Lucene search
K

143 matches found

The Hacker News
The Hacker News
added 2026/06/15 7:44 p.m.18 views

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

A China-linked espionage group hid inside North American medical, academic, and military research networks for more than a year, quietly stealing sensitive research and defense email. The way in was a backdoor on their REDCap research servers that stole login credentials. The exfiltration was the...

5.6AI score
Exploits0
The Hacker News
The Hacker News
added 2026/03/12 5:18 a.m.10 views

CISA Flags Actively Exploited n8n RCE Bug as 24,700 Instances Remain Exposed

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Wednesday added a critical security flaw impacting n8n to its Known Exploited Vulnerabilities KEV catalog, based on evidence of active exploitation. The vulnerability, tracked as CVE-2025-68613 CVSS score: 9.9, concerns a case of...

9.9CVSS6.3AI score0.97875EPSS
Exploits29
HackRead
HackRead
added 2026/02/24 2:46 p.m.10 views

Sendmarc Releases DMARCbis Fireside Chat Featuring Co-Editor Todd Herr

Wilmington, North America, 24th February 2026, CyberNewswire...

5.4AI score
Exploits0
The Hacker News
The Hacker News
added 2026/01/21 5:17 p.m.9 views

North Korean PurpleBravo Campaign Targeted 3,136 IP Addresses via Fake Job Interviews

As many as 3,136 individual IP addresses linked to likely targets of the Contagious Interview activity have been identified, with the campaign claiming 20 potential victim organizations spanning artificial intelligence AI, cryptocurrency, financial services, IT services, marketing, and software...

6.1AI score
Exploits0
Talos Blog
Talos Blog
added 2026/01/15 11:0 a.m.11 views

UAT-8837 targets critical infrastructure sectors in North America

Cisco Talos is closely tracking UAT-8837, a threat actor we assess with medium confidence is a China-nexus advanced persistent threat APT actor based on overlaps in tactics, techniques, and procedures TTPs with those of other known China-nexus threat actors. Based on UAT-8837's TTPs and...

9CVSS7.6AI score0.26308EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2026/01/09 10:2 a.m.8 views

CVE-2011-0859

Unspecified vulnerability in Oracle PeopleSoft Enterprise HRMS 9.0 Tax Update 11-B and 9.1 Tax Update 11-B allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Global Payroll - North America...

5.5CVSS5.6AI score0.01262EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blog
added 2025/11/12 1:55 p.m.16 views

Attackers accelerate, adapt, and automate: Rapid7’s Q3 2025 Threat Landscape Report

The Q3 2025 Threat Landscape Report, authored by the Rapid7 Labs team, paints a clear picture of an environment where attackers are moving faster, working smarter, and using artificial intelligence to stay ahead of defenders. The findings reveal a threat landscape defined by speed, coordination,...

6.6AI score
Exploits0
HackRead
HackRead
added 2025/10/21 12:13 p.m.5 views

Sendmarc appoints Dan Levinson as Customer Success Director in North America

Wilmington, Delaware, 21st October 2025, CyberNewsWire...

7AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-11322

Malware in sbrugna...

9.1CVSS9AI score0.00425EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-54341

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.02275EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24832

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00174EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.17 views

EUVD-2025-24834

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00402EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-54343

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01619EPSS
Exploits1References2
HackRead
HackRead
added 2025/09/04 12:30 p.m.3 views

Sendmarc appoints Rob Bowker as North American Region Lead

Wilmington, United States, 4th September 2025, CyberNewsWire...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/08/25 12:0 a.m.5 views

$AutoGuardX$: a Comprehensive Cybersecurity Framework for Connected Vehicles

The rapid integration of Internet of Things IoT and interconnected systems in modern vehicles not only introduced a new era of convenience, automation, and connected vehicles but also elevated their exposure to sophisticated cyber threats. This is especially evident in US and Canada, where...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2025/08/22 11:6 a.m.15 views

Chinese Hackers Murky, Genesis, and Glacial Panda Escalate Cloud and Telecom Espionage

Cybersecurity researchers are calling attention to malicious activity orchestrated by a China-nexus cyber espionage group known as Murky Panda that involves abusing trusted relationships in the cloud to breach enterprise networks. "The adversary has also shown considerable ability to quickly...

9.8CVSS7.7AI score0.99445EPSS
Exploits247
RedhatCVE
RedhatCVE
added 2025/08/16 12:16 a.m.11 views

CVE-2025-27846

In ESPEC North America Web Controller 3 before 3.3.8, an attacker with physical access can gain elevated privileges because GRUB and the BIOS are unprotected...

4.3CVSS7.2AI score0.00174EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/16 12:16 a.m.19 views

CVE-2025-27847

In ESPEC North America Web Controller 3 before 3.3.8, /api/v4/auth/ users session privileges are not revoked on logout...

4.3CVSS7.3AI score0.00174EPSS
Exploits0References1
NVD
NVD
added 2025/08/14 3:15 p.m.24 views

CVE-2025-27847

In ESPEC North America Web Controller 3 before 3.3.8, /api/v4/auth/ users session privileges are not revoked on logout...

4.3CVSS0.00174EPSS
Exploits0References2
NVD
NVD
added 2025/08/14 3:15 p.m.22 views

CVE-2025-27845

In ESPEC North America Web Controller 3 before 3.3.4, /api/v4/auth/ with any invalid authentication request results in exposing a JWT secret. This allows for elevated permissions to the UI...

9.8CVSS0.00402EPSS
Exploits0References2
Rows per page
Query Builder