Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CentreStack RCE exploited as zero-day to breach file sharing servers
Description: Hackers exploited a vulnerability in Gladinet CentreStack's secure file-sharing software as a zero-day since March to breach storage servers [...]
Source: BleepingComputer
April 9th, 2025 (about 2 months ago)
US banking regulator reports on ‘major’ cyber incident involving senior officials’ emails
Description: The U.S. Office of the Comptroller of the Currency told Congress that a breach of its email systems reported in February involved "highly sensitive information" in the accounts of high-ranking officials.
Source: The Record
April 9th, 2025 (about 2 months ago)
Germany links cyberattack on research group to Russian state-backed hackers
Description: The German Association for Eastern European Studies (DGO) said the attack at the end of March targeted email systems, bypassing security measures put in place after another recent breach with suspected Russian links.
Source: The Record
April 9th, 2025 (about 2 months ago)
Stronger Cloud Security in Five: The Importance of Cloud Configuration Security
Description: Mismanaging configurations in your multi-cloud environment can put you at an elevated risk for cyber attacks. In the first installment of our “Stronger Cloud Security in Five” blog series, we outline five best practices for boosting your cloud configuration management.A misconfigured web application firewall. A publicly accessible and unprotected cloud database. An overprivileged user identity. Lax access control to containers. Unchanged default credentials.Those are just some of the many configuration oversights and mistakes that attackers can leverage to breach your cloud environment, hijack user accounts, steal data and more. In addition, having misconfigured cloud resources puts your organization on the wrong side of regulatory compliance, and thus open to costly penalties, fines and litigation. In a vacuum, it would seem simple to button up most cloud misconfigurations. Surely, we can all agree that leaving an Amazon Web Services (AWS) Simple Storage Service (S3) storage bucket open to anyone on the internet is a no-no. Yet, the “Tenable Cloud Risk Report 2024,” based on an analysis of millions of cloud resources scanned through the Tenable Cloud Security platform, found that 74% of organizations have publicly exposed cloud storage.The reality is that cloud misconfigurations are prevalent. In fact, misconfigurations and inadequate change controls ranked first on the Cloud Security Alliance’s “Top Threats to Cloud Computing 2024" report. “Given a cloud’s persistent net...
Source: Tenable Blog
April 9th, 2025 (about 2 months ago)
Oracle Sends “Not a Breach” Notices to Customers Following Data Exposure
Description: Oracle has begun quietly notifying customers of a recent cybersecurity incident — while simultaneously denying it qualifies as a data breach. The notices, a sample of which was leaked by security researcher Kevin Beaumont on BlueSky, mark the first formal communication from the tech giant to customers impacted by the leak of millions of records … The post Oracle Sends “Not a Breach” Notices to Customers Following Data Exposure appeared first on CyberInsider.
Source: CyberInsider
April 9th, 2025 (about 2 months ago)
Alleged Data Breach of Philippines PII
Description: Alleged Data Breach of Philippines PII
Source: DarkWebInformer
April 8th, 2025 (2 months ago)
Boulanger - 966,924 breached accounts
Description: In September 2024, French electronics retailer Boulanger suffered a data breach that exposed over 27M rows of data. The data included 967k unique email addresses along with names, physical addresses, phone numbers and latitude and longitude. The data was later publicly published to a popular hacking forum.
Source: HaveIBeenPwnedLatestBreaches
April 8th, 2025 (2 months ago)
Hackers lurked in Treasury OCC’s systems since June 2023 breach
Description: Unknown attackers who breached the Treasury's Office of the Comptroller of the Currency (OCC) in June 2023 gained access to over 150,000 emails. [...]
Source: BleepingComputer
April 8th, 2025 (2 months ago)
QSC Employee Database Allegedly Leaked on Breach Forums
Description: QSC Employee Database Allegedly Leaked on Breach Forums
Source: DarkWebInformer
April 8th, 2025 (2 months ago)
How To Implement Just-In-Time Access: Best Practices and Lessons Learned
Description: With the just-In-time (JIT) access control method, privileges are granted temporarily on an as-needed basis. This reduces static entitlements, lowering the risk of compromised accounts and preventing privilege creep. In this blog, we’ll share how we implemented JIT access internally at Tenable using Tenable Cloud Security, and offer recommendations we hope you’ll find useful.Just-in-time access (JIT) is a valuable security practice that allows organizations to limit the time and the scope of users’ access to resources, such as applications and systems. However, implementing JIT access successfully is challenging, as it requires careful planning and ample communication between the security team and all other departments. At Tenable, we went through this process. Here, we share the lessons we learned and the best practices we adopted, as well as explain how you can leverage Tenable Cloud Security when implementing JIT access.Benefits of JIT accessThe most notable benefit of just-in-time (JIT) provisioning is its ability to restrict access duration. By granting permissions only upon request, JIT can reduce identity and entitlement risks by 75% or more in most scenarios. For example, a user who requests permissions for a 40-hour work week will not have access during the remaining 128 hours, thereby significantly minimizing the user’s identity-breach risks.Another significant risk reduction made possible by JIT is the prevention of privilege creep. Over time, users tend to accu...
Source: Tenable Blog
April 8th, 2025 (2 months ago)