Lucene search
+L

296 matches found

hivepro
hivepro
added 2022/03/24 6:30 a.m.160 views

AvosLocker Ransomware group has targeted 50+ Organizations Worldwide

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here Federal Bureau of Investigation and Cybersecurity and Infrastructure Security Agency released threat advisories on AvosLocker Ransomware. It is a Ransomware as a Service RaaS affiliate-based group that has targeted 50+...

10CVSS1.5AI score0.99999EPSS
Exploits79
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/11/18 4:0 p.m.20 views

Iranian targeting of IT sector on the rise

Iranian threat actors are increasing attacks against IT services companies as a way to access their customers’ networks. This activity is notable because targeting third parties has the potential to exploit more sensitive organizations by taking advantage of trust and access in a supply chain...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2021/11/18 2:0 p.m.23 views

Spear-Phishing Campaign Exploits Glitch Platform to Steal Credentials

A long-term spear-phishing campaign is targeting employees of major corporations with emails containing PDFs that link to short-lived Glitch apps hosting credential-harvesting SharePoint phishing pages, researchers have found. Researchers from DomainTools discovered the suspicious PDFs – which...

7.2AI score
Exploits0References8
HackRead
HackRead
added 2021/11/08 8:12 p.m.20 views

Conti ransomware gang apologized to Arab Royals over data leak

By Waqas The data leak took place last month when the infamous Conti ransomware gang hacked Graff, a UK-based jewelry store Graff popular among the elite. This is a post from HackRead.com Read the original post: Conti ransomware gang apologized to Arab Royals over data leak...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2021/10/26 7:53 a.m.11 views

viparabcasinos.com Improper Access Control vulnerability OBB-2207899

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

0.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/10/12 3:12 p.m.15 views

ExpressVPN made a choice, and so did I: Lock and Code S02E19

On September 14, the US Department of Justice announced that it had resolved an earlier investigation into an international cyber hacking campaign coming from the United Arab Emirates that has reportedly impacted hundreds of journalists, activists, and human rights defenders in Yemen, Iran, Turke...

0.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/02/11 7:43 a.m.11 views

Iranian Hackers Utilize ScreenConnect to Spy On UAE, Kuwait Government Agencies

UAE and Kuwait government agencies are targets of a new cyberespionage campaign potentially carried out by Iranian threat actors, according to new research. Attributing the operation to be the work of Static Kitten aka MERCURY or MuddyWater, Anomali said the "objective of this activity is to...

6AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/10/13 3:41 p.m.21 views

arabruleoflaw.org Cross Site Scripting vulnerability OBB-1405196

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Openbugbounty
Openbugbounty
added 2020/09/01 5:36 a.m.4 views

fhg.arabladyboys.com Cross Site Scripting vulnerability OBB-1291009

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/07/01 4:6 a.m.5 views

database.arabtradeunion.org Cross Site Scripting vulnerability OBB-1212104

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/06/19 12:2 p.m.15 views

arab-lady.com Cross Site Scripting vulnerability OBB-1201341

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2019/11/21 12:58 p.m.11 views

arabdevelopmentportal.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1020698 Security Researcher g0bl1nsec Helped patch 3768 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting arabdevelopmentportal.com...

0.2AI score
Exploits0
Schneier on Security
Schneier on Security
added 2019/10/11 11:14 a.m.73 views

Details on Uzbekistan Government Malware: SandCat

Kaspersky has uncovered an Uzbeki hacking operation, mostly due to incompetence on the part of the government hackers. The group's lax operational security includes using the name of a military group with ties to the SSS to register a domain used in its attack infrastructure; installing Kaspersky...

1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/07/18 11:21 p.m.12 views

arab-videos.com XSS vulnerability

Open Bug Bounty ID: OBB-650023 Description| Value ---|--- Affected Website:| arab-videos.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/07/09 10:12 p.m.7 views

arab-moviez.org XSS vulnerability

Open Bug Bounty ID: OBB-643666 Description| Value ---|--- Affected Website:| arab-moviez.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Openbugbounty
Openbugbounty
added 2018/04/20 11:57 a.m.13 views

ch2mcareers.com XSS vulnerability

Open Bug Bounty ID: OBB-605180 Description| Value ---|--- Affected Website:| ch2mcareers.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/04/03 1:40 p.m.10 views

arab-lady.com XSS vulnerability

Open Bug Bounty ID: OBB-596149 Description| Value ---|--- Affected Website:| arab-lady.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/01/22 3:13 a.m.10 views

arab-clothing.com XSS vulnerability

Open Bug Bounty ID: OBB-537227 Description| Value ---|--- Affected Website:| arab-clothing.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
CNVD
CNVD
added 2015/08/20 12:0 a.m.6 views

Arab Portal SQL Injection Vulnerability

Arab Portal is a set of web portals. A SQL injection vulnerability exists in Arab Portal version 3, which stems from a failure of the members.php script to adequately filter the 'showemail' parameter in the signup operation. A remote attacker could use this vulnerability to execute arbitrary SQL...

7.5CVSS8.4AI score0.02414EPSS
Exploits1References1
NVD
NVD
added 2015/08/18 6:0 p.m.19 views

CVE-2015-6519

SQL injection vulnerability in Arab Portal 3 allows remote attackers to execute arbitrary SQL commands via the showemail parameter in a signup action to members.php...

7.5CVSS8.3AI score0.02414EPSS
Exploits1References3
Rows per page
Query Builder