CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
🏴‍☠️ Blacklock has just published a new victim : Quick Frames USA
Description: Internet Service Providers, Website Hosting & Internet-related Services Arizona, United States <25 Employees QuickFrames specializes in manufacturing innovative steel components for the commercial construction industry, offering products like bolt-in and drop-in roof frames. Revenue <$5 Million
Source: Ransomware.live
May 28th, 2025 (21 days ago)
🏴‍☠️ Qilin has just published a new victim : innovasystems.com
Description: InnovaSystems, Inc., based in Mooretown, New Jersey, was founded by John Waters (President) and Nick Schreier, in 1989 as a technology engineering company. InnovaSystems provided then, and continues to provide now, a single source for clients ...
Source: Ransomware.live
May 28th, 2025 (21 days ago)
Alleged Leak of Data of Çukurova University Horizontal Transfer Application System
Description: Alleged Leak of Data of Çukurova University Horizontal Transfer Application System
Source: DarkWebInformer
May 28th, 2025 (21 days ago)
Alleged sale of unauthorized access to an unidentified E-Commerce store in New Zealand
Description: Alleged sale of unauthorized access to an unidentified E-Commerce store in New Zealand
Source: DarkWebInformer
May 28th, 2025 (21 days ago)
9,000 ASUS Routers Compromised in Stealthy Backdoor Campaign
Description: A campaign targeting nearly 9,000 ASUS routers globally has given attackers persistent, undetectable access, likely to build a botnet network for future operations. The discovery, made by GreyNoise on March 18, 2025, was kept under wraps until coordination with government and industry partners was completed, culminating in a public report released today. The campaign was … The post 9,000 ASUS Routers Compromised in Stealthy Backdoor Campaign appeared first on CyberInsider.
Source: CyberInsider
May 28th, 2025 (21 days ago)
Attack on LexisNexis Risk Solutions exposes data on 300k +
Source: TheRegister
May 28th, 2025 (21 days ago)

CVE-2025-48749
Netwrix Directory Manager (formerly Imanami GroupID) v11.0.0.0 and before & after v.11.1.25134.03 inserts Sensitive Information into Sent Data.
Description: Netwrix Directory Manager (formerly Imanami GroupID) v11.0.0.0 and before & after v.11.1.25134.03 inserts Sensitive Information into Sent Data.

EPSS Score: 0.05%

Source: CVE
May 28th, 2025 (21 days ago)

CVE-2025-47748
Netwrix Directory Manager v.11.0.0.0 and before & after v.11.1.25134.03 contains a hardcoded password.
Description: Netwrix Directory Manager v.11.0.0.0 and before & after v.11.1.25134.03 contains a hardcoded password.

EPSS Score: 0.05%

Source: CVE
May 28th, 2025 (21 days ago)

CVE-2024-57338
An arbitrary file upload vulnerability in M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows...
Description: An arbitrary file upload vulnerability in M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file.

EPSS Score: 0.06%

Source: CVE
May 28th, 2025 (21 days ago)

CVE-2024-57337
An arbitrary file upload vulnerability in the opcode 500 functionality of M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and...
Description: An arbitrary file upload vulnerability in the opcode 500 functionality of M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file.

EPSS Score: 0.06%

Source: CVE
May 28th, 2025 (21 days ago)