Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
March 25th, 2025 (2 months ago)
|
|
Description: In March 2025, a phishing attack successfully gained access to Troy Hunt's Mailchimp account and automatically exported a list of people who had subscribed to the newsletter for his personal blog. The exported list contained 16k email addresses and other data automatically collected by Mailchimp including IP address and a derived latitude, longitude and time zone.
March 25th, 2025 (2 months ago)
|
|
Description: A major telecommunications company located in Asia was allegedly breached by Chinese state-sponsored hackers who spent over four years inside its systems, according to a new report from incident response firm Sygnia.
The cybersecurity company is tracking the activity under the name Weaver Ant, describing the threat actor as stealthy and highly persistent. The name of the telecom provider was not
March 25th, 2025 (2 months ago)
|
|
Description: Troy Hunt, the cybersecurity expert behind the data breach notification platform Have I Been Pwned, has revealed that a phishing attack successfully compromised his Mailchimp account, exposing the email addresses of over 16,000 subscribers. Hunt himself detailed the breach in a blog post published today. The incident unfolded in the early hours while he was …
The post Have I Been Pwned Creator Troy Hunt Had Mailchimp Account Phished appeared first on CyberInsider.
March 25th, 2025 (2 months ago)
|
|
Description: Alleged Data Breach of Tata AIG General Insurance Company Limited
March 24th, 2025 (3 months ago)
|
|
Description: Tokyo Electron U.S. Holdings, Inc., the American arm of Japanese semiconductor equipment giant Tokyo Electron Limited (TEL), has disclosed a cyber incident involving unauthorized access to internal systems and the exfiltration of employee business email credentials. While the scope of the breach appears limited, the incident underscores persistent risks even among top-tier global tech firms. …
The post Semiconductors Giant Tokyo Electron U.S. Suffers Data Breach appeared first on CyberInsider.
March 24th, 2025 (3 months ago)
|
|
Description: A threat actor posted data on Breachforums from an alleged supply-chain attack that affected more than 140K tenants, claiming to have compromised the cloud via a zero-day flaw in WebLogic, researchers say.
March 24th, 2025 (3 months ago)
|
|
Description: A hacker hijacked New York University’s (NYU) website on Saturday morning, leaking highly sensitive admissions data for more than 3 million applicants spanning over three decades. The breach, which lasted approximately two hours, also included accusations that NYU has continued to factor race into its admissions decisions despite the U.S. Supreme Court’s 2023 ban on …
The post NYU Website Hack Leads to the Exposure of 3 Million Applicants’ Data appeared first on CyberInsider.
March 24th, 2025 (3 months ago)
|
|
Description: The supply chain attack involving the GitHub Action "tj-actions/changed-files" started as a highly-targeted attack against one of Coinbase's open-source projects, before evolving into something more widespread in scope.
"The payload was focused on exploiting the public CI/CD flow of one of their open source projects – agentkit, probably with the purpose of leveraging it for further compromises,"
March 23rd, 2025 (3 months ago)
|
|
Description: Alleged Data Breach of Empik.com Exposes 24.7 Million User Records
March 22nd, 2025 (3 months ago)
|