Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
Description: Privileged access management company BeyondTrust suffered a cyberattack in early December after threat actors breached some of its Remote Support SaaS instances. [...]
December 19th, 2024 (4 months ago)
|
|
|
Description: Edward_Snowden Claims to be Selling the Data of PuppyFinder[.]com
December 19th, 2024 (4 months ago)
|
|
|
Description: Moon_WALK Claims to be Selling the Data of helloArtisan
December 19th, 2024 (4 months ago)
|
|
|
Description: Threat actors have been observed uploading malicious typosquats of legitimate npm packages such as typescript-eslint and @types/node that have racked up thousands of downloads on the package registry.
The counterfeit versions, named @typescript_eslinter/eslint and types-node, are engineered to download a trojan and retrieve second-stage payloads, respectively.
"While typosquatting attacks are
December 19th, 2024 (4 months ago)
|
|
|
Description: CISA released eight Industrial Control Systems (ICS) advisories on December 19, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.
ICSA-24-354-01 Hitachi Energy RTU500 series CMU
ICSA-24-354-02 Hitachi Energy SDM600
ICSA-24-354-03 Delta Electronics DTM Soft
ICSA-24-354-04 Siemens User Management Component
ICSA-24-354-05 Tibbo AggreGate Network Manager
ICSA-24-354-06 Schneider Electric Accutech Manager
ICSA-24-354-07 Schneider Electric Modicon Controllers
ICSMA-24-354-01 Ossur Mobile Logic Application
CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.
December 19th, 2024 (4 months ago)
|
|
|
Description: In December 2024, data claimed to be breached from the multi-level marketing company Young Living Essential Oils was posted to a popular hacking forum. The data contained 1.1M unique email addresses alongside names, the country of the account and in many cases, their date of birth. The data was provided to HIBP by a source who requested it be attributed to "Threat Actor 888". Young Living Essential Oils did not respond to multiple attempts to contact them about the data.
December 19th, 2024 (4 months ago)
|
|
|
Description: A balance of rigorous supplier validation, purposeful data exposure, and meticulous preparation is key to managing and mitigating risk.
December 19th, 2024 (4 months ago)
|
CVE-2023-35813 |
Description: Adjective Claims to be Selling a High-Severity CVE Vulnerability (CVE-2023-35813) Affecting an Unidentified State Health Corporation With Annual Revenue of $1-$1.5 Billion USD
EPSS Score: 91.67%
December 19th, 2024 (4 months ago)
|
|
|
Description: A Threat Actor Claims to be Selling High Quality Leads of Portugal
December 19th, 2024 (4 months ago)
|
|
|
Description: nick_diesel Claims to be Selling the Access and Data of BMI Certified IQ Test
December 19th, 2024 (4 months ago)
|