Lucene search
K

63 matches found

hivepro
hivepro
added 2026/04/29 11:37 p.m.3 views

CTEM for Financial Services: Continuous Threat Exposure Management for Banks and Financial Institutions

Protect Customer Data. Prevent Fraud. Meet PCI-DSS, SOX, and DORA Compliance. Financial institutions are the most targeted sector for cyberattacks. With an average breach cost of $6.08 million and regulators tightening requirements under PCI-DSS 4.0 and DORA, reactive security programs leave bank...

5.6AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2025/07/31 5:0 p.m.8 views

Modernize your identity defense with Microsoft Identity Threat Detection and Response

In today’s fast-evolving landscape, where businesses balance on-premises systems and cloud resources, identity-based cyberthreats are growing more frequent and sophisticated. The question isn’t whether an identity attack will occur—but when. The numbers are staggering: In 2024 Microsoft saw an...

7.5AI score
Exploits0
Akamai Blog
Akamai Blog
added 2025/04/14 6:0 a.m.5 views

Sharing Is (Not) Caring: How Shared Credentials Open the Door to Breaches

...

7.3AI score
Exploits0
CVE
CVE
added 2025/03/31 10:22 p.m.74 views

CVE-2025-24173

The CVE-2025-24173 issue involves insufficient entitlement checks that could allow an app to escape its sandbox. Affected products/versions include visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iPadOS 17.7.6, iOS 18.4/iPadOS 18.4, macOS Sequoia 15.4, and macOS Sonoma 14.7.5. Impact is high (CVE-...

7.8CVSS5.8AI score0.0031EPSS
Exploits0References16Affected Software5
Malwarebytes
Malwarebytes
added 2025/03/14 3:29 p.m.14 views

Research on iOS apps shows widespread exposure of secrets

Researchers found that most of the apps available on Apple’s App Store leak at least one hard-coded secret. The researchers looked at 156,000 iOS apps and discovered more than 815,000 hardcoded secrets, including very sensitive secrets like keys to cloud storage, various Application Programming...

7.3AI score
Exploits0
HackRead
HackRead
added 2024/12/30 3:0 p.m.11 views

SquareX Researchers Expose OAuth Attack on Chrome Extensions Days Before Major Breach

SquareX warns of OAuth attacks targeting Chrome extensions, exposing users to session hijacking and data theft. Secure your browser with proactive BDR solutions...

7.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/01/30 12:0 a.m.6 views

PT-2024-1894 · WordPress · Ultimate Member

Name of the Vulnerable Software and Affected Versions: Ultimate Member versions 2.1.3 through 2.8.2 Description: The issue is related to a SQL injection vulnerability in the Ultimate Member plugin for WordPress. This vulnerability can be exploited by unauthenticated attackers to append additional...

10CVSS9.8AI score0.89431EPSS
Exploits8References64
The Hacker News
The Hacker News
added 2023/11/28 10:24 a.m.20 views

Stop Identity Attacks: Discover the Key to Early Threat Detection

Identity and Access Management IAM systems are a staple to ensure only authorized individuals or entities have access to specific resources in order to protect sensitive information and secure business assets. But did you know that today over 80% of attacks now involve identity, compromised...

7.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/11/13 12:0 a.m.3 views

PT-2023-32511 · Unknown · Ics Business Manager

Name of the Vulnerable Software and Affected Versions: ICS Business Manager version 7.06.0028.7089 Description: A SQL injection issue has been discovered, allowing a remote user to send a specially crafted SQL query to retrieve all database information. The data can also be modified or deleted,...

9.4CVSS9.1AI score0.00803EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2023/09/27 11:23 a.m.31 views

New Survey Uncovers How Companies Are Confronting Data Security Challenges Head-On

Data security is in the headlines often, and it's almost never for a positive reason. Major breaches, new ways to hack into an organization's supposedly secure data, and other threats make the news because well, it's scary — and expensive. Data breaches, ransomware and malware attacks, and other...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/07/26 10:53 a.m.40 views

The Alarming Rise of Infostealers: How to Detect this Silent Threat

A new study conducted by Uptycs has uncovered a stark increase in the distribution of information stealing a.k.a. infostealer or stealer malware. Incidents have more than doubled in Q1 2023, indicating an alarming trend that threatens global organizations. According to the new Uptycs' whitepaper,...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2023/07/07 10:37 a.m.4 views

Close Security Gaps with Continuous Threat Exposure Management

CISOs, security leaders, and SOC teams often struggle with limited visibility into all connections made to their company-owned assets and networks. They are hindered by a lack of open-source intelligence and powerful technology required for proactive, continuous, and effective discovery and...

6.8AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/03 3:8 a.m.19 views

grants.extech.ru Cross Site Scripting vulnerability OBB-3377967

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/04/05 1:0 a.m.16 views

Fake ransomware demands payment without actually encrypting files

Fake it till you make it ransomware groups are trying to get rich off the backs of genuine ransomware authors. Why are they "fake it till you make it"? Because they dont actually create ransomware or compromise networks in any way. Theyre simply lying through their teeth and hoping that recipient...

6.7AI score
Exploits0
Wiz blog
Wiz blog
added 2023/03/09 1:55 p.m.6 views

Wiz enhances its industry leading data security solution with broader cloud data coverage and customizable platform capabilities

Wiz for DSPM, now generally available, helps customers reduce the time it takes to discover and fix cloud data exposure before it becomes a costly breach...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2023/02/08 11:1 a.m.3 views

How to Think Like a Hacker and Stay Ahead of Threats

To succeed as a cybersecurity analyst, you need to understand the traits, values, and thought processes of hackers, along with the tools they use to launch their attacks. During a webinar called The Hacker Mindset, a Red Team Researcher shared how you can use some of these tools for your own...

7.1AI score
Exploits0
hivepro
hivepro
added 2023/01/25 1:36 a.m.9 views

Hive Pro Recognized as a Leading Provider of Fraud and Breach Prevention Solutions in 2022

...

1.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/12/02 4:3 p.m.15 views

tang-prize.org Cross Site Scripting vulnerability OBB-3084036

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Lenovo
Lenovo
added 2022/04/18 3:28 p.m.5 views

Lenovo Notebook BIOS Vulnerabilities - Lenovo Support US

No description provided...

7.2CVSS7.1AI score0.02999EPSS
Exploits1
Akamai Blog
Akamai Blog
added 2022/01/19 2:0 p.m.11 views

We Need to Encrypt DNS: Here’s Another Compelling Reason Why

Encrypting DNS servers is a necessary next step in web security to prevent sensitive materials from being breached, thus improving user privacy and security...

6.9AI score
Exploits0
Rows per page
Query Builder