Lone Hacker Used Infostealers to Access Data at 50 Global Companies

A Hudson Rock report reveals how an Iranian hacker named Zestix breached 50 global companies, including Iberia Airlines and Pickett & Associates, by using stolen passwords and a lack of MFA...

CVE-2025-62236

The Frontier Airlines website has a publicly available endpoint that validates if an email addresses is associated with an account. An unauthenticated, remote attacker could determine valid email addresses, possibly aiding in further attacks...

EUVD-2025-35719

The Frontier Airlines website has a publicly available endpoint that validates if an email addresses is associated with an account. An unauthenticated, remote attacker could determine valid email addresses, possibly aiding in further attacks...

CVE-2025-62236

The Frontier Airlines website has a publicly available endpoint that validates if an email addresses is associated with an account. An unauthenticated, remote attacker could determine valid email addresses, possibly aiding in further attacks...

CVE-2025-62236 Frontier Airlines publicly available email address validation

The Frontier Airlines website has a publicly available endpoint that validates if an email addresses is associated with an account. An unauthenticated, remote attacker could determine valid email addresses, possibly aiding in further attacks...

CVE-2025-62236

The CVE-2025-62236 entry concerns Frontier Airlines website: a publicly accessible endpoint that validates whether an email address is linked to an account. The vulnerability stems from an unauthenticated, remote check that can reveal valid email addresses, potentially enabling targeted follow‑on...

CVE-2025-62236 Frontier Airlines publicly available email address validation

The Frontier Airlines website has a publicly available endpoint that validates if an email addresses is associated with an account. An unauthenticated, remote attacker could determine valid email addresses, possibly aiding in further attacks...

Frontier Airlines website publicly available email address validation

RISK EVALUATION The Frontier Airlines website has a publicly available endpoint that validates if an email addresses is associated with an account. An unauthenticated, remote attacker could determine valid email addresses, possibly aiding in further attacks. 2. RECOMMENDED PRACTICES Use a...

Frontier Airlines Website 安全漏洞

Frontier Airlines Website is a Web site of Frontier Airlines USA, Inc. A security vulnerability exists in Frontier Airlines Website that originates from an unauthenticated endpoint that publicly verifies an e-mail address, which could allow an unauthenticated remote attacker to obtain a valid...

PT-2025-43552

Name of the Vulnerable Software and Affected Versions Frontier Airlines website affected versions not specified Description The Frontier Airlines website has a publicly available endpoint that allows validation of whether an email address is associated with an account. An unauthenticated, remote...

ShinyHunters Leak Data from Qantas, Vietnam Airlines and Other Major Firms

ShinyHunters and its affiliate hackers have leaked data from 6 firms, including Qantas and Vietnam Airlines, after claiming to breach 39 companies via a Salesforce vulnerability...

EUVD-2014-7513

Malware in sbrugna...

EUVD-2025-24806

Malicious code in bioql PyPI...

EUVD-2025-6659

Malicious code in bioql PyPI...

EUVD-2025-6660

Malicious code in bioql PyPI...

Airline data broker selling 5 billion passenger records to US government

We already knew that the US airline industry gave the government access to passenger records. However, this week it emerged that at least five billion passenger records are being sold to government agencies via a searchable database—far more than was initially believed. A few weeks ago,...

CVE-2025-8960

A vulnerability has been found in Campcodes Online Flight Booking Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/saveairlines.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2025-8960 Campcodes Online Flight Booking Management System save_airlines.php sql injection

A vulnerability has been found in Campcodes Online Flight Booking Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/saveairlines.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2025-8960 Campcodes Online Flight Booking Management System save_airlines.php sql injection

A vulnerability has been found in Campcodes Online Flight Booking Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/saveairlines.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2025-8960

The affected product is Campcodes Online Flight Booking Management System 1.0. The vulnerability exists in the /admin/save_airlines.php functionality and is triggered by manipulating the ID parameter to cause SQL injection. Exploitation is remote and the exploit has been publicly disclosed. Impac...