Threat and Vulnerability Intelligence Database

Example Searches:

	🏴‍☠️ Direwolf has just published a new victim : YIEH UNITED STEEL CORP Description: Yieh United Steel Corp is a company that operates in the Minerals & Mining industry Source: Ransomware.live June 4th, 2025 (about 10 hours ago)
	FBI: Play ransomware breached 900 victims, including critical orgs Description: In an update to a joint advisory with CISA and the Australian Cyber Security Centre, the FBI said that the Play ransomware gang had breached roughly 900 organizations as of May 2025, three times the number of victims reported in October 2023. [...] Source: BleepingComputer June 4th, 2025 (about 11 hours ago)
	Ransomware scum leak patient data after disrupting chemo treatments at Kettering Source: TheRegister June 4th, 2025 (about 11 hours ago)
	Hacker arrested for breaching 5,000 hosting accounts to mine crypto Description: The Ukrainian police arrested a 35-year-old hacker who breached 5,000 accounts at an international hosting company and used them to mine cryptocurrency, resulting in $4.5 million in damages. [...] Source: BleepingComputer June 4th, 2025 (about 11 hours ago)
	Cisco warns of ISE and CCP flaws with public exploit code Description: Cisco has released patches to address three vulnerabilities with public exploit code in its Identity Services Engine (ISE) and Customer Collaboration Platform (CCP) solutions. [...] Source: BleepingComputer June 4th, 2025 (about 11 hours ago)
	Updated Guidance on Play Ransomware Description: CISA, the Federal Bureau of Investigation (FBI), and the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) have issued an updated advisory on Play ransomware, also known as Playcrypt. This advisory highlights new tactics, techniques, and procedures used by the Play ransomware group and provides updated indicators of compromise (IOCs) to enhance threat detection. Since June 2022, Playcrypt has targeted diverse businesses and critical infrastructure across North America, South America, and Europe, becoming one of the most active ransomware groups in 2024. The FBI has identified approximately 900 entities allegedly exploited by these ransomware actors as of May 2025. Recommended mitigations include: Implementing multifactor authentication; Maintaining offline data backups; Developing and testing a recovery plan; and Keeping all operating systems, software, and firmware updated. Stay vigilant and take proactive measures to protect your organization. Source: All CISA Advisories June 4th, 2025 (about 11 hours ago)
	BidenCash darknet forum taken down by US, Dutch law enforcement Description: The FBI and Dutch national police were among the law enforcement agencies that seized domains used by BidenCash, a cybercrime marketplace attributed to millions of dollars in fraud since late 2022. Source: The Record June 4th, 2025 (about 11 hours ago)
	Alleged Sale of an Exploit to Bypass Amazon WAF Description: Alleged Sale of an Exploit to Bypass Amazon WAF Source: DarkWebInformer June 4th, 2025 (about 12 hours ago)
	Alleged sale of Cisco ISE Pre-auth Remote Code Execution (0day) Exploit Description: Alleged sale of Cisco ISE Pre-auth Remote Code Execution (0day) Exploit Source: DarkWebInformer June 4th, 2025 (about 13 hours ago)
	How Neuroscience Can Help Us Battle 'Alert Fatigue' Description: By understanding the neurological realities of human attention, organizations can build more sustainable security operations that protect not only their digital assets but also the well-being of those who defend them. Source: Dark Reading June 4th, 2025 (about 13 hours ago)