CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
🏴‍☠️ Akira has just published a new victim : Daniels & Taylor, P.C
Description: Daniels & Taylor, P.C. is a full-service law firm in Lawrencevill e that has been serving clients thorough Gwinnett County We are going to upload more than 70GB of essential corporate docu ments such as: a lot of detailed client personal information and documents (passports, medical records, drivers licenses), confide ntial court files, financial data of clients, NDAs, etc.
Source: Ransomware.live
May 6th, 2025 (about 2 months ago)
Alleged Data for Sale of 41 Million American Homeowners Data
Description: Alleged Data for Sale of 41 Million American Homeowners Data
Source: DarkWebInformer
May 6th, 2025 (about 2 months ago)
New Microsoft 365 outage impacts Teams and other services
Description: Microsoft is investigating a new Microsoft 365 outage affecting multiple services across North America, including the company's Teams collaboration platform. [...]
Source: BleepingComputer
May 6th, 2025 (about 2 months ago)
Hackers Exploit Samsung MagicINFO, GeoVision IoT Flaws to Deploy Mirai Botnet
🚨 Marked as known exploited on May 6th, 2025 (about 2 months ago).
Description: Threat actors have been observed actively exploiting security flaws in GeoVision end-of-life (EoL) Internet of Things (IoT) devices to corral them into a Mirai botnet for conducting distributed denial-of-service (DDoS) attacks. The activity, first observed by the Akamai Security Intelligence and Response Team (SIRT) in early April 2025, involves the exploitation of two operating system command
Source: TheHackerNews
May 6th, 2025 (about 2 months ago)

CVE-2025-4374
Quay: incorrect privilege assignment
Description: A flaw was found in Quay. When an organization acts as a proxy cache, and a user or robot pulls an image that hasn't been mirrored yet, they are granted "Admin" permissions on the newly created repository.

EPSS Score: 0.04%

Source: CVE
May 6th, 2025 (about 2 months ago)

CVE-2025-4373
Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar
Description: A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.

EPSS Score: 0.05%

Source: CVE
May 6th, 2025 (about 2 months ago)
CISA Warns 2 SonicWall Vulnerabilities Under Active Exploitation
🚨 Marked as known exploited on May 6th, 2025 (about 2 months ago).
Description: The vulnerabilities affect SonicWall's SMA devices for secure remote access, which have been heavily targeted by threat actors in the past.
Source: Dark Reading
May 6th, 2025 (about 2 months ago)
Alleged Data for Sale of Ciputra Group
Description: Alleged Data for Sale of Ciputra Group
Source: DarkWebInformer
May 6th, 2025 (about 2 months ago)
Elon Musk's Grok AI Will 'Remove Her Clothes' In Public, On X
Description: Elon Musk’s AI bot is undressing women on X.
Source: 404 Media
May 6th, 2025 (about 2 months ago)
🏴‍☠️ Ransomhouse has just published a new victim : Commune de Jemeppe-sur-Sambre
Description: Jemeppe-sur-Sambre is a municipality in Wallonia, located in the province of Namur, Belgium. It comprises several districts, including Balâtre, Ham-sur-Sambre, Jemeppe-sur-Sambre, Mornimont, Moustier-sur-Sambre, Onoz, Saint-Martin, and Spy. The municipality is notable for the Spy Cave, one of Europe's significant Paleolithic sites, and historical landmarks like Balâtre Castle and Mielmont Castle.
Source: Ransomware.live
May 6th, 2025 (about 2 months ago)