Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2023-21162	In RGXUnbackingZSBuffer of rgxta3d.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of... Description: In RGXUnbackingZSBuffer of rgxta3d.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation. CVSS: LOW (0.0) EPSS Score: 0.12% Source: CVE December 3rd, 2024 (6 months ago)
	Threat Assessment: Howling Scorpius (Akira Ransomware) Description: Howling Scorpius, active since 2023, uses Akira ransomware to target businesses globally, employing a double-extortion strategy and upgrading tools regularly. The post Threat Assessment: Howling Scorpius (Akira Ransomware) appeared first on Unit 42. Source: Palo Alto Unit42 December 2nd, 2024 (6 months ago)
	'Bootkitty' First Bootloader to Take Aim at Linux Description: Though it's still just a proof of concept, the malware is functional and can evade the Secure Boot process on devices from multiple vendors. Source: Dark Reading December 2nd, 2024 (6 months ago)
	Korea arrests CEO for adding DDoS feature to satellite receivers Description: South Korean police have arrested a CEO and five employees for manufacturing over 240,000 satellite receivers pre-loaded or later updated to include DDoS attack functionality at a purchaser's request. [...] Source: BleepingComputer December 2nd, 2024 (6 months ago)
	Interpol Cyber-Fraud Action Nets More Than 5K Arrests Description: Chalk up another win for global cooperation among law enforcement, this time targeting seven types of cyber fraud, including voice phishing and business email compromise. Source: Dark Reading December 2nd, 2024 (6 months ago)
	Russia sentences Hydra dark web market leader to life in prison Description: Russian authorities have sentenced the leader of the criminal group behind the now-closed dark web platform Hydra Market to life in prison. [...] Source: BleepingComputer December 2nd, 2024 (6 months ago)
	Name That Edge Toon: Shackled! Description: Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 gift card. Source: Dark Reading December 2nd, 2024 (6 months ago)
	BootKitty UEFI malware exploits LogoFAIL to infect Linux systems Description: The recently uncovered 'Bootkitty' UEFI bootkit, the first malware of its kind targeting Linux systems, exploits CVE-2023-40238, aka 'LogoFAIL,' to infect computers running on a vulnerable UEFI firmware. [...] Source: BleepingComputer December 2nd, 2024 (6 months ago)
	Does Your Company Need a Virtual CISO? Description: With cybersecurity talent hard to come by and companies increasingly looking for guidance and best practices, virtual and fractional chief information security officers can make a lot of sense. Source: Dark Reading December 2nd, 2024 (6 months ago)
	2 UK Hospitals Targeted in Separate Cyberattacks Description: Alder Hey Children's Hospital got hit with a ransomware attack, while the nature of an incident at Wirral University Teaching Hospital remains undisclosed. Source: Dark Reading December 2nd, 2024 (6 months ago)