CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

	Nominet probes network intrusion linked to Ivanti zero-day exploit Source: TheRegister January 13th, 2025 (6 months ago)
	Expired Domains Allowed Control Over 4,000 Backdoors on Compromised Systems Description: No less than 4,000 unique web backdoors previously deployed by various threat actors have been hijacked by taking control of abandoned and expired infrastructure for as little as $20 per domain. Cybersecurity company watchTowr Labs said it pulled off the operation by registering over 40 domain names that the backdoors had been designed to use for command-and-control (C2). In partnership with the Source: TheHackerNews January 13th, 2025 (6 months ago)
	WordPress Skimmers Evade Detection by Injecting Themselves into Database Tables Description: Cybersecurity researchers are warning of a new stealthy credit card skimmer campaign that targets WordPress e-commerce checkout pages by inserting malicious JavaScript code into a database table associated with the content management system (CMS). "This credit card skimmer malware targeting WordPress websites silently injects malicious JavaScript into database entries to steal sensitive payment Source: TheHackerNews January 13th, 2025 (6 months ago)
	Europe coughs up €400 to punter after breaking its own GDPR data protection rules Source: TheRegister January 13th, 2025 (6 months ago)
	Scholastic - 4,247,768 breached accounts Description: In January 2025, a data breach of the publishing company Scholastic surfaced. The breach contained 4.2M unique email addresses with many of the records also including name, phone number and physical address. Source: HaveIBeenPwnedLatestBreaches January 13th, 2025 (6 months ago)
	Threat Actor Database Description: Threat Actor Database Source: DarkWebInformer January 12th, 2025 (6 months ago)
	Phishing texts trick Apple iMessage users into disabling protection Description: Cybercriminals are exploiting a trick to turn off Apple iMessage's built-in phishing protection for a text and trick users into re-enabling disabled phishing links. [...] Source: BleepingComputer January 12th, 2025 (6 months ago)
	Skillz (303) Claims to be Selling Shell Access to Habbo Description: Skillz (303) Claims to be Selling Shell Access to Habbo Source: DarkWebInformer January 12th, 2025 (6 months ago)
	Pastor who saw crypto project in his "dream" indicted for fraud Description: A pastor at a Pasco, Washington, church has been indicted on 26 counts of fraud for allegedly operating a cryptocurrency scam that defrauded investors of millions between 2021 and 2023. [...] Source: BleepingComputer January 12th, 2025 (6 months ago)
	SuperDraft - 300,187 breached accounts Description: In October 2024, the fantasy sports platform SuperDraft suffered a data breach that exposed over 300k customer records. The breach contained 24GB of data including email addresses, usernames, transactions, latitudes and longitudes, dates of birth and bcrypt password hashes. Source: HaveIBeenPwnedLatestBreaches January 12th, 2025 (6 months ago)