CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

	Alleged Sale of Admin Panel Access to Two Government Websites Description: Alleged Sale of Admin Panel Access to Two Government Websites Source: DarkWebInformer May 26th, 2025 (25 days ago)
	🏴‍☠️ Devman has just published a new victim : Gobierno del Estado de Colima Description: TBD Source: Ransomware.live May 26th, 2025 (25 days ago)
	Marks & Spencer Cyberattack Fallout Continues as Retailer Projects $400M Loss Description: UK retail giant Marks & Spencer (M&S) has warned that the recent ransomware attack could cost the company as much as £300 million (approximately $400 million), with operational disruptions expected to last into July. The attack, claimed by the DragonForce ransomware gang, has affected food sales, created logistical challenges, and forced a temporary shutdown of … The post Marks & Spencer Cyberattack Fallout Continues as Retailer Projects $400M Loss appeared first on CyberInsider. Source: CyberInsider May 26th, 2025 (25 days ago)
	All Star Flooring, Inc. falls victim to EMBARGO Ransomware Description: All Star Flooring, Inc. falls victim to EMBARGO Ransomware Source: DarkWebInformer May 26th, 2025 (25 days ago)
	Alleged Data Breach of Istanbul Senin Description: Alleged Data Breach of Istanbul Senin Source: DarkWebInformer May 26th, 2025 (25 days ago)
CVE-2025-37992	net_sched: Flush gso_skb list too during ->change() Description: In the Linux kernel, the following vulnerability has been resolved: net_sched: Flush gso_skb list too during ->change() Previously, when reducing a qdisc's limit via the ->change() operation, only the main skb queue was trimmed, potentially leaving packets in the gso_skb list. This could result in NULL pointer dereference when we only check sch->limit against sch->q.qlen. This patch introduces a new helper, qdisc_dequeue_internal(), which ensures both the gso_skb list and the main queue are properly flushed when trimming excess packets. All relevant qdiscs (codel, fq, fq_codel, fq_pie, hhf, pie) are updated to use this helper in their ->change() routines. EPSS Score: 0.03% Source: CVE May 26th, 2025 (25 days ago)
	Alleged Sale of 100,000 Credit Cards Description: Alleged Sale of 100,000 Credit Cards Source: DarkWebInformer May 26th, 2025 (26 days ago)
	Detecting Malicious Security Product Bypass Techniques Description: "defendnot" bypasses Windows Defender using undocumented APIs. Learn detection strategies and robust defenses against this sophisticated evasion technique. Source: Huntress Blog May 26th, 2025 (26 days ago)
	Over 70 Malicious npm and VS Code Packages Found Stealing Data and Crypto Description: As many as 60 malicious npm packages have been discovered in the package registry with malicious functionality to harvest hostnames, IP addresses, DNS servers, and user directories to a Discord-controlled endpoint. The packages, published under three different accounts, come with an install‑time script that's triggered during npm install, Socket security researcher Kirill Boychenko said in a Source: TheHackerNews May 26th, 2025 (26 days ago)
	The CIA Secretly Ran a Star Wars Fan Site Description: The site, starwarsweb.net, was a covert CIA communications tool. It has pictures of Yoda and C-3PO on it. Source: 404 Media May 26th, 2025 (26 days ago)