Category: Threat Intel Reports


  • Exploits and vulnerabilities in Q3 2024

    ![](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2024/12/06081001/SL-vulnerability-exploit-report-q3-2024-featured-990×400.jpg)Q3 2024 saw multiple vulnerabilities discovered in Windows and Linux subsystems that are not standard for cyberattacks. This is because…


  • Another teenage hacker charged as feds continue Scattered Spider crackdown

    ![Keyboard](https://cms.therecord.media/uploads/format_webp/small_hands_keyboard_27d16135ea.jpg?w=3840)Image: Soumil Kumar / Pexels [James Reddick](/author/james-reddick)December 6th, 2024 Another teenage hacker charged as feds continue Scattered Spider crackdown==========================================================================An alleged…


  • [SARCOMA] – Ransomware Victim: Pan Gulf Holding

    * [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[SARCOMA-] — Ransomware Victim: Pan Gulf Holding==================================================[December 6, 2024](https://www.redpacketsecurity.com/2024/12/) ![image](https://www.redpacketsecurity.com/wp-content/uploads/2024/09/image.png ‘[SARCOMA] – Ransomware Victim: Pan Gulf Holding…


  • Compromised ultralytics PyPI package delivers crypto coinminer

    ![XMRig-Coinminer](https://www.reversinglabs.com/hs-fs/hubfs/Blog/XMRig-Coinminer.webp?width=1400&height=732&name=XMRig-Coinminer.webp)Executive Summary——————————————————————————————————————————————————–On December 4, a malicious version 8.3.41 of the popular AI library *ultralytics* — which has almost 60 million…


  • End-of-Year PTO: Days Off and Data Exfiltration with Formbook

    By: Adam Martin and Nathaniel SagibandaThe holiday season is a time of joy and relaxation, but it often brings an…


  • [FUNKSEC] – Ransomware Victim: mtgazeta[.]uz

    * [Data Breach](https://www.redpacketsecurity.com/category/databreach/)* [Ransomware](https://www.redpacketsecurity.com/category/ransomware/)-[FUNKSEC-] — Ransomware Victim: mtgazeta-[.-]uz=================================================[December 6, 2024](https://www.redpacketsecurity.com/2024/12/) ![image](https://www.redpacketsecurity.com/wp-content/uploads/2024/09/image.png ‘[FUNKSEC] – Ransomware Victim: mtgazeta[.]uz 1’)Ransomware Group: **FUNKSEC**=============================### VICTIM…


  • Why SOC Roles Need to Evolve to Attract a New Generation

    * [Cybersecurity Operations](/cybersecurity-operations)* [Cybersecurity Careers](/cybersecurity-operations/cybersecurity-careers)Why SOC Roles Need to Evolve to Attract a New Generation Why SOC Roles Need to…


  • Alleged ShinyHunters member returned to France after prison in the U.S., now facing French charges

    On January 9, 2024, DataBreaches reported that French national Sébastien Raoult had been sentenced in a Seattle federal court, but…


  • Cobalt Strike Beacon Detected – 13[.]127[.]114[.]160:443

    * [Cobalt Strike](https://www.redpacketsecurity.com/category/cobalt-strike/)Cobalt Strike Beacon Detected — 13-[.-]127-[.-]114-[.-]160:443===============================================================[December 6, 2024](https://www.redpacketsecurity.com/2024/12/) Cobalt Strike Beacon Detection Alerts > The Information provided at…


  • Authorities Dismantled 50+ Servers Used By Criminal Marketplace

    Europol has recently announced the successful takedown of a sophisticated online fraud network.The operation, spearheaded by German authorities and supported…