42 matches found
CVE-2023-29656
An improper authorization vulnerability in Darktrace mobile app Android prior to version 6.0.15 allows disabled and low-privilege users to control "antigena" actionsblock/unblock traffic from the mobile application. This vulnerability could create a "shutdown", blocking all ingress or egress...
Salt Typhoon APT Targets Global Telecom and Energy Sectors, Says Darktrace
The China-linked Salt Typhoon APT group attacked a European telecom via a Citrix NetScaler vulnerability in July 2025, Darktrace reports. This follows past US Army and telecom breaches...
EUVD-2019-18968
Malware in sbrugna...
EUVD-2019-18967
Malware in sbrugna...
EUVD-2023-33196
Malicious code in bioql PyPI...
Cybercriminals Exploit Cheap VPS to Launch SaaS Hijacking Attacks
Darktrace researchers have discovered a new wave of attacks where cybercriminals use cheap Virtual Private Servers VPS to…...
CVE-2024-22854
DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 bundle version 61050 and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an...
CVE-2019-9596
Darktrace Enterprise Immune System before 3.1 allows CSRF via the /whitelisteddomains endpoint...
CVE-2019-9597
Darktrace Enterprise Immune System before 3.1 allows CSRF via the /config endpoint...
Darktrace AI Halts Thread Hijacking Attack Targeting Major Company
Darktrace AI detected and stopped a thread hijacking attack in real-time, preventing email account compromise and data theft.…...
Magnet Goblin Hacker Group Leveraging 1-Day Exploits to Deploy Nerbian RAT
A financially motivated threat actor called Magnet Goblin is swiftly adopting one-day security vulnerabilities into its arsenal in order to opportunistically breach edge devices and public-facing services and deploy malware on compromised hosts. "Threat actor group Magnet Goblin's hallmark is its...
CVE-2024-22854
DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 bundle version 61050 and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an...
Design/Logic Flaw
DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 bundle version 61050 and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an...
CVE-2024-22854
DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 bundle version 61050 and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an...
CVE-2024-22854
Darktrace Threat Visualizer contains a DOM-based HTML injection in the main page for versions 6.1.27 and earlier. A crafted URL visited by an authenticated user can trigger an open redirect and potential credential theft via an injected HTML form. Affected component: Darktrace Threat Visualizer m...
CVE-2024-22854
DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 bundle version 61050 and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an...
Darktrace Threat Visualizer Security Vulnerability
Darktrace Threat Visualizer is a component of one of Darktrace's security solutions for visualizing network threats and anomalous behavior. A security vulnerability exists in Darktrace Threat Visualizer version 6.1.27 and earlier. An attacker exploited the vulnerability to conduct open redirects...
PT-2024-19586 · Darktrace · Darktrace Threat Visualizer
Name of the Vulnerable Software and Affected Versions: Darktrace Threat Visualizer versions 6.1.27 and before Description: A DOM-based HTML injection vulnerability has been identified in the main page of Darktrace Threat Visualizer. This issue allows a remote attacker to craft a URL that, when...
CVE-2023-29656
An improper authorization vulnerability in Darktrace mobile app Android prior to version 6.0.15 allows disabled and low-privilege users to control "antigena" actionsblock/unblock traffic from the mobile application. This vulnerability could create a "shutdown", blocking all ingress or egress...
CVE-2023-29656
An improper authorization vulnerability in Darktrace mobile app Android prior to version 6.0.15 allows disabled and low-privilege users to control "antigena" actionsblock/unblock traffic from the mobile application. This vulnerability could create a "shutdown", blocking all ingress or egress...