Lucene search
K

8 matches found

Positive Technologies
Positive Technologies
added 2025/07/23 12:0 a.m.3 views

PT-2025-30612 · Undefined · Undefined

💥 UPDATE We now have a reliable vulnerable detection method check-based for CVE-2025-35770. 📌 Nearly 500 unique IP addresses are vulnerable, counting numerous governmental organizations. SharePoint ToolShell https://t.co/Rle2igcE3X...

6.9AI score
Exploits0References2
The Hacker News
The Hacker News
added 2024/10/08 10:58 a.m.16 views

GoldenJackal Target Embassies and Air-Gapped Systems Using Malware Toolsets

A little-known threat actor tracked as GoldenJackal has been linked to a series of cyber attacks targeting embassies and governmental organizations with an aim to infiltrate air-gapped systems using two disparate bespoke toolsets. Victims included a South Asian embassy in Belarus and a European...

7AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/08/15 4:0 p.m.18 views

Disrupting SEABORGIUM’s ongoing phishing operations

The Microsoft Threat Intelligence Center MSTIC has observed and taken actions to disrupt campaigns launched by SEABORGIUM, an actor Microsoft has tracked since 2017. SEABORGIUM is a threat actor that originates from Russia, with objectives and victimology that align closely with Russian state...

0.3AI score
Exploits0
CNVD
CNVD
added 2021/04/23 12:0 a.m.1 views

SQL Injection Vulnerability in ASRock Terminal Security Management System

ASRock Terminal Security Management System is an integrated terminal security product solution for governmental and enterprise organizations. The product integrates anti-virus, terminal security control, terminal access, terminal audit, peripheral control, EDR and other functions, and is compatib...

7.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2019/04/18 10:13 a.m.58 views

New DNS Hijacking Attacks

DNS hijacking isn't new, but this seems to be an attack of unprecedented scale: Researchers at Cisco's Talos security division on Wednesday revealed that a hacker group it's calling Sea Turtle carried out a broad campaign of espionage via DNS hijacking, hitting 40 different organizations. In the...

2.5AI score
Exploits0
Securelist
Securelist
added 2017/07/24 9:5 a.m.56 views

Spring Dragon – Updated Activity

Spring Dragon is a long running APT actor that operates on a massive scale. The group has been running campaigns, mostly in countries and territories around the South China Sea, since as early as 2012. The main targets of Spring Dragon attacks are high profile governmental organizations and...

7.1AI score
Exploits0
myhack58
myhack58
added 2015/06/16 12:0 a.m.19 views

Baidu, Alibaba, Tencent in the column: a“watering hole attack”using JSONP hijacking tracking user-vulnerability warning-the black bar safety net

Can you imagine if an authoritarian state to get a way to obtain user privacy information of the tool, and this tool can obtain the user in a specific site on the real name, email address, gender, birthday and phone number, etc., that would be what kind of scene? You can also imagine that an...

0.3AI score
Exploits0
ThreatPost
ThreatPost
added 2013/01/23 6:53 p.m.84 views

Attackers Exploit Java, Compromise Reporters Without Borders Site

The Java saga continued when unknown, and apparently well concealed goons exploited recent Java and Internet Explorer zero-days to compromise the website of the French-based, free-press advocacy group, Reporters Without Borders. The attack, which attempted to take advantage of the time-gulf that...

10CVSS7.8AI score0.97612EPSS
Exploits63References9
Rows per page
Query Builder