Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
Description: Financial technology giant Finastra is notifying victims of a data breach after their personal information was stolen by unknown attackers who first breached its systems in October 2024. [...]
February 17th, 2025 (2 months ago)
|
|
|
Description: In mid-2019, the e-commerce website Storenvy suffered a data breach that exposed millions of customer records. A portion of the breached records were subsequently posted to a hacking forum with cracked password hashes, whilst the entire corpus of 23M rows was put up for sale. The data contained 11M unique email addresses alongside usernames, IP addresses, the user's city, gender date of birth and original salted SHA-1 password hash.
February 16th, 2025 (2 months ago)
|
|
|
Description: Rapid7's vulnerability research team says attackers exploited a PostgreSQL security flaw as a zero-day to breach the network of privileged access management company BeyondTrust in December. [...]
February 14th, 2025 (2 months ago)
|
|
|
Description: China's Salt Typhoon hackers are still actively targeting telecoms worldwide and have breached more U.S. telecommunications providers via unpatched Cisco IOS XE network devices. [...]
February 14th, 2025 (2 months ago)
|
|
|
Description: Zacks Investment Research (Zacks) last year reportedly suffered another data breach that exposed sensitive information related to roughly 12 million accounts. [...]
February 13th, 2025 (2 months ago)
|
|
|
Description: A threat actor going by the name “Gloomer” has claimed responsibility for a significant data breach at OmniGPT, an AI aggregator platform. The hacker alleges that over 34 million user-chatbot interactions, 30,000 email addresses, and phone numbers have been leaked on BreachForums, a notorious hacking forum. Additionally, the breach is said to include links to …
The post OmniGPT Allegedly Breached: 34 Million User Messages Leaked appeared first on CyberInsider.
February 13th, 2025 (2 months ago)
|
|
|
Description: Zacks Investment Research has suffered a data breach exposing nearly 12 million user accounts, according to reports on a hacking forum. The breach, which allegedly occurred in June 2024, includes sensitive user information such as names, email addresses, physical addresses, phone numbers, usernames, IP addresses, and unsalted SHA-256 password hashes. This marks the second major …
The post Zacks Investment Suffers Data Breach Impacting 12M Accounts appeared first on CyberInsider.
February 13th, 2025 (2 months ago)
|
|
|
Description: In February 2025, the "doxing" website Doxbin was compromised by a group calling themselves "TOoDA" and the data dumped publicly. Included in the breach were 336k unique email addresses alongside usernames. The data was provided to HIBP by a source who requested it be attributed to "emo.rip".
February 13th, 2025 (2 months ago)
|
|
|
Description: In June 2024, the investment research company Zacks was allegedly breached, and data was later published to a popular hacking forum. This comes after a separate Zacks data breach confirmed by the organisation in 2023 with the subsequent breach disclosing millions of additional records representing a superset of data from the first incident. The 2024 breach included 12M unique email addresses along with IP and physical addresses, names, usernames, phone numbers and unsalted SHA-256 password hashes. Zacks did not respond to multiple attempts to contact them about the incident.
February 13th, 2025 (2 months ago)
|
|
|
Description: Decentralized money lender zkLend suffered a breach where threat actors exploited a smart contract flaw to steal 3,600 Ethereum, worth $9.5 million at the time. [...]
February 12th, 2025 (2 months ago)
|