Blog
-
Cobalt Strike Beacon Detected – 59[.]110[.]47[.]61:80
* [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 59-[.-]110-[.-]47-[.-]61:80============================================================[January 12, 2025](https://www.redpacketsecurity.com/2025/01/) Cobalt Strike Beacon Detection Alerts > The Information provided at…
-
Cobalt Strike Beacon Detected – 47[.]242[.]37[.]176:8080
* [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 47-[.-]242-[.-]37-[.-]176:8080===============================================================[January 12, 2025](https://www.redpacketsecurity.com/2025/01/) Cobalt Strike Beacon Detection Alerts > The Information provided at…
-
[FUNKSEC] – Ransomware Victim: new cloud storage for our leaks
* [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[FUNKSEC-] — Ransomware Victim: new cloud storage for our leaks=================================================================[January 11, 2025](https://www.redpacketsecurity.com/2025/01/) * [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[LYNX-] — Ransomware Victim: Astaphans========================================[January 11, 2025](https://www.redpacketsecurity.com/2025/01/) Ransomware Group: **LYNX**==========================### VICTIM…
-
[LYNX] – Ransomware Victim: Jim Thompson
* [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[LYNX-] — Ransomware Victim: Jim Thompson===========================================[January 11, 2025](https://www.redpacketsecurity.com/2025/01/) Ransomware Group:…
-
IBM watsonx.ai Vulnerability Let Attackers Embed Arbitrary JavaScript Code in Web UI
IBM disclosed a significant vulnerability in its watsonx.ai platform, potentially exposing users to [cross-site scripting (XSS)](https://cybersecuritynews.com/xss-remains-as-the-most-vulnerability/) attacks. The vulnerability, identified…
-
DoJ charged three Russian citizens with operating crypto-mixing services
The U.S. Department of Justice charged three Russian citizens with operating crypto-mixing services that helped crooks launder cryptocurrency.———————————————————————————————————————————————-The U.S. Department…
-
Information Stealer Masquerades as LDAPNightmare (CVE202449113) PoC Exploit
A fake proof-of-concept exploit for the LDAPNightmare vulnerability (CVE-2024-49113) is being used to distribute information-stealing malware. The malicious repository, disguised…
-
Black Basta Ransomware Campaign Drops Zbot, DarkGate, and Custom Malware
A resurgence of activity related to the Black Basta ransomware campaign has been observed since early October. The threat actors…
-
Recruitment Phishing Scam Imitates Hiring Process
A sophisticated phishing campaign has been discovered that exploits recruitment branding to deliver malware. The attack begins with a phishing…