Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Alleged Ransomware Attack and Data Leak Targeting China Harbour Engineering Company
Description: Alleged Ransomware Attack and Data Leak Targeting China Harbour Engineering Company
Source: DarkWebInformer
April 20th, 2025 (about 4 hours ago)
🏴‍☠️ Devman has just published a new victim : China Harbour Engeneiring Company
Description: 450k USD
Source: Ransomware.live
April 20th, 2025 (about 4 hours ago)
Global Telecom Networks Host Hidden Chinese Surveillance Nodes
Description: A new report from iVerify has revealed a far-reaching global surveillance threat enabled by China’s state-owned telecom interconnect providers. By exploiting outdated mobile signaling protocols, entities such as China Mobile International (CMI) and China Telecom Global have gained alarming access to sensitive mobile communications worldwide, with implications ranging from mass user profiling to covert malware … The post Global Telecom Networks Host Hidden Chinese Surveillance Nodes appeared first on CyberInsider.
Source: CyberInsider
April 17th, 2025 (3 days ago)

CVE-2025-22771
WordPress The Great Firewords of China plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Studio Hyperset The Great Firewords of China allows Stored XSS. This issue affects The Great Firewords of China: from n/a through 1.2.

CVSS: MEDIUM (6.5)

EPSS Score: 0.03%

SSVC Exploitation: none

Source: CVE
April 17th, 2025 (3 days ago)
Mustang Panda Targets Myanmar With StarProxy, EDR Bypass, and TONESHELL Updates
Description: The China-linked threat actor known as Mustang Panda has been attributed to a cyber attack targeting an unspecified organization in Myanmar with previously unreported tooling, highlighting continued effort by the threat actors to increase the sophistication and effectiveness of their malware. This includes updated versions of a known backdoor called TONESHELL, as well as a new lateral movement
Source: TheHackerNews
April 17th, 2025 (3 days ago)
Iran’s AI Ambitions: Balancing Economic Isolation with National Security Imperatives
Description: Explore how Iran is leveraging AI for cyberwarfare, influence ops, military tech, and domestic surveillance. A deep dive into Tehran’s top-down AI strategy, partnerships with China and Russia, and implications for global security.
Source: RecordedFuture
April 17th, 2025 (3 days ago)
China-Linked Hackers Lay Brickstorm Backdoors on Euro Networks
Description: Researchers discovered new variants of the malware, which is tied to a China-nexus threat group, targeting Windows environments of critical infrastructure networks in Europe.
Source: Dark Reading
April 16th, 2025 (4 days ago)
China accuses NSA of launching cyberattacks on Asian Winter Games
Description: China on Tuesday accused three alleged employees of the U.S. National Security Agency of carrying out cyberattacks on the Asian Winter Games in February.
Source: The Record
April 15th, 2025 (5 days ago)
China names alleged US snoops over Asian Winter Games attacks
Source: TheRegister
April 15th, 2025 (5 days ago)
Chinese Hackers Target Linux Systems Using SNOWLIGHT Malware and VShell Tool
Description: The China-linked threat actor known as UNC5174 has been attributed to a new campaign that leverages a variant of a known malware dubbed SNOWLIGHT and a new open-source tool called VShell to infect Linux systems. "Threat actors are increasingly using open source tools in their arsenals for cost-effectiveness and obfuscation to save money and, in this case, plausibly blend in with the pool of
Source: TheHackerNews
April 15th, 2025 (5 days ago)