Lucene search
K

97 matches found

The Hacker News
The Hacker News
added 2025/11/07 10:30 a.m.6 views

Enterprise Credentials at Risk – Same Old, Same Old?

Imagine this: Sarah from accounting gets what looks like a routine password reset email from your organization’s cloud provider. She clicks the link, types in her credentials, and goes back to her spreadsheet. But unknown to her, she’s just made a big mistake. Sarah just accidentally handed over...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-26802

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00301EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.9 views

PT-2025-38696

ParsedReport ChatGPT Translated Autotext: TI Report Analyser + ChatGPT + Auto Translate ------ Группа компаний Belsen, действующая с января 2025 года, допустила утечку 1,6 ГБ данных с более чем 15 000 уязвимых устройств Fortinet из-за CVE-2022-406841, что указывает на постоянный доступ до взлома...

7AI score
Exploits0References2
Akamai Blog
Akamai Blog
added 2025/09/17 12:0 p.m.4 views

From Scraping to Paying: Monetizing AI Bots at the Edge

...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/09/05 4:52 p.m.5 views

Nexar dashcam video database hacked

A hacker cracked into a database of video recordings taken from Nexar-branded cameras, which are built to be placed drivers’ cars, according to a new report from 404 Media. Nexar is a dashcam company that promotes its products as “virtual CCTV cameras” and offers automatic cloud uploads of critic...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/07/13 12:0 a.m.3 views

PromptChain: a Decentralized Web3 Architecture for Managing AI Prompts As Digital Assets

We present PromptChain, a decentralized Web3 architecture that establishes AI prompts as first-class digital assets with verifiable ownership, version control, and monetization capabilities. Current centralized platforms lack mechanisms for proper attribution, quality assurance, or fair...

6.9AI score
Exploits0
Akamai Blog
Akamai Blog
added 2025/07/10 1:0 p.m.4 views

How AI Bots Are Rewriting the Rules of Publishing

See how AI bots impact publishers and how Akamai helps you protect, control, and monetize your content as AI reshapes how people find information...

7.4AI score
Exploits0
HackRead
HackRead
added 2025/06/14 1:55 p.m.15 views

How to Monetize Unity Apps: Best Practices

Unity is one of the most popular game engines for mobile and cross-platform app development. It powers millions…...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2025/06/13 2:12 p.m.21 views

Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month

Cybersecurity researchers are calling attention to a "large-scale campaign" that has been observed compromising legitimate websites with malicious JavaScript injections. According to Palo Alto Networks Unit 42, these malicious injects are obfuscated using JSFuck, which refers to an "esoteric and...

7.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 8:21 a.m.5 views

CVE-2024-1322

The Directorist – WordPress Business Directory Plugin with Classified Ads Listings plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'setupwizard' function in all versions up to, and including, 7.8.4. This makes it possible for...

5.3CVSS5.3AI score0.00524EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:46 a.m.5 views

CVE-2023-22673

Cross-Site Request Forgery CSRF vulnerability in MageNet Website Monetization by MageNet plugin = 1.0.29.1 versions...

8.8CVSS7.1AI score0.00301EPSS
Exploits0References1
Akamai Blog
Akamai Blog
added 2025/04/24 9:0 a.m.7 views

Deployments to Dollars: Turning Services into Recurring Revenue

...

7.3AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2024/11/18 12:0 a.m.9 views

Inside Water Barghest’s Rapid Exploit-to-Market Strategy for IoT Devices

In this blog entry, we discuss Water Barghest's exploitation of IoT devices, transforming them into profitable assets through advanced automation and monetization techniques...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2024/10/26 9:6 a.m.33 views

Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining

The infamous cryptojacking group known as TeamTNT appears to be readying for a new large-scale campaign targeting cloud-native environments for mining cryptocurrencies and renting out breached servers to third-parties. "The group is currently targeting exposed Docker daemons to deploy Sliver...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2024/09/24 9:37 a.m.16 views

New Octo2 Android Banking Trojan Emerges with Device Takeover Capabilities

Cybersecurity researchers have discovered a new version of an Android banking trojan called Octo that comes with improved capabilities to conduct device takeover DTO and perform fraudulent transactions. The new version has been codenamed Octo2 by the malware author, Dutch security firm ThreatFabr...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2024/08/29 11:42 a.m.35 views

U.S. Agencies Warn of Iranian Hacking Group's Ongoing Ransomware Attacks

U.S. cybersecurity and intelligence agencies have called out an Iranian hacking group for breaching multiple organizations across the country and coordinating with affiliates to deliver ransomware. The activity has been linked to a threat actor dubbed Pioneer Kitten, which is also known as Fox...

10CVSS10AI score0.99999EPSS
Exploits221
Vulnrichment
Vulnrichment
added 2024/03/20 6:48 a.m.13 views

CVE-2024-1379

The Website Article Monetization By MageNet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'abpauthkey' parameter in all versions up to, and including, 1.0.11 due to insufficient input sanitization and output escaping and a missing authorization check. This makes it...

6.1CVSS6.1AI score0.00522EPSS
Exploits0References2
CVE
CVE
added 2024/03/20 6:48 a.m.62 views

CVE-2024-1379

CVE-2024-1379 affects Website Article Monetization By MageNet for WordPress. All versions up to 1.0.11 are vulnerable to unauthenticated Stored XSS via the abp_auth_key parameter due to insufficient input sanitization/output escaping and a missing authorization check, enabling injection of script...

6.1CVSS6.1AI score0.00522EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/03/20 12:0 a.m.2 views

WordPress Plugin Website Article Monetization By MageNet Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

6.1CVSS6AI score0.00522EPSS
Exploits0References3
WPVulnDB
WPVulnDB
added 2024/03/19 12:0 a.m.18 views

Website Article Monetization By MageNet < 1.0.12 - Unauthenticated Stored XSS

Description The plugin is vulnerable to Stored Cross-Site Scripting via the 'abpauthkey' parameter due to insufficient input sanitization and output escaping and a missing authorization check. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will...

6.1CVSS6.3AI score0.00522EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder