CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
'PoisonSeed' Attacker Skates Around FIDO Keys
Description: Researchers discovered a novel phishing attack that serves the victim a QR code as part of supposed multifactor authentication (MFA), in order to get around FIDO-based protections.
Source: Dark Reading
July 18th, 2025 (1 day ago)
Microsoft mistakenly tags Windows Firewall error log bug as fixed
Description: Microsoft has mistakenly tagged an ongoing Windows Firewall error message bug as fixed in recent updates, stating that they are still working on a resolution. [...]
Source: BleepingComputer
July 18th, 2025 (1 day ago)
UK ties GRU to stealthy Microsoft 365 credential-stealing malware
Description: The UK National Cyber Security Centre (NCSC) has formally attributed 'Authentic Antics' espionage malware attacks to APT28 (Fancy Bear), threat actor already linked to Russia's military intelligence service (GRU). [...]
Source: BleepingComputer
July 18th, 2025 (1 day ago)

CVE-2025-50585
StudentManage v1.0 was discovered to contain a SQL injection vulnerability via the component /admin/adminStudentUrl.
Description: StudentManage v1.0 was discovered to contain a SQL injection vulnerability via the component /admin/adminStudentUrl.

EPSS Score: 0.01%

Source: CVE
July 18th, 2025 (1 day ago)
UNG0002 Group Hits China, Hong Kong, Pakistan Using LNK Files and RATs in Twin Campaigns
Description: Multiple sectors in China, Hong Kong, and Pakistan have become the target of a threat activity cluster tracked as UNG0002 (aka Unknown Group 0002) as part of a broader cyber espionage campaign. "This threat entity demonstrates a strong preference for using shortcut files (LNK), VBScript, and post-exploitation tools such as Cobalt Strike and Metasploit, while consistently deploying CV-themed
Source: TheHackerNews
July 18th, 2025 (1 day ago)
China's Massistant Tool Secretly Extracts SMS, GPS Data, and Images From Confiscated Phones
Description: Cybersecurity researchers have shed light on a mobile forensics tool called Massistant that's used by law enforcement authorities in China to gather information from seized mobile devices. The hacking tool, believed to be a successor of MFSocket, is developed by a Chinese company named SDIC Intelligence Xiamen Information Co., Ltd., which was formerly known as Meiya Pico. It specializes in the
Source: TheHackerNews
July 18th, 2025 (1 day ago)
🏴‍☠️ Safepay has just published a new victim : norpak.com
Description: [AI generated] Norpak is a leading provider of industrial packaging solutions, offering a wide range of products including stretch films, strapping, tapes, protective packaging, food packaging, and machinery. They pride themselves on delivering superior quality products and services for every packaging need. In operation for over 35 years, they cater to both small and large-scale businesses.
Source: Ransomware.live
July 18th, 2025 (1 day ago)
New ChatGPT o3-alpha model hints at coding upgrade
Description: ChatGPT's o3 is OpenAI's best model to date because it features reasoning, and it might get even better in the next update. [...]
Source: BleepingComputer
July 18th, 2025 (1 day ago)
Japanese police release decryptor for Phobos ransomware after February takedown
Description: Victims of Phobos ransomware and its 8Base offshoot now have access to a decryptor released by Japan law enforcement and backed by the FBI and European officials.
Source: The Record
July 18th, 2025 (2 days ago)
Russian alcohol retailer WineLab closes stores after ransomware attack
Description: WineLab, the retail store of the largest alcohol company in Russia, has closed its stores following a cyberattack that is impacting its operations and causing purchase problems to its customers. [...]
Source: BleepingComputer
July 18th, 2025 (2 days ago)