![]() |
Description: Hotel management platform Otelier has suffered a major data breach, exposing millions of guest reservations and personal details from well-known hotel brands such as Marriott, Hilton, and Hyatt. The breach, which began in July 2024 and persisted until October, resulted in nearly 8TB of data being stolen from the company's Amazon S3 cloud storage. Otelier, …
The post Otelier Breach Exposes Marriot, Hilton Bookings and Client Info appeared first on CyberInsider.
January 18th, 2025 (5 months ago)
|
![]() |
Description: The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) has imposed sanctions against a Chinese cybersecurity company and a Shanghai-based cyber actor for their alleged links to the Salt Typhoon group and the recent compromise of the federal agency.
"People's Republic of China-linked (PRC) malicious cyber actors continue to target U.S. government systems, including the recent
January 18th, 2025 (6 months ago)
|
![]() |
Description: A Threat Actor Claims to be Selling 1,150 Credit Cards From Multiple Countries
January 18th, 2025 (6 months ago)
|
CVE-2024-57642 |
Description: An issue in the dfe_inx_op_col_def_table component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
EPSS Score: 0.04%
January 18th, 2025 (6 months ago)
|
CVE-2024-57617 |
Description: An issue in the dameraulevenshtein component of MonetDB Server v11.49.1 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
EPSS Score: 0.04%
January 18th, 2025 (6 months ago)
|
CVE-2024-57616 |
Description: An issue in the vscanf component of MonetDB Server v11.47.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
EPSS Score: 0.04%
January 18th, 2025 (6 months ago)
|
CVE-2024-57615 |
Description: An issue in the BATcalcbetween_intern component of MonetDB Server v11.47.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
EPSS Score: 0.04%
January 18th, 2025 (6 months ago)
|
CVE-2024-57372 |
Description: Cross Site Scripting vulnerability in InformationPush master version allows a remote attacker to obtain sensitive information via the title, time and msg parameters
EPSS Score: 0.05%
January 18th, 2025 (6 months ago)
|
CVE-2024-57370 |
Description: Cross Site Scripting vulnerability in sunnygkp10 Online Exam System master version allows a remote attacker to obtain sensitive information via the w parameter.
EPSS Score: 0.05%
January 18th, 2025 (6 months ago)
|
CVE-2024-57369 |
Description: Clickjacking vulnerability in typecho v1.2.1.
EPSS Score: 0.05%
January 18th, 2025 (6 months ago)
|