CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

	SysAid Patches 4 Critical Flaws Enabling Pre-Auth RCE in On-Premise Version Description: Cybersecurity researchers have disclosed multiple security flaw in the on-premise version of SysAid IT support software that could be exploited to achieve pre-authenticated remote code execution with elevated privileges. The vulnerabilities, tracked as CVE-2025-2775, CVE-2025-2776, and CVE-2025-2777, have all been described as XML External Entity (XXE) injections, which occur when an attacker is EPSS Score: 8.12% Source: TheHackerNews May 7th, 2025 (about 2 months ago)
	Poland accuses Russia of ‘unprecedented’ interference ahead of presidential election Description: "There is no other country in the European Union that faces similar threats" from Russia-linked attackers, says Poland's digital affairs minister, Krzysztof Gawkowski. Source: The Record May 7th, 2025 (about 2 months ago)
	Police takes down six DDoS-for-hire services, arrests admins Description: Polish authorities have detained four suspects linked to six DDoS-for-hire platforms, believed to have facilitated thousands of attacks targeting schools, government services, businesses, and gaming platforms worldwide since 2022. [...] Source: BleepingComputer May 7th, 2025 (about 2 months ago)
	Cyberattack at Masimo Disrupted Manufacturing and Order Fulfillment Description: Medical technology firm Masimo Corporation has disclosed a cybersecurity incident that has disrupted manufacturing output and delayed customer order fulfillment. According to an 8-K filing submitted to the U.S. Securities and Exchange Commission yesterday, the company detected unauthorized activity on its on-premise network on April 27, prompting immediate containment measures and the activation of its … The post Cyberattack at Masimo Disrupted Manufacturing and Order Fulfillment appeared first on CyberInsider. Source: CyberInsider May 7th, 2025 (about 2 months ago)
	Curl project founder snaps over deluge of time-sucking AI slop bug reports Source: TheRegister May 7th, 2025 (about 2 months ago)
	Iranian Cyber Actors Impersonate Model Agency in Suspected Espionage Operation Description: A suspected Iranian espionage campaign impersonated a model agency site for data collection, including fictitious models as possible social engineering lures. The post Iranian Cyber Actors Impersonate Model Agency in Suspected Espionage Operation appeared first on Unit 42. Source: Palo Alto Unit42 May 7th, 2025 (about 2 months ago)
	Microsoft: April updates cause Windows Server auth issues Description: Microsoft says the April 2025 security updates are causing authentication issues on some Windows Server 2025 domain controllers. [...] Source: BleepingComputer May 7th, 2025 (about 2 months ago)
	SysOwned, Your Friendly Support Ticket - SysAid On-Premise Pre-Auth RCE Chain (CVE-2025-2775 And Friends) Description: It’s… another week, and another vendor who is apparently experienced with ransomware gangs but yet struggles with email.In what we've seen others term "the watchTowr treatment", we are once again (surprise, surprise) disclosing vulnerability research that allowed us to gain pre-authenticated Remote EPSS Score: 8.12% Source: Watchtower Labs May 7th, 2025 (about 2 months ago)
	🏴‍☠️ Orca has just published a new victim : Transport Lutztulln Description: Lutz GmbH, operating under the name Transport Lutz Tulln, is a privately held... Source: Ransomware.live May 7th, 2025 (about 2 months ago)
	Researchers Uncover Malware in Fake Discord PyPI Package Downloaded 11,500+ Times Description: Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) repository that masquerades as a seemingly harmless Discord-related utility but incorporates a remote access trojan. The package in question is discordpydebug, which was uploaded to PyPI on March 21, 2022. It has been downloaded 11,574 times and continues to be available on the open-source registry. Source: TheHackerNews May 7th, 2025 (about 2 months ago)