#cti - The Wandering Shop

Recent searches

Search options

Only available when logged in.

6 posts6 participants0 posts today

Daily-CVE @CyberSignaler@mastodon.social

CVE-2025-3439 - Everest Forms WordPress PHP Object Injection Vulnerability April 11, 2025 at 01:15PM https://ift.tt/uF68ro5 #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon

cvefeed.io · 1dCVE-2025-3439 - Everest Forms WordPress PHP Object Injection VulnerabilityThe Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.1.1 via deserialization of untrusted input from the 'field_value' parameter. This makes it possible for unauthenticated attackers to inject …

Daily-CVE @CyberSignaler@mastodon.social

CVE-2025-32755 - Jenkins SSH Slave Debian Host Key Spoofing Vulnerability April 10, 2025 at 12:15PM https://ift.tt/8Nv5fEP #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon

cvefeed.io · 2dCVE-2025-32755 - Jenkins SSH Slave Debian Host Key Spoofing VulnerabilityIn jenkins/ssh-slave Docker images based on Debian, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert themselves into the network path between the SSH client …

Daily-CVE @CyberSignaler@mastodon.social

CVE-2025-29087 - Sqlite Integer Overflow Through Concat Function April 07, 2025 at 08:15PM https://ift.tt/5ylMfts #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon

cvefeed.io · 4dCVE-2025-29087 - Sqlite Integer Overflow Through Concat FunctionSqlite 3.49.0 is susceptible to integer overflow through the concat function.

Unmashed Avocado @trojanfoxtrot@infosec.exchange

Why would an organization run wodSSH instead of the default FortiGate SSH? Seriously, I’ve never heard of WeOnlyDo.

#threatintel #cti

Redhotcyber @redhotcyber@mastodon.bida.im

Oracle ammette privatamente la violazione dei dati verso gli utenti interessati

Link all'articolo : https://www.redhotcyber.com/post/oracle-ammette-la-violazione-dei-dati-milioni-di-credenziali-rubate/

il blog della sicurezza informatica · Apr 4Oracle ammette privatamente la violazione dei dati verso gli utenti interessatiOracle ha finalmente ammesso di aver subito una grave violazione dei dati, informando privatamente alcuni clienti selezionati dell’incidente di sicurezza, solo pochi giorni dopo essere stata colpita da una class action che accusava il gigante della tecnologia di aver tentato di nascondere la violazione agli utenti interessati. Secondo Bloomberg, la società ha inoltre informato i […]

#redhotcyber #hacking #cti

Daily-CVE @CyberSignaler@mastodon.social

CVE-2024-38392 - Pexip Infinity Connect Remote Code Execution April 02, 2025 at 09:15PM https://ift.tt/MXgnDqm #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon

cvefeed.io · Apr 2CVE-2024-38392 - Pexip Infinity Connect Remote Code ExecutionPexip Infinity Connect before 1.13.0 lacks sufficient authenticity checks during the loading of resources, and thus remote attackers can cause the application to run untrusted code.

Continued thread

CrowdSec @CrowdSec@infosec.exchange

Get started with the CrowdSec WAF: https://doc.crowdsec.net/docs/next/appsec/intro

Virtual Patching WAF collection: https://app.crowdsec.net/hub/author/crowdsecurity/collections/appsec-virtual-patching [3/3]

doc.crowdsec.netAppSec Component - CrowdSec WAF | CrowdSecIntroduction

#CrowdSec #CTI #CyberThreatIntelligence

Redhotcyber @redhotcyber@mastodon.bida.im

Attacco informatico via Teams: un semplice messaggio può compromettere la tua azienda!

Link all'articolo : https://www.redhotcyber.com/post/attacco-informatico-via-teams-un-semplice-messaggio-puo-compromettere-la-tua-azienda/

il blog della sicurezza informatica · Apr 2Attacco informatico via Teams: un semplice messaggio può compromettere la tua azienda!Microsoft Teams sotto attacco: hacker usano vishing e accesso remoto per compromettere aziende. Scopri come proteggerti dalle nuove minacce informatiche.

#redhotcyber #hacking #cti

Redhotcyber @redhotcyber@mastodon.bida.im

Tre Zeroday critici sfruttati attivamente minacciano i device Apple

Link all'articolo : https://www.redhotcyber.com/post/tre-zeroday-critici-sfruttati-attivamente-minacciano-i-device-apple/

il blog della sicurezza informatica · Apr 1Tre Zeroday critici sfruttati attivamente minacciano i device AppleApple rilascia aggiornamenti di sicurezza per vecchi iPhone e iPad, correggendo tre vulnerabilità critiche. Scopri se il tuo dispositivo è a rischio e perché devi aggiornare subito!

#redhotcyber #hacking #cti

CTI.FYI @CTI_FYI@infosec.exchange

New ransom group blog post!

Group name: kairos
Post title: State's Attorney Office
Info: https://cti.fyi/groups/kairos.html

#ransomware #cti #threatintelligence

Redhotcyber @redhotcyber@mastodon.bida.im

Ubuntu a rischio: scoperte 3 tecniche per aggirare la sicurezza e ottenere privilegi di root!

