[PLAY] – Ransomware Victim: Ka Logistics
Ransomware Group: PLAY VICTIM NAME: Ka Logistics NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
threatintel
[SARCOMA] – Ransomware Victim: Sanderling Healthcare
Ransomware Group: SARCOMA VICTIM NAME: Sanderling Healthcare NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[QILIN] – Ransomware Victim: www[.]balkankalip[.]com
Ransomware Group: QILIN VICTIM NAME: wwwbalkankalipcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CovenantC2 Detected – 209[.]141[.]47[.]199:7443
The Information provided at the time of posting was detected as "Covenant C2". Depending on when you are viewing this...
CVE Alert: CVE-2025-51459
Vulnerability Summary: CVE-2025-51459 File Upload vulnerability in agent.hub.controller.refresh_plugins in eosphoros-ai DB-GPT 0.7.0 allows remote attackers to execute arbitrary code via...
CVE Alert: CVE-2025-31511
Vulnerability Summary: CVE-2025-31511 An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval by changing the user...
CVE Alert: CVE-2025-31512
Vulnerability Summary: CVE-2025-31512 An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval via isAddedByApprover in a...
CVE Alert: CVE-2025-51479
Vulnerability Summary: CVE-2025-51479 Authorization bypass in update_user_group in onyx-dot-app Onyx Enterprise Edition 0.27.0 allows remote authenticated attackers to modify arbitrary...
CVE Alert: CVE-2025-51471
Vulnerability Summary: CVE-2025-51471 Cross-Domain Token Exposure in server.auth.getAuthorizationToken in Ollama 0.6.7 allows remote attackers to steal authentication tokens and bypass...
CVE Alert: CVE-2025-31513
Vulnerability Summary: CVE-2025-31513 An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can elevate to administrator privileges via the IsAdminApprover...
CVE Alert: CVE-2025-51472
Vulnerability Summary: CVE-2025-51472 Code Injection in AgentTemplate.eval_agent_config in TransformerOptimus SuperAGI 0.0.14 allows remote attackers to execute arbitrary Python code via...
CVE Alert: CVE-2025-51458
Vulnerability Summary: CVE-2025-51458 SQL Injection in editor_sql_run and query_ex in eosphoros-ai DB-GPT 0.7.0 allows remote attackers to execute arbitrary SQL...
CVE Alert: CVE-2025-51462
Vulnerability Summary: CVE-2025-51462 Stored Cross-site Scripting (XSS) vulnerability in api.apps.dialog_app.set_dialog in RAGFlow 0.17.2 allows remote attackers to execute arbitrary JavaScript...
CVE Alert: CVE-2025-51475
Vulnerability Summary: CVE-2025-51475 Arbitrary File Overwrite (AFO) in superagi.controllers.resources.upload in TransformerOptimus SuperAGI 0.0.14 allows remote attackers to overwrite arbitrary files...
Silicon Valley Engineer Admits Theft Of Us Missile Tech Secrets
A Silicon Valley engineer has pleaded guilty to stealing thousands of trade secrets worth hundreds of millions of dollars, including...
The Real Reason Why Trump Is Killing The Mauna Loa Observatory In Hawai’i
Column When you don't like the message, what do you do? You shoot the messenger, of course.That's the strategy being...
CVE Alert: CVE-2025-48733
Vulnerability Summary: CVE-2025-48733 DuraComm SPM-500 DP-10iN-100-MU lacks access controls for a function that should require user authentication. This could allow...
CVE Alert: CVE-2025-54072
Vulnerability Summary: CVE-2025-54072 yt-dlp is a feature-rich command-line audio/video downloader. In versions 2025.06.25 and below, when the --exec option is...
CVE Alert: CVE-2025-53703
Vulnerability Summary: CVE-2025-53703 DuraComm SPM-500 DP-10iN-100-MU transmits sensitive data without encryption over a channel that could be intercepted by attackers....
CVE Alert: CVE-2025-41425
Vulnerability Summary: CVE-2025-41425 DuraComm SPM-500 DP-10iN-100-MU is vulnerable to a cross-site scripting attack. This could allow an attacker to prevent...
CVE Alert: CVE-2025-53538
Vulnerability Summary: CVE-2025-53538 Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation)...
CVE Alert: CVE-2025-54137
Vulnerability Summary: CVE-2025-54137 HAX CMS NodeJS allows users to manage their microsite universe with a NodeJS backend. Versions 11.0.9 and...
CVE Alert: CVE-2025-54140
Vulnerability Summary: CVE-2025-54140 pyLoad is a free and open-source Download Manager written in pure Python. In version 0.5.0b3.dev89, an authenticated...
CVE Alert: CVE-2025-54138
Vulnerability Summary: CVE-2025-54138 LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring which includes support for a wide range of network...
