CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
Description: Microsoft says a known issue is causing Classic Outlook and Microsoft 365 applications to crash on Windows Server 2016 or Windows Server 2019 systems. [...]
January 14th, 2025 (6 months ago)
|
|
|
January 14th, 2025 (6 months ago)
|
|
|
Description: A critical flaw in Google's OAuth implementation could expose millions of Americans' sensitive data to attackers who purchase defunct domains of failed startups. This issue, which Google initially dismissed as “working as intended,” allows malicious actors to take over user accounts across various SaaS platforms using Google's “Sign in with Google” authentication flow. The OAuth …
The post Unfixed Google OAuth Flaw Exposes Millions to Account Takeovers appeared first on CyberInsider.
January 14th, 2025 (6 months ago)
|
|
|
January 14th, 2025 (6 months ago)
|
|
|
Description: Texas Attorney General Ken Paxton has filed a landmark lawsuit against Allstate Corporation and its data subsidiary, Arity, for allegedly violating the Texas Data Privacy and Security Act (TDPSA). The lawsuit accuses the companies of collecting and selling sensitive driving data from over 45 million Americans, including millions of Texans, without their consent. Paxton asserts …
The post Texas AG Sues Allstate Over Alleged Unlawful Data Harvesting appeared first on CyberInsider.
January 14th, 2025 (6 months ago)
|
|
|
Description: A recently uncovered malware campaign has compromised over 5,000 WordPress websites worldwide, utilizing malicious scripts to create unauthorized admin accounts, install backdoors via rogue plugins, and exfiltrate sensitive data. The attack, linked to the domain wp3[.]xyz, was first detected and blocked by the security service c/side, though the exact method of entry remains under investigation. …
The post Massive Malware Campaign Breached 5,000 WordPress Websites appeared first on CyberInsider.
January 14th, 2025 (6 months ago)
|
|
|
January 14th, 2025 (6 months ago)
|
|
|
Description: Graph neural networks aid in analyzing domains linked to known attack indicators, effectively uncovering new malicious domains and cybercrime campaigns.
The post One Step Ahead in Cyber Hide-and-Seek: Automating Malicious Infrastructure Discovery With Graph Neural Networks appeared first on Unit 42.
January 14th, 2025 (6 months ago)
|
|
|
Description: What do identity risks, data security risks and third-party risks all have in common? They are all made much worse by SaaS sprawl. Every new SaaS account adds a new identity to secure, a new place where sensitive data can end up, and a new source of third party risk. Learn how you can protect this sprawling attack surface in 2025.
What do identity risks, data security risks and third-party
January 14th, 2025 (6 months ago)
|
|
|
Description: Threat hunters are calling attention to a new campaign that has targeted Fortinet FortiGate firewall devices with management interfaces exposed on the public internet.
"The campaign involved unauthorized administrative logins on management interfaces of firewalls, creation of new accounts, SSL VPN authentication through those accounts, and various other configuration changes," cybersecurity firm
January 14th, 2025 (6 months ago)
|