CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-4416	Events Log Track - Moderately critical - Denial of Service - SA-CONTRIB-2025-059 Description: Allocation of Resources Without Limits or Throttling vulnerability in Drupal Events Log Track allows Excessive Allocation.This issue affects Events Log Track: from 0.0.0 before 3.1.11, from 4.0.0 before 4.0.2. EPSS Score: 0.05% SSVC Exploitation: none Source: CVE May 21st, 2025 (about 1 month ago)
CVE-2025-27997	An issue in Blizzard Battle.net v2.40.0.15267 allows attackers to escalate privileges via placing a crafted shell script or executable into the... Description: An issue in Blizzard Battle.net v2.40.0.15267 allows attackers to escalate privileges via placing a crafted shell script or executable into the C:\ProgramData directory. EPSS Score: 0.02% Source: CVE May 21st, 2025 (about 1 month ago)
	3AM ransomware uses spoofed IT calls, email bombing to breach networks Description: A 3AM ransomware affiliate is conducting highly targeted attacks using email bombing and spoofed IT support calls to socially engineer employees into giving credentials for remote access to corporate systems. [...] Source: BleepingComputer May 21st, 2025 (about 1 month ago)
	[remote] Remote Keyboard Desktop 1.0.1 - Remote Code Execution (RCE) Description: Remote Keyboard Desktop 1.0.1 - Remote Code Execution (RCE) Source: ExploitDB May 21st, 2025 (about 1 month ago)
	Sweden Expands Anti-Sex Work Law to Criminalize Paying for Custom OnlyFans Clips and Camming Description: The Nordic Model criminalizes buyers of sex in multiple European countries (and Maine). Sweden just voted to expand its reach to the internet. Source: 404 Media May 21st, 2025 (about 1 month ago)
	Alleged Sale of Unauthorized Admin Access to an Unidentified WordPress E-Commerce Platform in Israel Description: Alleged Sale of Unauthorized Admin Access to an Unidentified WordPress E-Commerce Platform in Israel Source: DarkWebInformer May 21st, 2025 (about 1 month ago)
	Nearly 70,000 impacted by Coinbase breach involving $20 million ransom demand Description: In documents filed with regulators in Maine on Tuesday, Coinbase said the information leaked included details like photos of passports and government IDs, as well as account information such as balances and transaction history. Source: The Record May 21st, 2025 (about 1 month ago)
	Microsoft Disrupts Lumma Stealer Malware in Global Takedown Operation Description: Microsoft has dealt a major blow to the cybercrime ecosystem by dismantling critical infrastructure tied to Lumma Stealer, a prominent infostealer malware-as-a-service (MaaS) that has enabled widespread credential theft and financial fraud globally. The operation follows a legal filing by Microsoft's Digital Crimes Unit (DCU) in the U.S. District Court for the Northern District of … The post Microsoft Disrupts Lumma Stealer Malware in Global Takedown Operation appeared first on CyberInsider. Source: CyberInsider May 21st, 2025 (about 1 month ago)
	2025 Managed ITDR Report: The Rise of Identity Threats in Cybersecurity Description: Why Huntress’ 2025 Managed ITDR Report should be required reading for every security team. Source: Huntress Blog May 21st, 2025 (about 1 month ago)
	Defeated Romanian far-right candidate calls for court to annul election over alleged interference Description: George Simion, the leader of the Alliance for the Union of Romanians (AUR), claimed that external forces had attempted to influence the outcome. Source: The Record May 21st, 2025 (about 1 month ago)