CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

	Google fixes actively exploited FreeType flaw on Android 🚨 Marked as known exploited on May 6th, 2025 (about 2 months ago). Description: Google has released the May 2025 security updates for Android with fixes for 45 security flaws, including an actively exploited zero-click FreeType 2 code execution vulnerability. [...] Source: BleepingComputer May 6th, 2025 (about 2 months ago)
	Microsoft unveils new AI agents that can modify Windows settings Description: Today, Microsoft announced new Windows experiences for Copilot+ PCs, including AI agents that will make changing settings on your Windows computer easier. [...] Source: BleepingComputer May 6th, 2025 (about 2 months ago)
	Verizon DBIR 2025: Edge KEVs Are Increasingly Left Unpatched — and More Often Exploited in Breaches Description: Edge vulnerabilities are a critical and growing threat. The 2025 DBIR reveals an eightfold surge in exploitation, yet many remain unpatched despite immediate risk. Source: GreyNoise May 6th, 2025 (about 2 months ago)
	Multiple iHeartRadio stations breached in December Description: Several radio stations owned by iHeartMedia were breached in December, exposing Social Security numbers, financial information and more. Source: The Record May 6th, 2025 (about 2 months ago)
	Frequently Asked Questions about Vibe Coding Description: Vibe coding has attracted much attention in recent weeks with the release of many AI-driven tools. This blog answers some of the Frequently Asked Questions (FAQ) around vibe coding.BackgroundVibe coding is gaining popularity as large language models (LLMs) continue to mature and AI-driven development tools are becoming increasingly available. This blog answers Frequently Asked Questions (FAQ) regarding vibe coding.FAQWhat is “Vibe Coding”?The term ‘vibe coding’ was coined in a tweet from Andrej Karpathy. It describes a method of developing code with AI where the AI takes instruction, writes code and fixes errors, all with minimal review. This often includes blindly accepting whatever code the AI has written and whatever changes are suggested. Frequently it will also include usage of a speech-to-text application so the coder can talk directly to the AI.There's a new kind of coding I call "vibe coding", where you fully give in to the vibes, embrace exponentials, and forget that the code even exists. It's possible because the LLMs (e.g. Cursor Composer w Sonnet) are getting too good. Also I just talk to Composer with SuperWhisper…— Andrej Karpathy (@karpathy) February 2, 2025There’s currently some debate around the definition of ‘vibe coding.’ As initially coined, it means using AI tools for code development and blindly accepting what the AI creates without vetting it. There is some semantic diffusion, though, and it’s becoming synonymous with AI assisted code development whe... Source: Tenable Blog May 6th, 2025 (about 2 months ago)
	🏴‍☠️ Cloak has just published a new victim : **********li.com Source: Ransomware.live May 6th, 2025 (about 2 months ago)
	🏴‍☠️ Qilin has just published a new victim : NSS 長崎船舶装備株式会社 Description: Since our founding in 1943, our shipbuilding business has supported Japan's shipbuilding industry with interior construction work. We boast the long history and track record of excellence in the ship interior industry, with a national market ... Source: Ransomware.live May 6th, 2025 (about 2 months ago)
	New Acoustic Side-Channel Attack Infers Mouse Movement with 96% Accuracy Description: A new academic study demonstrates that even subtle sounds emitted by a computer mouse can leak sensitive information. Researchers from the University of Padua, TU Delft, and UC Irvine have shown that acoustic side-channel attacks (ASCAs) targeting mouse movements are feasible and pose real security risks. The research team designed a series of experiments to … The post New Acoustic Side-Channel Attack Infers Mouse Movement with 96% Accuracy appeared first on CyberInsider. Source: CyberInsider May 6th, 2025 (about 2 months ago)
	Microsoft Warns Default Helm Charts Could Leave Kubernetes Apps Exposed to Data Leaks Description: Microsoft has warned that using pre-made templates, such as out-of-the-box Helm charts, during Kubernetes deployments could open the door to misconfigurations and leak valuable data. "While these 'plug-and-play' options greatly simplify the setup process, they often prioritize ease of use over security," Michael Katchinskiy and Yossi Weizman from the Microsoft Defender for Cloud Research team Source: TheHackerNews May 6th, 2025 (about 2 months ago)
	Proactive threat hunting with Talos IR Description: Learn more about the framework Talos IR uses to conduct proactive threat hunts, and how we can help you stay one step ahead of emerging threats. Source: Cisco Talos Blog May 6th, 2025 (about 2 months ago)