Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
[remote] Grandstream GSD3710 1.0.11.13 - Stack Overflow
Description: Grandstream GSD3710 1.0.11.13 - Stack Overflow
Source: ExploitDB
June 5th, 2025 (3 days ago)
[webapps] CloudClassroom PHP Project 1.0 - SQL Injection
Description: CloudClassroom PHP Project 1.0 - SQL Injection
Source: ExploitDB
June 5th, 2025 (3 days ago)
[remote] Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
Description: Microsoft Windows Server 2025 JScript Engine - Remote Code Execution (RCE)
Source: ExploitDB
June 5th, 2025 (3 days ago)
Infostealers Crash Course: A Tradecraft Tuesday Recap
Description: Cybercriminals are sitting on a pile of stolen credentials, financial information, and sensitive data, thanks to the success of infostealers. Read more to learn how infostealers have grown to become a scourge to defenders, and how businesses can protect themselves.
Source: Huntress Blog
June 5th, 2025 (3 days ago)
Ukrainian police arrest hacker who used hosting firm's servers to mine cryptocurrency
Description: The suspect, a native of the central Ukrainian city of Poltava, had been conducting cyberattacks since at least 2018, police said.
Source: The Record
June 5th, 2025 (3 days ago)
Alleged breach of Odoo S.A. – Full Employee Database (63.4MB) for Sale at $25,000
Description: Alleged breach of Odoo S.A. – Full Employee Database (63.4MB) for Sale at $25,000
Source: DarkWebInformer
June 5th, 2025 (3 days ago)
Questions Swirl Around ConnectWise Flaw Used in Attacks
Description: ConnectWise issued a patch to stave off attacks on ScreenConnect customers, but the company's disclosures don't explain what the vulnerability is and when it was first exploited.
Source: Dark Reading
June 5th, 2025 (3 days ago)
Researchers Detail Bitter APT’s Evolving Tactics as Its Geographic Scope Expands
Description: The threat actor known as Bitter has been assessed to be a state-backed hacking group that's tasked with gathering intelligence that aligns with the interests of the Indian government. That's according to new findings jointly published by Proofpoint and Threatray in an exhaustive two-part analysis. "Their diverse toolset shows consistent coding patterns across malware families, particularly in
Source: TheHackerNews
June 5th, 2025 (3 days ago)
🏴‍☠️ Akira has just published a new victim : Sturdevant's Auto Parts
Description: Sturdevant's Auto parts is the regions largest automotive parts & accessory business with 40 locally owned stores in SD, ND, Iowa , Minnesota & Nebraska. We are going to upload about 16 GB of corporate data. Personal do cuments, lots of contracts and agreements, client data, financial data (audits, payment details, reports), etc.
Source: Ransomware.live
June 5th, 2025 (3 days ago)
🏴‍☠️ Bert has just published a new victim : Columbia TI
Description: Columbia Integração delivers IT solutions in cloud, cybersecurity, and infrastructure to drive digital transformation for businesses in Brazil.
Source: Ransomware.live
June 5th, 2025 (3 days ago)