CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

	Illicit HuiOne Telegram Market Surpasses Hydra, Hits $24 Billion in Crypto Transactions Description: The Telegram-based online marketplace known as HuiOne Guarantee and its vendors have cumulatively received at least $24 billion in cryptocurrency, dwarfing the now-defunct Hydra to become the largest online illicit marketplace to have ever operated. The figures, released by blockchain analytics firm Elliptic, show that monthly inflows have increased by 51% since July 2024. Huione Guarantee, part Source: TheHackerNews January 14th, 2025 (6 months ago)
	OMRON NJ/NX series vulnerable to path traversal Description: OMRON NJ/NX series contain a path traversal vulnerability. Source: Japan Vulnerability Notes (JVN) January 14th, 2025 (6 months ago)
	Improper restriction of XML external entity reference (XXE) vulnerability in OMRON NB-Designer Description: OMRON NB-Designer contains an improper restriction of XML external entity reference (XXE) vulnerability. Source: Japan Vulnerability Notes (JVN) January 14th, 2025 (6 months ago)
	Multiple vulnerabilities in STEALTHONE D220/D340/D440 Description: STEALTHONE D220/D340/D440 provided by Y'S corporation contain multiple vulnerabilities. Source: Japan Vulnerability Notes (JVN) January 14th, 2025 (6 months ago)
CVE-2024-12686	CISA Adds Second BeyondTrust Flaw to KEV Catalog Amid Active Attacks Description: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a second security flaw impacting BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) products to the Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The vulnerability in question is CVE-2024-12686 (CVSS score: 6.6), a medium-severity bug that could CVSS: MEDIUM (6.6) EPSS Score: 6.18% Source: TheHackerNews January 14th, 2025 (6 months ago)
	Miscreants 'mass exploited' Fortinet firewalls, 'highly probable' zero-day used Source: TheRegister January 14th, 2025 (6 months ago)
	Daily Dose of Dark Web Informer - January 12th, 2025 Description: This daily article is intended to make it easier for those who want to stay updated with my regular Dark Web Informer and X/Twitter posts. Source: DarkWebInformer January 13th, 2025 (6 months ago)
	Rey Claims to have Leaked the Data of University of Rwanda Description: Rey Claims to have Leaked the Data of University of Rwanda Source: DarkWebInformer January 13th, 2025 (6 months ago)
	OneBlood confirms personal data stolen in July ransomware attack Description: Blood-donation not-for-profit OneBlood confirms that donors' personal information was stolen in a ransomware attack last summer. [...] Source: BleepingComputer January 13th, 2025 (6 months ago)
	Stealer Logs, Jan 2025 - 71,039,833 breached accounts Description: In January 2025, stealer logs with 71M email addresses were added to HIBP. Consisting of email address, password and the website the credentials were entered against, this breach marks the launch of a new HIBP feature enabling the retrieval of the specific websites the logs were collected against. The incident also resulted in 106M more passwords being added to the Pwned Passwords service. Source: HaveIBeenPwnedLatestBreaches January 13th, 2025 (6 months ago)