24850 An attacker can export other users' plant information. Affected Endpoints: No affected endpoints listed. Published Date: 4/15/2025,...

Read More

CVE Alert: CVE-2025-26903

April 17, 2025

Vulnerability Summary: CVE-2025-26903 Cross-Site Request Forgery (CSRF) vulnerability in RealMag777 InPost Gallery allows Cross Site Request Forgery. This issue affects...

Read More

CVE Alert: CVE-2025-24315

April 17, 2025

Vulnerability Summary: CVE-2025-24315 Unauthenticated attackers can add devices of other users to their scenes (or arbitrary scenes of other arbitrary...

Read More

CVE Alert: CVE-2025-26906

April 17, 2025

Vulnerability Summary: CVE-2025-26906 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ren Ventura WP Delete User...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 176[.]65[.]138[.]202:443

April 17, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 202[.]144[.]192[.]24:80

April 17, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 43[.]163[.]215[.]175:8023

April 17, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 121[.]37[.]180[.]38:80

April 17, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 101[.]133[.]153[.]245:444

April 17, 2025

The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...

Read More

[LOCKBIT3] – Ransomware Victim: aqhch[.]com[.]cn

April 17, 2025

Ransomware Group: LOCKBIT3 VICTIM NAME: aqhchcomcn NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Read More

[INCRANSOM] – Ransomware Victim: Koninklijke Ahold Delhaize N[.]V[.]

April 17, 2025

Ransomware Group: INCRANSOM VICTIM NAME: Koninklijke Ahold Delhaize NV NOTE: No files or stolen information are by RedPacket Security. Any...

Read More

[QILIN] – Ransomware Victim: www[.]nelson[.]edu

April 16, 2025

Ransomware Group: QILIN VICTIM NAME: wwwnelsonedu NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Read More

[SAFEPAY] – Ransomware Victim: niemann[.]de

April 16, 2025

Ransomware Group: SAFEPAY VICTIM NAME: niemannde NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

Read More

CVE Alert: CVE-2025-26749

April 16, 2025

Vulnerability Summary: CVE-2025-26749 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPFactory Additional Custom Product Tabs...

Read More

CVE Alert: CVE-2025-26880

April 16, 2025

Vulnerability Summary: CVE-2025-26880 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sonalsinha21 SKT Skill Bar allows...

Read More

CVE Alert: CVE-2025-26857

April 16, 2025

Vulnerability Summary: CVE-2025-26857 Unauthenticated attackers can rename arbitrary devices of arbitrary users (i.e., EV chargers). Affected Endpoints: No affected endpoints...

Read More

CVE Alert: CVE-2025-26870

April 16, 2025

Vulnerability Summary: CVE-2025-26870 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound JetEngine allows DOM-Based XSS....

Read More

CVE Alert: CVE-2025-26748

April 16, 2025

Vulnerability Summary: CVE-2025-26748 Cross-Site Request Forgery (CSRF) vulnerability in LOOS,Inc. Arkhe allows PHP Local File Inclusion. This issue affects Arkhe:...

Read More

CVE Alert: CVE-2025-26934

April 16, 2025

Vulnerability Summary: CVE-2025-26934 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in graphthemes Glossy Blog allows Stored...

Read More

CVE Alert: CVE-2025-26927

April 16, 2025

Vulnerability Summary: CVE-2025-26927 Unrestricted Upload of File with Dangerous Type vulnerability in EPC AI Hub allows Upload a Web Shell...

Read More

CVE Alert: CVE-2025-26950

April 16, 2025

Vulnerability Summary: CVE-2025-26950 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AddonsPress Nepali Date Converter allows...

Read More

CVE Alert: CVE-2025-26951

April 16, 2025

Vulnerability Summary: CVE-2025-26951 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in covertnine C9 Blocks allows DOM-Based...

Read More

CVE Alert: CVE-2025-26930

April 16, 2025

Vulnerability Summary: CVE-2025-26930 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in alleythemes Home Services allows DOM-Based...

Read More

[PLAY] – Ransomware Victim: Red Chamber

April 16, 2025

Ransomware Group: PLAY VICTIM NAME: Red Chamber NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

Read More

Cobalt-Strike

Cobalt Strike Beacon Detected – 167[.]99[.]76[.]115:80

May 11, 2025

Cobalt-Strike

Cobalt Strike Beacon Detected – 185[.]208[.]159[.]224:80

May 11, 2025

Cobalt-Strike

Cobalt Strike Beacon Detected – 115[.]175[.]39[.]35:443

May 11, 2025

Cobalt-Strike

Cobalt Strike Beacon Detected – 121[.]36[.]228[.]26:8080

May 11, 2025

Cobalt-Strike

Cobalt Strike Beacon Detected – 166[.]108[.]200[.]194:443

May 11, 2025