Link all'articolo : https://www.redhotcyber.com/post/ubuntu-a-rischio-scoperte-3-tecniche-per-aggirare-la-sicurezza-e-ottenere-privilegi-di-root/

il blog della sicurezza informatica · Mar 31Ubuntu a rischio: scoperte 3 tecniche per aggirare la sicurezza e ottenere privilegi di root!Scoperte tre tecniche per aggirare le restrizioni di sicurezza in Ubuntu Linux, consentendo l’aumento dei privilegi. Canonical minimizza, ma gli esperti lanciano l’allarme!

#redhotcyber #hacking #cti

CTI.FYI @CTI_FYI@infosec.exchange

New ransom group blog post!

Group name: ransomhub
Post title: cisd.org
Info: https://cti.fyi/groups/ransomhub.html

cti.fyiransomhub

#ransomware #cti #threatintelligence

Redhotcyber @redhotcyber@mastodon.bida.im

Cisco sotto attacco: sfruttate due vulnerabilità critiche nella Smart Licensing Utility!

Link all'articolo : https://www.redhotcyber.com/post/cisco-sotto-attacco-sfruttate-due-vulnerabilita-critiche-nella-smart-licensing-utility/

il blog della sicurezza informatica · Mar 21Cisco sotto attacco: sfruttate due vulnerabilità critiche nella Smart Licensing Utility!Gli hacker stanno attivamente sfruttando due vulnerabilità critiche in Cisco Smart Licensing Utility, esponendo dati sensibili e concedendo accesso amministrativo non autorizzato

#redhotcyber #hacking #cti

Daily-CVE @CyberSignaler@mastodon.social

CVE-2025-1232 - "WordPress Site Reviews Stored XSS Vulnerability" March 19, 2025 at 06:15AM https://ift.tt/JFaxqWB #CVE #IOC #CTI #ThreatIntelligence #ThreatIntel #Cybersecurity #Recon

cvefeed.io · Mar 19CVE-2025-1232 - "WordPress Site Reviews Stored XSS Vulnerability"The Site Reviews WordPress plugin before 7.2.5 does not properly sanitise and escape some of its Review fields, which could allow unauthenticated users to perform Stored XSS attacks

Bill @Sempf@infosec.exchange

The former director of the GCHQ says we should collaborate more. Huh.

https://www.infosecurity-magazine.com/news/cyber-industry-collaboration-gchq/

Infosecurity Magazine · Mar 14Cybersecurity Industry Falls Short on Collaboration, Says Former GCHQ DirectorBy Kevin Poireault

Redhotcyber @redhotcyber@mastodon.bida.im

Una PE in Microsoft Windows sfruttata da 2 anni Nel Patch Tuesday. Aggiornare avverte CISA e ACN

Link all'articolo : https://www.redhotcyber.com/post/una-pe-in-microsoft-windows-sfruttata-da-2-anni-nel-patch-tuesday-aggiornare-avverte-cisa-e-acn/

il blog della sicurezza informatica · Mar 14Una PE in Microsoft Windows sfruttata da 2 anni Nel Patch Tuesday. Aggiornare avverte CISA e ACNCVE-2025-24983: una vulnerabilità nel kernel di Windows, sfruttata dagli hacker da oltre un anno, permette l’elevazione dei privilegi a SYSTEM. Aggiorna subito per proteggerti!

#redhotcyber #hacking #cti

CTI.FYI @CTI_FYI@infosec.exchange

New ransom group blog posts!

Group name: arcusmedia
Post title: HYPERNOVA TELECOM
Info: https://cti.fyi/groups/arcusmedia.html

Group name: arcusmedia
Post title: HYPONAMIRU
Info: https://cti.fyi/groups/arcusmedia.html

cti.fyiarcusmedia

#ransomware #cti #threatintelligence

katch wreck @katchwreck@mastodon.social

`Milt Jackson With Hubert Laws ‎– Goodbye (1974 - Album)`

https://www.youtube.com/watch?v=6LYr2nL4jMs

YouTubeMilt Jackson With Hubert Laws ‎– Goodbye (1974 - Album)By 2666 - The Art Of Listening

#jazz #MiltJackson #Vibraphone

Viss @Viss@mastodon.social

do any of my #cti pals know anything about these domains:

aplonetworks . com
courageous-snake . com

im pretty sure someones aiming a spearphishing harpoon gun at me/phobos and they're being very crafty about it. the links in the email go to those two domains and i cant find anything about them

grey @grey@infosec.exchange

For some reason people are sharing llm garbage instead of the real chat logs for black basta. Here are the real logs and the telegram channel they're being shared in: https://t[.]me/shopotbasta/21

CTI is a team sport. Not a secret boys club. Sharing is caring. #CTI #GAYINT #CTIFORALL #threatintel #threatintelligence #BlackBasta #Ransomware #Leak

Drag & drop to upload