Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
"Shonen Jump+" App for Android fails to restrict custom URL schemes properly
Description: "Shonen Jump+" App for Android provided by SHUEISHA INC. fails to restrict custom URL schemes properly.
Source: Japan Vulnerability Notes (JVN)
December 18th, 2024 (6 months ago)
Malicious ads push Lumma infostealer via fake CAPTCHA pages
Description: A large-scale malvertising campaign distributed the Lumma Stealer info-stealing malware through fake CAPTCHA verification pages that prompt users to run PowerShell commands to verify they are not a bot. [...]
Source: BleepingComputer
December 18th, 2024 (6 months ago)
Windows kernel bug now exploited in attacks to gain SYSTEM privileges
Description: CISA has warned U.S. federal agencies to secure their systems against ongoing attacks targeting a high-severity Windows kernel vulnerability. [...]
Source: BleepingComputer
December 18th, 2024 (6 months ago)
Kali Linux 2024.4 released with 14 new tools, deprecates some features
Description: Kali Linux has released version 2024.4, the fourth and final version of 2024, and it is now available with fourteen new tools, numerous improvements, and deprecates some features. [...]
Source: BleepingComputer
December 18th, 2024 (6 months ago)
Texas Tech University System data breach impacts 1.4 million patients
Description: The Texas Tech University Health Sciences Center and its El Paso counterpart suffered a cyberattack that disrupted computer systems and applications, potentially exposing the data of 1.4 million patients. [...]
Source: BleepingComputer
December 18th, 2024 (6 months ago)
FBI spots HiatusRAT malware attacks targeting web cameras, DVRs
Description: The FBI warned today that new HiatusRAT malware attacks are now scanning for and infecting vulnerable web cameras and DVRs that are exposed online. [...]
Source: BleepingComputer
December 18th, 2024 (6 months ago)
Might need a mass password reset one day? Read this first.
Description: Organizations are often caught off-guard when a data breaches occurs, forcing them to quickly perform mass password resets Learn from Specops Software about some of the common mass password reset scenarios and the challenges you may face. [...]
Source: BleepingComputer
December 18th, 2024 (6 months ago)
Over 25,000 SonicWall VPN Firewalls exposed to critical flaws
Description: Over 25,000 publicly accessible SonicWall SSLVPN devices are vulnerable to critical severity flaws, with 20,000 using a SonicOS/OSX firmware version that the vendor no longer supports. [...]
Source: BleepingComputer
December 18th, 2024 (6 months ago)
Ireland fines Meta $264 million over 2018 Facebook data breach
Description: The Irish Data Protection Commission (DPC) fined Meta €251 million ($263.6M) over General Data Protection Regulation (GDPR) violations arising from a 2018 personal data breach impacting 29 million Facebook accounts. [...]
Source: BleepingComputer
December 18th, 2024 (6 months ago)
CISA orders federal agencies to secure Microsoft 365 tenants
Description: ​CISA has issued this year's first binding operational directive (BOD 25-01), ordering federal civilian agencies to secure their Microsoft 365 cloud environments by implementing a list of required configuration baselines. [...]
Source: BleepingComputer
December 18th, 2024 (6 months ago)