CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
Description: AI coding tools promise productivity but deliver security problems, too. As developers embrace "vibe coding," enterprises face mounting risks from insecure code generation that security teams can't keep pace with.
June 9th, 2025 (15 days ago)
|
|
Description: Blue Team playbooks are essential—but tools like Wazuh take them to the next level. From credential dumping to web shells and brute-force attacks, see how Wazuh strengthens real-time detection and automated response. [...]
June 9th, 2025 (15 days ago)
|
|
Description: United Natural Foods, Inc. (UNFI) disclosed that it had detected unauthorized activity on its IT systems, prompting the company to initiate its incident response plan and take systems offline. The disruption has impacted its ability to fulfill and distribute customer orders and is expected to continue affecting operations. The incident was reported in an SEC …
The post United Natural Foods Hit by Cyberattack Causing Business Disruptions appeared first on CyberInsider.
June 9th, 2025 (15 days ago)
|
|
Description: In its latest campaign this spring, DarkGaboon was observed deploying LockBit 3.0 ransomware against victims in Russia, Positive Technologies said in a report last week.
June 9th, 2025 (15 days ago)
|
|
Description: Impact
The application is vulnerable to Cross-Site Scripting (XSS) attacks due to incorrect input validation and sanitization of user-input data. An attacker can inject arbitrary HTML code, including JavaScript scripts, into the page processed by the user's browser, allowing them to steal sensitive data, hijack user sessions, or conduct other malicious activities.
Patches
The issue is fixed in https://github.com/barryvdh/laravel-translation-manager/pull/475 which is released in version 0.6.8
Workarounds
Only authenticated users with access to the translation manager are impacted.
References
[PT-2025-04] laravel translation manager.pdf
Reported by
Positive Technologies (Artem Deikov, Ilya Tsaturov, Daniil Satyaev, Roman Cheremnykh, Artem Danilov, Stanislav Gleym)
References
https://github.com/barryvdh/laravel-translation-manager/security/advisories/GHSA-j226-63j7-qrqh
https://github.com/barryvdh/laravel-translation-manager/pull/475
https://github.com/barryvdh/laravel-translation-manager/commit/527446ed419f90f2319675fc5211cb8f851d7a1f
https://github.com/barryvdh/laravel-translation-manager/releases/tag/v0.6.8
https://github.com/advisories/GHSA-j226-63j7-qrqh
June 9th, 2025 (15 days ago)
|
|
Description: Phone numbers are a goldmine for SIM swappers. A researcher found how to get this precious piece of information from any Google account.
June 9th, 2025 (15 days ago)
|
|
Description: United Natural Foods (UNFI), North America's largest publicly traded wholesale distributor, was forced to shut down some systems following a recent cyberattack. [...]
June 9th, 2025 (15 days ago)
|
|
Description: Local police, state authorities, DHS, and the military all flew aircraft over the Los Angeles protests this weekend, according to flight path data.
June 9th, 2025 (15 days ago)
|
|
Description: A U.S. federal court has ordered OpenAI to indefinitely preserve all user-generated content from ChatGPT and its API services, including chats that users have deleted. The preservation order, signed by Magistrate Judge Ona T. Wang of the Southern District of New York, stems from ongoing copyright litigation initiated by The New York Times and other …
The post US Court Orders OpenAI to Preserve All ChatGPT Logs Indefinitely appeared first on CyberInsider.
June 9th, 2025 (15 days ago)
|
|
Description: A wide-ranging executive order issued before the weekend makes changes to directives from previously presidential administrations and issues some policy deadlines on quantum computing and artificial intelligence.
June 9th, 2025 (15 days ago)
|