BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks

Germany's Federal Criminal Police Office aka BKA or the Bundeskriminalamt has unmasked the real identities of two of the key figures associated with the now-defunct REvil aka Sodinokibi ransomware-as-a-service RaaS operation. One of the threat actors, who went by the alias UNKN , functioned as a...

Fake Avast Website Targets Users With €499 Phishing Refund Scam

Fraudsters clone Avast’s website to target French users with a €499 phishing scam, using urgency tactics, live chat, and card validation to steal payment data...

Refund scam impersonates Avast to harvest credit card details

A fraudulent website dressed in Avast’s brand is tricking French-speaking users into handing over their full credit card details—card number, expiry date, and three-digit security code—under the cover story of processing a €499.99 refund that was never owed to them. The operation combines live ch...

Fedora 42 : glibc (2026-a2f3af8a86)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-a2f3af8a86 advisory. This update switches the currency symbol for Bulgaria to the Euro. Furthermore, it addresses several security vulnerabilities: A crash when wordexp ...

Fedora 43 : glibc (2026-205d532069)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-205d532069 advisory. This update switches the currency symbol for Bulgaria to the Euro. Furthermore, it addresses several security vulnerabilities: A crash when wordexp ...

European Authorities Dismantle €600 Million Crypto Fraud Network in Global Sweep

Nine people have been arrested in connection with a coordinated law enforcement operation that targeted a cryptocurrency money laundering network that defrauded victims of €600 million $688 million. According to a statement released by Eurojust today, the action took place between October 27 and ...

EUVD-2012-1117

Malware in sbrugna...

EUVD-2025-28812

Malicious code in bioql PyPI...

EUVD-2025-28708

Malicious code in bioql PyPI...

Eurojust Arrests 5 in €100M Cryptocurrency Investment Fraud Spanning 23 Countries

Law enforcement authorities in Europe have arrested five suspects in connection with an "elaborate" online investment fraud scheme that stole more than €100 million $118 million from over 100 victims in France, Germany, Italy, and Spain. According to Eurojust, the coordinated action saw searches ...

MAL-2025-41841 Malicious code in @espace-client-axafr/bonus-euro-plus (npm)

The package communicates with a domain associated with malicious activity...

Malicious code in @espace-client-axafr/bonus-euro-plus (npm)

The package communicates with a domain associated with malicious activity...

CVE-2025-9097

A vulnerability was found in Euro Information CIC banque et compte en ligne App 12.56.0 on Android. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.cicprod.bad. The manipulation leads to improper export of android application...

CVE-2025-9097 Euro Information CIC banque et compte en ligne App com.cic_prod.bad AndroidManifest.xml improper export of android application components

A vulnerability was found in Euro Information CIC banque et compte en ligne App 12.56.0 on Android. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.cicprod.bad. The manipulation leads to improper export of android application...

CVE-2025-9097

Summary: CVE-2025-9097 affects the Android app “Euro Information CIC banque et compte en ligne App” (version 12.56.0). The vulnerability is in the AndroidManifest.xml of the component com.cic_prod.bad , where an improper export of Android components is possible. This enables a local attacker to l...

Euro Information CIC banque et compte en ligne App 安全漏洞

Euro Information CIC banque et compte en ligne App is an official banking mobile application from Euro Information, France. A security vulnerability exists in Euro Information CIC banque et compte en ligne App version 12.56.0, which stems from an improperly exported com.cicprod.bad component that...

PT-2025-33623 · Euroinformation · Euro Information Cic Banque Et Compte En Ligne App

Name of the Vulnerable Software and Affected Versions: Euro Information CIC banque et compte en ligne App version 12.56.0 Description: A vulnerability exists due to improper export of android application components within the AndroidManifest.xml file of the com.cic prod.bad component. This allows...

CVE-2025-6257

The Euro FxRef Currency Converter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's currency shortcode in all versions up to, and including, 2.0.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

WordPress Euro FxRef Currency Converter plugin <= 2.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via currency Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via currency Shortcode vulnerability discovered by Gilang in WordPress Plugin Euro FxRef Currency Converter versions = 2.0.2...

CVE-2025-6257

The Euro FxRef Currency Converter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's currency shortcode in all versions up to, and including, 2.0.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...