Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Microsoft isn't fixing 8-year-old shortcut exploit abused for spying
Source: TheRegister
March 18th, 2025 (3 months ago)
Unpatched Windows Zero-Day Flaw Exploited by 11 State-Sponsored Threat Groups Since 2017
Description: An unpatched security flaw impacting Microsoft Windows has been exploited by 11 state-sponsored groups from China, Iran, North Korea, and Russia as part of data theft, espionage, and financially motivated campaigns that date back to 2017. The zero-day vulnerability, tracked by Trend Micro's Zero Day Initiative (ZDI) as ZDI-CAN-25373, refers to an issue that allows bad actors to execute hidden
Source: TheHackerNews
March 18th, 2025 (3 months ago)
Microsoft Uncovers New Stealthy Malware ‘StilachiRAT’ Targeting User Data
Description: Microsoft security researchers have identified a new remote access trojan (RAT) named StilachiRAT, which exhibits advanced evasion techniques and data exfiltration capabilities. The malware, discovered in November 2024, can steal credentials, monitor Remote Desktop Protocol (RDP) sessions, and extract cryptocurrency wallet information, posing a significant threat to targeted systems. The Microsoft Incident Response team uncovered … The post Microsoft Uncovers New Stealthy Malware ‘StilachiRAT’ Targeting User Data appeared first on CyberInsider.
Source: CyberInsider
March 18th, 2025 (3 months ago)
Microsoft Warns of StilachiRAT: A Stealthy RAT Targeting Credentials and Crypto Wallets
Description: Microsoft is calling attention to a novel remote access trojan (RAT) named StilachiRAT that it said employs advanced techniques to sidestep detection and persist within target environments with an ultimate aim to steal sensitive data. The malware contains capabilities to "steal information from the target system, such as credentials stored in the browser, digital wallet information, data stored
Source: TheHackerNews
March 18th, 2025 (3 months ago)
OAuth Attacks Target Microsoft 365, GitHub
Description: In a cyber twist, attackers behind two of the campaigns are using the apps to redirect users to phishing and malware distribution sites.
Source: Dark Reading
March 17th, 2025 (3 months ago)
Microsoft HPC Node Installed (Linux)
Description: Nessus Plugin ID 232833 with Info Severity Synopsis Microsoft HPC Node is installed on the remote Linux host. Description Microsoft HPC Node, an agent for cluster computing, is installed on the remote Linux host. Solution null Read more at https://www.tenable.com/plugins/nessus/232833
Source: Tenable Plugins
March 17th, 2025 (3 months ago)
Microsoft: New RAT malware used for crypto theft, reconnaissance
Description: ​Microsoft has discovered a new remote access trojan (RAT) that employs "sophisticated techniques" to avoid detection, ensure persistence, and extract sensitive information data. [...]
Source: BleepingComputer
March 17th, 2025 (3 months ago)
Alleged Sale of 1-Day Remote Code Execution (RCE) Exploit Targeting Microsoft Windows
Description: Alleged Sale of 1-Day Remote Code Execution (RCE) Exploit Targeting Microsoft Windows
Source: DarkWebInformer
March 17th, 2025 (3 months ago)
Microsoft: March Windows updates mistakenly uninstall Copilot
Description: ​Microsoft says the March 2025 Windows cumulative updates automatically and mistakenly remove the AI-powered Copilot digital assistant from some Windows 10 and Windows 11 systems. [...]
Source: BleepingComputer
March 17th, 2025 (3 months ago)
Microsoft wouldn't look at a bug report without a video. Researcher maliciously complied
Source: TheRegister
March 17th, 2025 (3 months ago)