TechNadu1h ago

Remote access compromise now leads ransomware intrusion paths, followed by phishing across Teams, voice, and SMS.

With CVEs exploited in under 24 hours, patch speed and MFA matter more than ever.

Read more:
https://www.technadu.com/top-ransomware-attack-vectors-and-prevention-remote-access-compromise-phishing-social-engineering-and-rapid-flaw-exploitation/618561/

#Infosec #Ransomware #ThreatIntel

RedPacket Security2h ago

CVE Alert: CVE-2026-1143 - TOTOLINK - A3700R - https://www.redpacketsecurity.com/cve-alert-cve-2026-1143-totolink-a3700r/

#OSINT #ThreatIntel #CyberSecurity #cve-2026-1143 #totolink #a3700r

CVE Alert: CVE-2026-1143 - TOTOLINK - A3700R - RedPacket Security

A weakness has been identified in TOTOLINK A3700R 9.1.2u.5822_B20200513. This affects the function setWiFiEasyGuestCfg of the file /cgi-bin/cstecgi.cgi.

RedPacket Security
RedPacket Security2h ago

CVE Alert: CVE-2026-1140 - UTT - 进取 520W - https://www.redpacketsecurity.com/cve-alert-cve-2026-1140-utt-520w/

#OSINT #ThreatIntel #CyberSecurity #cve-2026-1140 #utt #520w

CVE Alert: CVE-2026-1140 - UTT - 进取 520W - RedPacket Security

A vulnerability was found in UTT 进取 520W 1.7.7-180627. This issue affects the function strcpy of the file /goform/ConfigExceptAli. The manipulation results in

RedPacket Security
Show threadA bot witha.name3h ago
www.khk.cz
* askods.com
* ftp.prg.aero
* www.kraj-jihocesky.cz #ThreatIntel #Ddosia #NoName
* https://witha.name/data/2026-01-19_11-05-09_DDoSia-target-list-full.json
* https://witha.name/data/2026-01-19_11-05-09_DDoSia-target-list.csv
Cobalt_Striked5h ago

🐟 Phishing Infrastructure Detected

Confidence: MEDIUM (50/100)
Target Brand: Unknown
Phishing Domain: www.demo-netezprintx.com
IP: 108.53.163.122
Location: Newark, United States
Hosting: Verizon Business

Certificate:
- Issuer: DigiCert Global G2 TLS RSA SHA256 2020 CA1
- Expired: Yes
- Self-signed: No

Detection: phishing prefix: demo-

#ThreatIntel #Phishing #InfoSec #CyberSecurity

Cobalt_Striked5h ago

🐟 Phishing Infrastructure Detected

Confidence: MEDIUM (55/100)
Target Brand: Unknown
Phishing Domain: retail-demo-ronakbsh.example.com
IP: 50.19.216.152
Location: Ashburn, United States
Hosting: Amazon Data Services NoVa

Certificate:
- Issuer: retail-demo-ronakbsh.example.com
- Expired: No
- Self-signed: Yes

Detection: phishing prefix: demo-

#ThreatIntel #Phishing #InfoSec #CyberSecurity

Cobalt_Striked5h ago

🎣 Phishing Infrastructure Detected

Confidence: HIGH (65/100)
Target Brand: Amazon
Phishing Domain: opf-onboardingz-test-v11.amazon.com
IP: 35.159.207.198
Location: Frankfurt am Main, Germany
Hosting: A100 ROW GmbH

Certificate:
- Issuer: Amazon RSA 2048 M04
- Expired: No
- Self-signed: No

Detection: phishing prefix: test-

#ThreatIntel #Phishing #InfoSec #CyberSecurity

Cobalt_Striked5h ago

🎣 Phishing Infrastructure Detected

Confidence: HIGH (60/100)
Target Brand: Unknown
Phishing Domain: test-lurch.yauheab.com
IP: 47.253.59.53
Location: Lake Ridge, United States
Hosting: Alibaba Cloud - US

Certificate:
- Issuer: Encryption Everywhere DV TLS CA - G2
- Expired: Yes
- Self-signed: No

Detection: phishing prefix: test-

#ThreatIntel #Phishing #InfoSec #CyberSecurity

Cobalt_Striked5h ago

🎣 Phishing Infrastructure Detected

Confidence: CRITICAL (85/100)
Target Brand: Banking
Phishing Domain: test-hccn.ee-bank.com
IP: 1.95.55.247
Location: Guiyang, China
Hosting: Beijing Teletron Telecom Engineering Co., Ltd.

Certificate:
- Issuer: Encryption Everywhere DV TLS CA - G2
- Expired: Yes
- Self-signed: No

Detection: phishing prefix: test-

#ThreatIntel #Phishing #InfoSec #CyberSecurity

Cobalt_Striked5h ago

🎣 Phishing Infrastructure Detected

Confidence: HIGH (60/100)
Target Brand: Unknown
Phishing Domain: test-tungsten.ivocallab.com
IP: 47.253.56.236
Location: Lake Ridge, United States
Hosting: Alibaba Cloud - US

Certificate:
- Issuer: Encryption Everywhere DV TLS CA - G2
- Expired: Yes
- Self-signed: No

Detection: phishing prefix: test-

#ThreatIntel #Phishing #InfoSec #CyberSecurity