Lucene search
K

4553 matches found

HackRead
HackRead
added 2026/02/25 4:40 p.m.7 views

ShinyHunters Claims Odido NL and Ben.nl Breach as Company Confirms Cyberattack

ShinyHunters claims 21 million records stolen in Odido NL and Ben.nl data breach as telecom company confirms cyberattack impacting customer contact system data...

5.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.13 views

PT-2026-21970

Name of the Vulnerable Software and Affected Versions OpenEMR versions prior to 8.0.0 Description OpenEMR is an electronic health records and medical practice management application. A flaw exists in the Immunization module where user-supplied patient id values are directly incorporated into SQL...

8.8CVSS6.2AI score0.00779EPSS
Exploits1References7
HackRead
HackRead
added 2026/02/23 3:21 p.m.4 views

PayPal Confirms Six-Month Data Exposure Linked to Loan System Error

PayPal has confirmed a data leak in its Working Capital loan system that exposed names, dates of birth, and Social Security numbers for six months...

5.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2026/02/23 8:2 a.m.6 views

A week in security (February 16 – February 22)

Last week on Malwarebytes Labs: Age verification vendor Persona left frontend exposed, researchers say Facebook ads spread fake Windows 11 downloads that steal passwords and crypto wallets AI-generated passwords are a security risk Intimate products maker Tenga spilled customer data Meta patents ...

6AI score
Exploits0
The Hacker News
The Hacker News
added 2026/02/20 10:30 a.m.10 views

Identity Cyber Scores: The New Metric Shaping Cyber Insurance in 2026

With one in three cyber-attacks now involving compromised employee accounts, insurers and regulators are placing far greater emphasis on identity posture when assessing cyber risk. For many organizations, however, these assessments remain largely opaque. Elements such as password hygiene,...

6.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/02/20 12:0 a.m.15 views

PayPal February 2026 Notice of Data Breach

PayPal has released this notice of data breach to its customers following a data exposure issue that spanned from July 1, 2025 to December 13, 2025...

5.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2026/02/19 11:48 a.m.8 views

Intimate products maker Tenga spilled customer data

Tenga confirmed reports published by several outlets that the company notified customers of a data breach. The Japanese manufacturer of adult products appears to have fallen victim to a phishing attack targeting one of its employees. Tenga reportedly wrote in the data breach notification: “An...

5.8AI score
Exploits0
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.8 views

GFI MailEssentials AI 安全漏洞

GFI MailEssentials AI is an open-source anti-spam and data breach protection software developed by GFI in the United States. Versions of GFI MailEssentials AI prior to version 22.4 contained a security vulnerability. This vulnerability stemmed from a storage-oriented cross-site scripting...

5.4CVSS5.6AI score0.00173EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.9 views

GFI MailEssentials AI 安全漏洞

GFI MailEssentials AI is an open-source anti-spam and data breach protection software developed by GFI in the United States. Versions of GFI MailEssentials AI prior to version 22.4 contained a security vulnerability. This vulnerability stemmed from a storage cross-site scripting vulnerability in...

5.4CVSS5.6AI score0.00163EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.9 views

GFI MailEssentials AI 安全漏洞

GFI MailEssentials AI is an open-source anti-spam and data breach protection software developed by GFI in the United States. Versions of GFI MailEssentials AI prior to version 22.4 contained a security vulnerability. This vulnerability stemmed from a storage cross-site scripting vulnerability in...

5.4CVSS5.6AI score0.00173EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.8 views

GFI MailEssentials AI 安全漏洞

GFI MailEssentials AI is an open-source anti-spam and data breach protection software developed by GFI in the United States. Versions of GFI MailEssentials AI prior to version 22.4 contained a security vulnerability. This vulnerability stemmed from a storage-based cross-site scripting issue in th...

5.4CVSS5.6AI score0.00173EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.9 views

GFI MailEssentials AI 安全漏洞

GFI MailEssentials AI is an open-source anti-spam and data breach protection software developed by GFI in the United States. Versions of GFI MailEssentials AI prior to version 22.4 contained a security vulnerability. This vulnerability stemmed from the process of creating advanced content filteri...

5.4CVSS5.6AI score0.00173EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/18 4:35 a.m.6 views

CVE-2025-12075

The Order Splitter for WooCommerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'wostroubleshooting' AJAX endpoint in all versions up to, and including, 5.3.5. This makes it possible for authenticated attackers, with Subscriber-level...

4.3CVSS5.5AI score0.00221EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/17 12:0 a.m.7 views

PT-2026-20232

Name of the Vulnerable Software and Affected Versions IBM DB2 Recovery Expert for LUW version 5.5 Interim Fix 002 Description The software reveals sensitive information within an environment variable. This disclosure could potentially assist in subsequent attacks against the system. Recommendatio...

5.3CVSS5.8AI score0.00197EPSS
Exploits0References5
Malwarebytes
Malwarebytes
added 2026/02/09 3:17 p.m.7 views

AI chat app leak exposes 300 million messages tied to 25 million users

An independent security researcher uncovered a major data breach affecting Chat & Ask AI, one of the most popular AI chat apps on Google Play and Apple App Store, with more than 50 million users. The researcher claims to have accessed 300 million messages from over 25 million users due to an...

5.6AI score
Exploits0
HackRead
HackRead
added 2026/02/06 2:55 p.m.7 views

Flickr Notifies Users of Data Breach After External Partner Security Flaw

Flickr says a third-party email vendor flaw may have exposed user names, emails, IP data, and activity logs,…...

5.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2026/02/03 11:48 a.m.22 views

AT&T breach data resurfaces with new risks for customers

When data resurfaces, it never comes back weaker. A newly shared dataset tied to AT&T shows just how much more dangerous an “old” breach can become once criminals have enough of the right details to work with. The dataset, privately circulated since February 2, 2026, is described as AT&T customer...

5.6AI score
Exploits0
Schneier on Security
Schneier on Security
added 2026/01/30 3:35 p.m.8 views

AIs Are Getting Better at Finding and Exploiting Security Vulnerabilities

From an Anthropic blog post: In a recent evaluation of AI models’ cyber capabilities, current Claude models can now succeed at multistage attacks on networks with dozens of hosts using only standard, open-source tools, instead of the custom tools needed by previous generations. This illustrates h...

5.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2026/01/30 2:23 p.m.8 views

Match, Hinge, OkCupid, and Panera Bread breached by ransomware group

The ShinyHunters ransomware group has claimed the theft of data containing 10 million records belonging to the Match Group and 14 million records from bakery-café chain Panera Bread. Claims posted by ShinyHunters The Match Group, that runs multiple popular online dating services like Tinder,...

5.8AI score
Exploits0
HackRead
HackRead
added 2026/01/26 1:22 p.m.10 views

Nike Data Breach Claims Surface as WorldLeaks Leaks 1.4TB of Files Online

As users continue to assess the Under Armour data breach, WorldLeaks, the rebranded version of the Hunters International…...

5.9AI score
Exploits0
Rows per page
Query Builder