Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Cryptocurrency Miner and Clipper Malware Spread via SourceForge Cracked Software Listings
Description: Threat actors have been observed distributing malicious payloads such as cryptocurrency miner and clipper malware via SourceForge, a popular software hosting service, under the guise of cracked versions of legitimate applications like Microsoft Office. "One such project, officepackage, on the main website sourceforge.net, appears harmless enough, containing Microsoft Office add-ins copied from a
Source: TheHackerNews
April 8th, 2025 (about 2 months ago)
EncryptHub's dual life: Cybercriminal vs Windows bug-bounty researcher
Description: EncryptHub, a notorious threat actor linked to breaches at 618 organizations, is believed to have reported two Windows zero-day vulnerabilities to Microsoft, revealing a conflicted figure straddling the line between cybercrime and security research. [...]
Source: BleepingComputer
April 7th, 2025 (2 months ago)
Microsoft delays WSUS driver sync deprecation indefinitely
Description: Microsoft announced today that, based on customer feedback, it will indefinitely delay removing driver synchronization in Windows Server Update Services (WSUS). [...]
Source: BleepingComputer
April 7th, 2025 (2 months ago)
Malicious VSCode extensions infect Windows with cryptominers
Description: Nine VSCode extensions on Microsoft's Visual Studio Code Marketplace pose as legitimate development tools while infecting users with the XMRig cryptominer to mine Ethereum and Monero. [...]
Source: BleepingComputer
April 7th, 2025 (2 months ago)
Windows 11 24H2 blocked on PCs with code-obfuscation driver BSODs
Description: Microsoft has introduced a new Windows 11 24H2 safeguard hold for systems running security or enterprise software using SenseShield Technology's sprotect.sys driver. [...]
Source: BleepingComputer
April 7th, 2025 (2 months ago)
Microsoft Credits EncryptHub, Hacker Behind 618+ Breaches, for Disclosing Windows Flaws
Description: A likely lone wolf actor behind the EncryptHub persona was acknowledged by Microsoft for discovering and reporting two security flaws in Windows last month, painting a picture of a "conflicted" individual straddling a legitimate career in cybersecurity and pursuing cybercrime. In a new extensive analysis published by Outpost24 KrakenLabs, the Swedish security company unmasked the up-and-coming
Source: TheHackerNews
April 5th, 2025 (2 months ago)
Microsoft starts testing Windows 11 taskbar icon scaling
Description: ​Microsoft is testing a new taskbar icon scaling feature that automatically scales down Windows taskbar icons to show more apps when it gets too overcrowded. [...]
Source: BleepingComputer
April 3rd, 2025 (2 months ago)
Microsoft Warns of Tax-Themed Email Attacks Using PDFs and QR Codes to Deliver Malware
Description: Microsoft is warning of several phishing campaigns that are leveraging tax-related themes to deploy malware and steal credentials. "These campaigns notably use redirection methods such as URL shorteners and QR codes contained in malicious attachments and abuse legitimate services like file-hosting services and business profile pages to avoid detection," Microsoft said in a report shared with The
Source: TheHackerNews
April 3rd, 2025 (2 months ago)
Microsoft adds hotpatching support to Windows 11 Enterprise
Description: Microsoft has announced that hotpatch updates are now available for business customers using Windows 11 Enterprise 24H2 on x64 (AMD/Intel) systems, starting today. [...]
Source: BleepingComputer
April 2nd, 2025 (2 months ago)
New Windows 11 trick lets you bypass Microsoft Account requirement
Description: A previously unknown trick lets you easily bypass using a Microsoft Account in Windows 11, just as Microsoft tries to make it harder to use local accounts. [...]
Source: BleepingComputer
April 1st, 2025 (2 months ago)