CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
🏴‍☠️ Qilin has just published a new victim : jbanksdesign.com
Description: All data of this company will be available for download on 16.05.2025. J. Banks Design is a full-service interior design firm with over 55 employees, a leader in residential and hospitality design. For over thirty-six years, our certified des ...
Source: Ransomware.live
May 6th, 2025 (about 2 months ago)
🏴‍☠️ Qilin has just published a new victim : gslelectric.com
Description: All data of this company will be available for download on 16.05.2025. GSL Electric Inc. performs a wide range of projects for public and private clients, including commercial, industrial, institutional, manufacturing, utility, transmission l ...
Source: Ransomware.live
May 6th, 2025 (about 2 months ago)
🏴‍☠️ Qilin has just published a new victim : clinpath.com
Description: All data of this company will be available for download on 16.05.2025.Founded 50 years ago, the breadth and depth of expertise of Clin-Path associates is unmatched statewide. Professional and laboratory services are provided to hospitals, phy ...
Source: Ransomware.live
May 6th, 2025 (about 2 months ago)
🏴‍☠️ Qilin has just published a new victim : mdgny.com
Description: All data of this company will be available for download on 16.05.2025.MDG Design & Construction is a leading affordable housing-only contracting and development firm specializing in the rehabilitation and new construction of affordable reside ...
Source: Ransomware.live
May 6th, 2025 (about 2 months ago)
Ransomware Attack Update for the 6th of May 2025
Description: Ransomware Attack Update for the 6th of May 2025
Source: DarkWebInformer
May 6th, 2025 (about 2 months ago)

CVE-2025-44073
SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component admin_comment_news.php.
Description: SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component admin_comment_news.php.

EPSS Score: 0.04%

Source: CVE
May 6th, 2025 (about 2 months ago)
Computacenter IT guy let girlfriend into Deutsche Bank server rooms, says fired whistleblower
Source: TheRegister
May 6th, 2025 (about 2 months ago)
'Easily Exploitable' Langflow Vulnerability Requires Immediate Patching
Description: The vulnerability, which has a CVSS score of 9.8, is under attack and allows threat actors to remotely execute arbitrary commands on servers running the agentic AI builder.
Source: Dark Reading
May 6th, 2025 (about 2 months ago)

CVE-2024-12225
Io.quarkus:quarkus-security-webauthn: quarkus webauthn unexpected authentication bypass
Description: A vulnerability was found in Quarkus in the quarkus-security-webauthn module. The Quarkus WebAuthn module publishes default REST endpoints for registering and logging users in while allowing developers to provide custom REST endpoints. When developers provide custom REST endpoints, the default endpoints remain accessible, potentially allowing attackers to obtain a login cookie that has no corresponding user in the Quarkus application or, depending on how the application is written, could correspond to an existing user that has no relation with the current attacker, allowing anyone to log in as an existing user by just knowing that user's user name.

EPSS Score: 0.04%

Source: CVE
May 6th, 2025 (about 2 months ago)
Lawmakers grill Noem over CISA funding cuts, demand Trump cyber plan
Description: House members pushed Homeland Security Secretary Kristi Noem for answers about a large proposed cut to CISA spending and a promised national cybersecurity plan from the White House.
Source: The Record
May 6th, 2025 (about 2 months ago)