CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
Description: A killed man's AI avatar testifies in court; Meta is developing facial recognition for its smart glasses; and how AI is changing baseball.
May 14th, 2025 (about 1 month ago)
|
|
May 14th, 2025 (about 1 month ago)
|
|
Description: Sao Camilo Cachoeiro de Itapemirim The Sao Camilo Espirito Santo Educational Center was founded in 1969, under the name Instituto Cachoeirense de Ensino, in the city of Cachoeiro de Itapemirim, ES. More
May 14th, 2025 (about 1 month ago)
|
CVE-2025-26795 |
Description: Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Information into Log File vulnerability in Apache IoTDB JDBC driver.
This issue affects iotdb-jdbc: from 0.10.0 through 1.3.3, from 2.0.1-beta before 2.0.2.
Users are recommended to upgrade to version 2.0.2 and 1.3.4, which fix the issue.
EPSS Score: 0.04%
May 14th, 2025 (about 1 month ago)
|
|
Description: Cybersecurity researchers have discovered a new phishing campaign that's being used to distribute malware called Horabot targeting Windows users in Latin American countries like Mexico, Guatemala, Colombia, Peru, Chile, and Argentina.
The campaign is "using crafted emails that impersonate invoices or financial documents to trick victims into opening malicious attachments and can steal email
May 14th, 2025 (about 1 month ago)
|
|
Description: Organizations across industries are experiencing significant escalations in cyberattacks, particularly targeting critical infrastructure providers and cloud-based enterprises. Verizon’s recently released 2025 Data Breach Investigations Report found an 18% YoY increase in confirmed breaches, with the exploitation of vulnerabilities as an initial access step growing by 34%.
As attacks rise
May 14th, 2025 (about 1 month ago)
|
|
Description: A cyber espionage group known as Earth Ammit has been linked to two related but distinct campaigns from 2023 to 2024 targeting various entities in Taiwan and South Korea, including military, satellite, heavy industry, media, technology, software services, and healthcare sectors.
Cybersecurity firm Trend Micro said the first wave, codenamed VENOM, mainly targeted software service providers, while
May 14th, 2025 (about 1 month ago)
|
|
Description: A sweeping new study by Citizen Lab and Princeton University reveals that nearly half of the most popular Android apps on Xiaomi's Mi Store use insecure, proprietary cryptographic protocols instead of industry-standard TLS, exposing users to surveillance and data theft. Xiaomi Mi Store falls short under scrutiny The project, dubbed WireWatch, analyzed 1,699 Android apps …
The post Xiaomi Store Apps Use Weak Home-Rolled Encryption Enabling Surveillance appeared first on CyberInsider.
May 14th, 2025 (about 1 month ago)
|
|
Description: A new DarkCloud Stealer campaign is using AutoIt obfuscation for malware delivery. The attack chain involves phishing emails, RAR files and multistage payloads.
The post DarkCloud Stealer: Comprehensive Analysis of a New Attack Chain That Employs AutoIt appeared first on Unit 42.
May 14th, 2025 (about 1 month ago)
|
|
May 14th, 2025 (about 1 month ago)
|