Lucene search
K

663 matches found

Krebs on Security
Krebs on Security
added 2 days ago5 views

Felons, Fraudsters Flog Offensive Cybersecurity Startup

A cybersecurity startup dangling millions of dollars to acquire zero-day security vulnerabilities in popular software is run by a pair of far-right conspiracy theorists and convicted felons whose most recent ventures included fake intelligence companies and a now-defunct AI-based lobbying platfor...

5.9AI score
Exploits0
The Hacker News
The Hacker News
added 2026/07/02 6:54 p.m.12 views

Google Disrupts NetNut Residential Proxy Network Spanning 2 Million Home Devices

Google has significantly degraded NetNut , one of the biggest networks that turns home devices into rented relays for other people's traffic. Working with the FBI, Lumen, and others, Google's Threat Intelligence Group GTIG said this week it had reduced the network's pool of usable devices by...

6AI score
Exploits0
CVE
CVE
added 2026/07/02 7:33 a.m.19 views

CVE-2026-9563

Eclipse Parsson JSON parser did not enforce a default maximum on parsed characters before 1.1.8, allowing DoS from attacker-controlled JSON via very large documents. The fixed version, Parsson 1.1.8, adds a configurable limit with a default of 15 million parser-consumed characters. Affected: Ecli...

7.5CVSS5.8AI score0.00366EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2026/07/01 5:46 a.m.15 views

Azure CLI Password Spray Hits at Least 78 Microsoft Accounts in 81M+ Attempts

Cybersecurity researchers have warned of a "massive, ongoing, automated password spray attack" aimed at Microsoft's Azure command-line interface CLI, compromising dozens of accounts in the process. The activity, per Huntress, originates from an IPv6 address range 2a0a:d683::/32 controlled by...

5.8AI score
Exploits0
The Hacker News
The Hacker News
added 2026/06/25 2:12 p.m.49 views

Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability

An analysis of a popular Google Chrome ad block extension for YouTube has uncovered the ability to execute arbitrary JavaScript code. According to Island, the extension, named Adblock for YouTube, has more than 10 million installs and carries a Featured badge on the Chrome Web Store. The extensio...

6.3AI score
Exploits0
The Hacker News
The Hacker News
added 2026/06/24 3:59 p.m.8 views

Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered

A coordinated law enforcement operation, in partnership with private sector companies, including Bitdefender, Bitsight, ESET, and Microsoft, has resulted in the takedown of criminal infrastructure powering Amadey and StealC. "The main common goal was to disrupt the 'assembly lines' cybercriminals...

5.8AI score
Exploits0
The Hacker News
The Hacker News
added 2026/06/10 7:37 a.m.11 views

Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards

On June 9, Anthropic released Claude Fable 5, the most capable model it has ever made, generally available. It also did something unusual: it shipped one model as two products, split not by capability but by a layer of safety classifiers. Fable 5 goes to the public. Its twin, Claude Mythos 5, the...

8.8CVSS6.6AI score0.01915EPSS
Exploits3
OSV
OSV
added 2026/06/09 7:25 p.m.8 views

MINI-CR67-2PPM-VRF2

Bulletin has no description...

7.5CVSS5.2AI score0.00341EPSS
Exploits0
Malwarebytes
Malwarebytes
added 2026/06/09 1:2 p.m.23 views

Scammers love Meta, according to Lloyds Bank

Scammers go phishing wherever the victims are. In the UK, that means Facebook, Instagram, and WhatsApp, according to Lloyds Bank. It just revealed that Meta platforms account for over two thirds of fraud reports made by its customers. Writing in The Sunday Times, Lloyds Bank's fraud prevention...

5.5AI score
Exploits0
HackRead
HackRead
added 2026/06/09 11:25 a.m.8 views

Maine Govt Portal Lists 10M Discord Data Breach Notice, But Filing Shows Red Flags

Maine Attorney General portal lists a Discord breach notice claiming 10 million affected, but odd filing details leave it unverified and questionable...

5.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/08 8:59 p.m.15 views

CVE-2026-45149

A flaw was found in the brace-expansion library. This vulnerability allows an attacker to cause a Denial of Service DoS by providing a large numeric range for expansion. The library allocates excessive memory to generate all intermediate elements before applying the maximum limit, leading to high...

7.5CVSS6.5AI score0.00278EPSS
Exploits0References4
HackRead
HackRead
added 2026/06/04 5:10 p.m.30 views

iFood Confirms Data Breach Affecting 1.2 Million Users in Brazil

iFood confirms a data breach affecting 1.2 million customers in Brazil, while hackers on BreachForums claim the actual theft is much larger...

5.8AI score
Exploits0
The Hacker News
The Hacker News
added 2026/05/31 12:22 p.m.19 views

Dutch Authorities Dismantle Botnet Linked to 17 Million Infected Devices

Dutch authorities have announced the takedown of a botnet that enslaved millions of infected devices, including computers, tablets, smartphones, and IoT devices, to carry out malicious attacks. The bot network, per the Dutch Politie and the National Cyber Security Center NCSC, consisted of at lea...

5.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2026/05/28 12:4 p.m.13 views

Carnival confirms data breach impacting nearly 6 million

Carnival Corporation, parent of Carnival Cruise Line, is sending out fresh “Notice of Cybersecurity Event” letters dated May 27, 2026. If you feel like you've read that sentence before, you're not imagining things. Over the last decade, the world’s largest cruise operator has accumulated a worryi...

5.7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/26 12:0 a.m.11 views

PT-2026-47109

Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a Denial of Service DoS. This occurs when the attacker uses the command line option "-ImgDir" on a directory that contains 1048576 files...

5.6AI score
Exploits0References7
HackRead
HackRead
added 2026/05/25 1:20 a.m.17 views

Hacker Selling 340 Million OnlyFans User Records Built From Old Breaches

A hacker is selling a 340M OnlyFans user database allegedly built by matching old breach data and public profiles to real OnlyFans accounts...

5.8AI score
Exploits0
HackRead
HackRead
added 2026/05/23 11:16 a.m.14 views

RondoDox Botnet Exploits Critical 2018 Vulnerability to Hijack ASUS Routers

Cybersecurity firm VulnCheck reveals hackers are using a critical 2018 vulnerability to bypass authentication and hack over a million ASUS routers...

5.8AI score
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in openjpeg2

Integer overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a Denial of Service DoS attack. This occurs when the attacker uses the command line option "-ImgDir" on a directory that contains 1048576 files...

5.5CVSS7AI score0.0156EPSS
Exploits1References2
The Hacker News
The Hacker News
added 2026/05/19 4:38 p.m.14 views

Trapdoor Android Ad Fraud Scheme Hit 659 Million Daily Bid Requests Using 455 Apps

Cybersecurity researchers have disclosed details of a new ad fraud and malvertising operation dubbed Trapdoor targeting Android device users. The activity, per HUMAN's Satori Threat Intelligence and Research Team, encompassed 455 malicious Android apps and 183 threat actor-owned command-and-contr...

5.8AI score
Exploits0
Securelist
Securelist
added 2026/05/18 12:0 p.m.16 views

IT threat evolution in Q1 2026. Mobile statistics

IT threat evolution in Q1 2026. Mobile statistics IT threat evolution in Q1 2026. Non-mobile statistics In the third quarter of 2025, we updated the methodology for calculating statistical indicators based on the Kaspersky Security Network. These changes affected all sections of the report except...

5.8AI score
Exploits0
Rows per page
Query Builder