CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

	Cryptocurrency wallet drainers stole $494 million in 2024 Description: Scammers stole $494 million worth of cryptocurrency in wallet drainer attacks last year that targeted more than 300,000 wallet addresses. [...] Source: BleepingComputer January 5th, 2025 (6 months ago)
	Windows 10 users urged to upgrade to avoid "security fiasco" Description: Cybersecurity firm ESET is urging Windows 10 users to upgrade to Windows 11 or Linux to avoid a "security fiasco" as the 10-year-old operating system nears the end of support in October 2025. [...] Source: BleepingComputer January 5th, 2025 (6 months ago)
	API Protocols Description: API Protocols Source: DarkWebInformer January 5th, 2025 (6 months ago)
	natohub Allegedly Has Leakeed 42,000 Records of Data Belonging to International Civil Aviation Organization (ICAO) Description: natohub Allegedly Has Leakeed 42,000 Records of Data Belonging to International Civil Aviation Organization (ICAO) Source: DarkWebInformer January 5th, 2025 (6 months ago)
	LulzSec Black Defaced the Website of Dentist Connected Description: LulzSec Black Defaced the Website of Dentist Connected Source: DarkWebInformer January 5th, 2025 (6 months ago)
	A Threat Actor Claims to have Leaked the Data of PhoneMondo Description: A Threat Actor Claims to have Leaked the Data of PhoneMondo Source: DarkWebInformer January 5th, 2025 (6 months ago)
	Funksec Ransomware has released v1.2 Description: Funksec Ransomware has released v1.2 Source: DarkWebInformer January 5th, 2025 (6 months ago)
CVE-2025-22390	An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32.0. A medium-severity vulnerability exists in the CMS due to insufficient... Description: An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32.0. A medium-severity vulnerability exists in the CMS due to insufficient enforcement of password complexity requirements. The application permits users to set passwords with a minimum length of 6 characters, lacking adequate complexity to resist modern attack techniques such as password spraying or offline password cracking. EPSS Score: 0.04% Source: CVE January 5th, 2025 (6 months ago)
CVE-2025-22389	An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32.0. A medium-severity vulnerability exists in the CMS, where the application... Description: An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32.0. A medium-severity vulnerability exists in the CMS, where the application does not properly validate uploaded files. This allows the upload of potentially malicious file types, including .docm .html. When accessed by application users, these files can be used to execute malicious actions or compromise users' systems. EPSS Score: 0.04% Source: CVE January 5th, 2025 (6 months ago)
CVE-2025-22388	An issue was discovered in Optimizely EPiServer.CMS.Core before 12.22.0. A high-severity Stored Cross-Site Scripting (XSS) vulnerability exists in... Description: An issue was discovered in Optimizely EPiServer.CMS.Core before 12.22.0. A high-severity Stored Cross-Site Scripting (XSS) vulnerability exists in the CMS, allowing malicious actors to inject and execute arbitrary JavaScript code, potentially compromising user data, escalating privileges, or executing unauthorized actions. The issue exists in multiple areas, including content editing, link management, and file uploads. EPSS Score: 0.04% Source: CVE January 5th, 2025 (6 months ago)