Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
PowerSchool hacker claims they stole data of 62 million students
Description: The hacker who breached education tech giant PowerSchool claimed in an extortion demand that they've stolen the personal data of 62.4 million students and 9.5 million teachers, BleepingComputer has learned. [...]
Source: BleepingComputer
January 22nd, 2025 (3 months ago)
IPany VPN Breached by Hackers Planting Backdoor on Installer
Description: A China-aligned APT group dubbed PlushDaemon has executed a supply-chain attack on IPany, a South Korean VPN provider, by embedding a sophisticated backdoor named SlowStepper into its installer. According to ESET researchers, the attack, which began in late 2023, targeted users across South Korea, Japan, and China, with particular focus on industries like semiconductors and … The post IPany VPN Breached by Hackers Planting Backdoor on Installer appeared first on CyberInsider.
Source: CyberInsider
January 22nd, 2025 (3 months ago)
IPany VPN breached in supply-chain attack to push custom malware
Description: South Korean VPN provider IPany was breached in a supply chain attack by the "PlushDaemon" China-aligned hacking group, who compromised the company's VPN installer to deploy the custom 'SlowStepper' malware. [...]
Source: BleepingComputer
January 22nd, 2025 (3 months ago)
Welhof - 107,292 breached accounts
Description: In August 2024, the Dutch appliance store Welhof suffered a data breach. The incident exposed over 100k unique email addresses along with names, physical addresses and the value of purchases made. The data was provided to HIBP by a source who requested it be attributed to "oathnet.ru".
Source: HaveIBeenPwnedLatestBreaches
January 22nd, 2025 (3 months ago)
Frame & Optic - 15,678 breached accounts
Description: In January 2025, the eyewear seller Frame & Optic suffered a data breach. The incident exposed almost 16k unique email addresses along with names, phone numbers and geolocation data including country, state and postcode. The data was provided to HIBP by a source who requested it be attributed to "oathnet.ru".
Source: HaveIBeenPwnedLatestBreaches
January 22nd, 2025 (3 months ago)
HPE Investigates After Alleged Data Breach
Description: The company reports that it is not experiencing any operational issues within its business, so far.
Source: Dark Reading
January 21st, 2025 (3 months ago)
Threat Actor Claims Sale of 318 Million Otelier Records
Description: A threat actor known as “Ay4me” has put up for sale a trove of 318 million records on BreachForums, claiming the data was stolen from Otelier, a cloud-based hotel management platform. The stolen database, totaling 7.8TB, reportedly contains sensitive information from major hotel chains such as Marriott, Hilton, and Hyatt. The data leak was disclosed … The post Threat Actor Claims Sale of 318 Million Otelier Records appeared first on CyberInsider.
Source: CyberInsider
January 21st, 2025 (3 months ago)
HPE investigates breach as hacker claims to steal source code
Description: Hewlett Packard Enterprise (HPE) is investigating claims of a new breach after a threat actor said they stole documents from the company's developer environments. [...]
Source: BleepingComputer
January 20th, 2025 (3 months ago)
Product Walkthrough: How Satori Secures Sensitive Data From Production to AI
Description: Every week seems to bring news of another data breach, and it’s no surprise why: securing sensitive data has become harder than ever. And it’s not just because companies are dealing with orders of magnitude more data. Data flows and user roles are constantly shifting, and data is stored across multiple technologies and cloud environments. Not to mention, compliance requirements are only getting
Source: TheHackerNews
January 20th, 2025 (3 months ago)
Datacus extractus: Harry Potter publisher breached without resorting to magic
Source: TheRegister
January 20th, 2025 (3 months ago)