Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Zscaler's Buyout of Red Canary Shows Telemetry's Value
Description: Red Canary's MDR portfolio complements Zscaler's purchase last year of Israeli startup Avalor, which automates collection, curation, and enrichment of security data.
Source: Dark Reading
May 29th, 2025 (11 days ago)
🏴‍☠️ Safepay has just published a new victim : usmortgage.com
Description: [AI generated] USMortgage.com is a financial service provider located in the United States, specializing in home mortgages. The company offers a variety of loan products, including conventional, FHA, VA, USDA, and jumbo mortgages. It seeks to harmonize technology with customer service to streamline home financing and refinancing processes for borrowers. USMortgage.com prides itself on transparency, education, and personalized customer support.
Source: Ransomware.live
May 29th, 2025 (11 days ago)
'Everest Group' Extorts Global Orgs via SAP's HR Tool
Description: In addition to Coca-Cola, entities in Abu Dhabi, Jordan, Namibia, South Africa, and Switzerland are experiencing extortion attacks, all involving stolen SAP SuccessFactor data.
Source: Dark Reading
May 29th, 2025 (11 days ago)
DorkEye: A Python Script for Ethical Dorking
Description: DorkEye: A Python Script for Ethical Dorking
Source: DarkWebInformer
May 29th, 2025 (11 days ago)
Why is China deep in US networks? 'They're preparing for war,' HR McMaster tells lawmakers
Source: TheRegister
May 29th, 2025 (11 days ago)
ConnectWise breached in cyberattack linked to nation-state hackers
Description: IT management software firm ConnectWise says a suspected state-sponsored cyberattack breached its environment and impacted a limited number of ScreenConnect customers. [...]
Source: BleepingComputer
May 29th, 2025 (11 days ago)
ConnectWise says nation-state attack targeted multiple ScreenConnect customers
Description: The company said it “recently learned of suspicious activity” within its environment that it believes “was tied to a sophisticated nation state actor, which affected a very small number of ScreenConnect customers.”
Source: The Record
May 29th, 2025 (11 days ago)
A new author has appeared
Description: Talos Content Manager Amy introduces themself, shares her unconventional journey into cybersecurity and reports on threats masquerading as AI installers.
Source: Cisco Talos Blog
May 29th, 2025 (11 days ago)

CVE-2025-29632
Buffer Overflow vulnerability in Free5gc v.4.0.0 allows a remote attacker to cause a denial of service via the AMF, NGAP, security.go,...
Description: Buffer Overflow vulnerability in Free5gc v.4.0.0 allows a remote attacker to cause a denial of service via the AMF, NGAP, security.go, handler_generated.go, handleInitialUEMessageMain, DecodePlainNasNoIntegrityCheck, GetSecurityHeaderType components

EPSS Score: 0.05%

Source: CVE
May 29th, 2025 (11 days ago)

CVE-2024-53423
An issue in Open Network Foundation ONOS v2.7.0 allows attackers to cause a Denial of Service (DoS) via supplying crafted packets.
Description: An issue in Open Network Foundation ONOS v2.7.0 allows attackers to cause a Denial of Service (DoS) via supplying crafted packets.

EPSS Score: 0.03%

Source: CVE
May 29th, 2025 (11 days ago)