CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

	WordPress Skimmers Evade Detection by Injecting Themselves into Database Tables Description: Cybersecurity researchers are warning of a new stealthy credit card skimmer campaign that targets WordPress e-commerce checkout pages by inserting malicious JavaScript code into a database table associated with the content management system (CMS). "This credit card skimmer malware targeting WordPress websites silently injects malicious JavaScript into database entries to steal sensitive payment Source: TheHackerNews January 13th, 2025 (6 months ago)
	Europe coughs up €400 to punter after breaking its own GDPR data protection rules Source: TheRegister January 13th, 2025 (6 months ago)
	Scholastic - 4,247,768 breached accounts Description: In January 2025, a data breach of the publishing company Scholastic surfaced. The breach contained 4.2M unique email addresses with many of the records also including name, phone number and physical address. Source: HaveIBeenPwnedLatestBreaches January 13th, 2025 (6 months ago)
	Threat Actor Database Description: Threat Actor Database Source: DarkWebInformer January 12th, 2025 (6 months ago)
	Phishing texts trick Apple iMessage users into disabling protection Description: Cybercriminals are exploiting a trick to turn off Apple iMessage's built-in phishing protection for a text and trick users into re-enabling disabled phishing links. [...] Source: BleepingComputer January 12th, 2025 (6 months ago)
	Skillz (303) Claims to be Selling Shell Access to Habbo Description: Skillz (303) Claims to be Selling Shell Access to Habbo Source: DarkWebInformer January 12th, 2025 (6 months ago)
	Pastor who saw crypto project in his "dream" indicted for fraud Description: A pastor at a Pasco, Washington, church has been indicted on 26 counts of fraud for allegedly operating a cryptocurrency scam that defrauded investors of millions between 2021 and 2023. [...] Source: BleepingComputer January 12th, 2025 (6 months ago)
	SuperDraft - 300,187 breached accounts Description: In October 2024, the fantasy sports platform SuperDraft suffered a data breach that exposed over 300k customer records. The breach contained 24GB of data including email addresses, usernames, transactions, latitudes and longitudes, dates of birth and bcrypt password hashes. Source: HaveIBeenPwnedLatestBreaches January 12th, 2025 (6 months ago)
	IntelBroker Claims to have Leaked the Data of Capital Markets Elite Group Description: IntelBroker Claims to have Leaked the Data of Capital Markets Elite Group Source: DarkWebInformer January 12th, 2025 (6 months ago)
CVE-2025-23109	Long hostnames in URLs could be leveraged to obscure the actual host of the website or spoof the website address This vulnerability affects Firefox... Description: Long hostnames in URLs could be leveraged to obscure the actual host of the website or spoof the website address This vulnerability affects Firefox for iOS < 134. EPSS Score: 0.04% Source: CVE January 12th, 2025 (6 months ago)