Lucene search
K

12 matches found

HackRead
HackRead
added 2025/09/01 5:21 p.m.4 views

North Korea’s ScarCruft Targets Academics With RokRAT Malware

A new report reveals North Korea-linked ScarCruft is using RokRAT malware to target academics in a phishing campaign.…...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/06/19 8:6 a.m.28 views

Russian APT29 Exploits Gmail App Passwords to Bypass 2FA in Targeted Phishing Campaign

Threat actors with suspected ties to Russia have been observed taking advantage of a Google account feature called application specific passwords or app passwords as part of a novel social engineering tactic designed to gain access to victims' emails. Details of the highly targeted campaign were...

7.8AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/05/21 3:0 p.m.22 views

academicschoice.com Cross Site Scripting vulnerability OBB-3929497

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
The Hacker News
The Hacker News
added 2024/03/25 9:2 a.m.39 views

New "GoFetch" Vulnerability in Apple M-Series Chips Leaks Secret Encryption Keys

A new security shortcoming discovered in Apple M-series chips could be exploited to extract secret keys used during cryptographic operations. Dubbed GoFetch, the vulnerability relates to a microarchitectural side-channel attack that takes advantage of a feature known as data memory-dependent...

6.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/07/31 12:30 p.m.21 views

Patchwork Hackers Target Chinese Research Organizations Using EyeShell Backdoor

Threat actors associated with the hacking crew known as Patchwork have been spotted targeting universities and research organizations in China as part of a recently observed campaign. The activity, according to KnownSec 404 Team, entailed the use of a backdoor codenamed EyeShell. Patchwork, also...

7.1AI score
Exploits0
hivepro
hivepro
added 2023/04/05 6:57 a.m.6 views

Unraveling North Korea’s Cyber Espionage Group APT43 Targeting Geopolitical Interests

Threat Level Actor Report For a detailed threat advisory, download the pdf file here Summary APT43 is a cyber espionage group that serves North Korean regime interests by targeting government organizations, academics, and think tanks focused on Korean peninsula geopolitical issues, mainly in Sout...

6.7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/01/11 8:20 p.m.9 views

euacademics.com Cross Site Scripting vulnerability OBB-3142943

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
The Hacker News
The Hacker News
added 2022/08/22 1:5 p.m.262 views

"As Nasty as Dirty Pipe" — 8 Year Old Linux Kernel Vulnerability Uncovered

Details of an eight-year-old security vulnerability in the Linux kernel have emerged that the researchers say is "as nasty as Dirty Pipe." Dubbed DirtyCred by a group of academics from Northwestern University, the security weakness exploits a previously unknown flaw CVE-2022-2588 to escalate...

7.8CVSS1.3AI score0.89063EPSS
Exploits107
GoogleProjectZero
GoogleProjectZero
added 2020/10/01 12:0 a.m.26 views

Announcing the Fuzzilli Research Grant Program

Posted by Samuel Groß, Project Zero Project Zero’s mission is to make 0-day hard in order to improve end-user security. We attack this problem in different ways, including supporting other security researchers. While Google currently offers research grants, they are limited to academics and those...

7.2AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2019/07/25 9:0 a.m.69 views

Facebook's Ex-Security Chief Details His 'Observatory' for Internet Abuse

Alex Stamos' Stanford-based project will try to persuade tech firms to offer academics access to massive troves of user data...

4.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/01/23 9:24 p.m.11 views

opsu.edu XSS vulnerability

Open Bug Bounty ID: OBB-539927 Description| Value ---|--- Affected Website:| opsu.edu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/12/22 11:55 a.m.8 views

hireabook.com XSS vulnerability

Open Bug Bounty ID: OBB-457260 Description| Value ---|--- Affected Website:| hireabook.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat She...

6.4AI score
Exploits0
Rows per page
Query Builder