CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Podcast: We're Not Ready for Chinese AI Video Generators
Description: We chat the lack of guardrails on China-based AI video models; how cops are using AI to summarize evidence from seized mobile phones; and the AI game that is making $50,000 a month.
Source: 404 Media
March 12th, 2025 (3 months ago)
Under Pressure: US Charges China's APT-for-Hire Hackers
Description: The US Justice Department on Wednesday announced charges against members of the Chinese-backed i-Soon "secret" APT and APT27, the latter implicated in January's Treasury breach.
Source: Dark Reading
March 6th, 2025 (3 months ago)
U.S. Charges 12 Chinese Nationals in State-Backed Hacking Operations
Description: The U.S. Department of Justice (DoJ) has announced charges against 12 Chinese nationals for their alleged participation in a wide-ranging scheme designed to steal data and suppress free speech and dissent globally. The individuals include two officers of the People's Republic of China's (PRC) Ministry of Public Security (MPS), eight employees of an ostensibly private PRC company, Anxun
Source: TheHackerNews
March 6th, 2025 (3 months ago)
Feds name and charge alleged Silk Typhoon spies behind years of China-on-US attacks
Source: TheRegister
March 6th, 2025 (3 months ago)
China's Silk Typhoon APT Shifts to IT Supply Chain Attacks
Description: The nation-state threat group has been breaching providers of remote management tools, identity management providers, and other IT companies to access networks of targeted entities, according to Microsoft.
Source: Dark Reading
March 5th, 2025 (3 months ago)
China's Silk Typhoon, tied to US Treasury break-in, now hammers IT and govt targets
Source: TheRegister
March 5th, 2025 (3 months ago)
China-Linked Silk Typhoon Expands Cyber Attacks to IT Supply Chains for Initial Access
Description: The China-lined threat actor behind the zero-day exploitation of security flaws in Microsoft Exchange servers in January 2021 has shifted its tactics to target the information technology (IT) supply chain as a means to obtain initial access to corporate networks. That's according to new findings from the Microsoft Threat Intelligence team, which said the Silk Typhoon (formerly Hafnium) hacking
Source: TheHackerNews
March 5th, 2025 (3 months ago)
Over 4,000 ISP IPs Targeted in Brute-Force Attacks to Deploy Info Stealers and Cryptominers
Description: Internet service providers (ISPs) in China and the West Coast of the United States have become the target of a mass exploitation campaign that deploys information stealers and cryptocurrency miners on compromised hosts. The findings come from the Splunk Threat Research Team, which said the activity also led to the delivery of various binaries that facilitate data exfiltration as well as offer
Source: TheHackerNews
March 4th, 2025 (3 months ago)
Wallbleed vulnerability unearths secrets of China's Great Firewall 125 bytes at a time
Source: TheRegister
February 27th, 2025 (4 months ago)
Wallbleed Flaw in China’s Great Firewall Exposed Private Data
Description: A newly discovered vulnerability in China's Great Firewall (GFW), dubbed Wallbleed, exposed sensitive memory data from its censorship infrastructure for over two years. The flaw leaked up to 125 bytes of internal memory whenever a specially crafted DNS query was injected into the system, offering an unprecedented view into China's nationwide censorship mechanisms. The vulnerability … The post Wallbleed Flaw in China’s Great Firewall Exposed Private Data appeared first on CyberInsider.
Source: CyberInsider
February 26th, 2025 (4 months ago)