Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
China's Silk Typhoon, tied to US Treasury break-in, now hammers IT and govt targets
Source: TheRegister
March 5th, 2025 (about 1 month ago)
China-Linked Silk Typhoon Expands Cyber Attacks to IT Supply Chains for Initial Access
Description: The China-lined threat actor behind the zero-day exploitation of security flaws in Microsoft Exchange servers in January 2021 has shifted its tactics to target the information technology (IT) supply chain as a means to obtain initial access to corporate networks. That's according to new findings from the Microsoft Threat Intelligence team, which said the Silk Typhoon (formerly Hafnium) hacking
Source: TheHackerNews
March 5th, 2025 (about 2 months ago)
Over 4,000 ISP IPs Targeted in Brute-Force Attacks to Deploy Info Stealers and Cryptominers
Description: Internet service providers (ISPs) in China and the West Coast of the United States have become the target of a mass exploitation campaign that deploys information stealers and cryptocurrency miners on compromised hosts. The findings come from the Splunk Threat Research Team, which said the activity also led to the delivery of various binaries that facilitate data exfiltration as well as offer
Source: TheHackerNews
March 4th, 2025 (about 2 months ago)
Wallbleed vulnerability unearths secrets of China's Great Firewall 125 bytes at a time
Source: TheRegister
February 27th, 2025 (about 2 months ago)
Wallbleed Flaw in China’s Great Firewall Exposed Private Data
Description: A newly discovered vulnerability in China's Great Firewall (GFW), dubbed Wallbleed, exposed sensitive memory data from its censorship infrastructure for over two years. The flaw leaked up to 125 bytes of internal memory whenever a specially crafted DNS query was injected into the system, offering an unprecedented view into China's nationwide censorship mechanisms. The vulnerability … The post Wallbleed Flaw in China’s Great Firewall Exposed Private Data appeared first on CyberInsider.
Source: CyberInsider
February 26th, 2025 (about 2 months ago)
Xi know what you did last summer: China was all up in Republicans' email, says book
Source: TheRegister
February 25th, 2025 (about 2 months ago)
China's Silver Fox spoofs medical imaging apps to hijack patients' computers
Source: TheRegister
February 25th, 2025 (about 2 months ago)
OpenAI Bans Accounts Misusing ChatGPT for Surveillance and Influence Campaigns
Description: OpenAI on Friday revealed that it banned a set of accounts that used its ChatGPT tool to develop a suspected artificial intelligence (AI)-powered surveillance tool. The social media listening tool is said to likely originate from China and is powered by one of Meta's Llama models, with the accounts in question using the AI company's models to generate detailed descriptions and analyze documents
Source: TheHackerNews
February 22nd, 2025 (about 2 months ago)
Data Leak Exposes TopSec's Role in China’s Censorship-as-a-Service Operations
Description: An analysis of a data leak from a Chinese cybersecurity company TopSec has revealed that it likely offers censorship-as-a-service solutions to prospective customers, including a state-owned enterprise in the country. Founded in 1995, TopSec ostensibly offers services such as Endpoint Detection and Response (EDR) and vulnerability scanning. But it's also providing "boutique" solutions in order
Source: TheHackerNews
February 21st, 2025 (about 2 months ago)
Ghost Ransomware Targets Orgs in 70+ Countries
Description: The China-backed threat group often acts swiftly, going from initial access to compromise in just one day, a behavior atypical of cybercriminal groups.
Source: Dark Reading
February 20th, 2025 (about 2 months ago)