Lucene search
+L

27 matches found

The Hacker News
The Hacker News
added 2026/04/03 5:34 p.m.9 views

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

A China-aligned threat actor has set its sights on European government and diplomatic organizations since mid-2025, following a two-year period of minimal targeting in the region. The campaign has been attributed to TA416 , a cluster of activity that overlaps with DarkPeony, RedDelta, Red Lich,...

10CVSS7.2AI score0.99406EPSS
Exploits18
The Hacker News
The Hacker News
added 2025/10/22 5:21 p.m.9 views

Iran-Linked MuddyWater Targets 100+ Organizations in Global Espionage Campaign

The Iranian nation-state group known as MuddyWater has been attributed to a new campaign that has leveraged a compromised email account to distribute a backdoor called Phoenix to various organizations across the Middle East and North Africa MENA region, including over 100 government entities. The...

7AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-21679

Malicious code in bioql PyPI...

4.2CVSS5AI score0.00335EPSS
Exploits1References1
HackRead
HackRead
added 2025/09/29 5:37 p.m.7 views

Dutch Teens Arrested Over Alleged Spying for Pro-Russian Hackers

Dutch authorities arrest two teens recruited by pro-Russian hackers for spying missions. Learn how Russia is using disposable agents for sabotage across Europe...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 9:37 a.m.9 views

CVE-2024-24255

A Race Condition discovered in geofence.cpp and missionfeasibilitychecker.cpp in PX4 Autopilot 1.14 and earlier allows attackers to send drones on unintended missions...

4.2CVSS6.8AI score0.00335EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2024/05/23 11:14 a.m.30 views

Inside Operation Diplomatic Specter: Chinese APT Group's Stealthy Tactics Exposed

Governmental entities in the Middle East, Africa, and Asia are the target of a Chinese advanced persistent threat APT group as part of an ongoing cyber espionage campaign dubbed Operation Diplomatic Specter since at least late 2022. "An analysis of this threat actor's activity reveals long-term...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2024/05/15 12:29 p.m.15 views

Turla Group Deploys LunarWeb and LunarMail Backdoors in Diplomatic Missions

An unnamed European Ministry of Foreign Affairs MFA and its three diplomatic missions in the Middle East were targeted by two previously undocumented backdoors tracked as LunarWeb and LunarMail. ESET, which identified the activity, attributed it with medium confidence to the Russia-aligned...

7.8AI score
Exploits0
NVD
NVD
added 2024/02/06 11:15 p.m.31 views

CVE-2024-24255

A Race Condition discovered in geofence.cpp and missionfeasibilitychecker.cpp in PX4 Autopilot 1.14 and earlier allows attackers to send drones on unintended missions...

4.2CVSS4.5AI score0.00335EPSS
Exploits1References1
Prion
Prion
added 2024/02/06 11:15 p.m.131 views

Race condition

A Race Condition discovered in geofence.cpp and missionfeasibilitychecker.cpp in PX4 Autopilot 1.14 and earlier allows attackers to send drones on unintended missions...

3.6CVSS7.1AI score0.00335EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/02/06 12:0 a.m.29 views

CVE-2024-24255

A Race Condition discovered in geofence.cpp and missionfeasibilitychecker.cpp in PX4 Autopilot 1.14 and earlier allows attackers to send drones on unintended missions...

4.8AI score0.00335EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/02/06 12:0 a.m.7 views

PX4 Drone Autopilot Security Vulnerability

PX4 Drone Autopilot is a PX4 Drone Autopilot for Drones open source. A security vulnerability exists in PX4 Autopilot version 1.14 and earlier. An attacker exploited the vulnerability to send a drone on an unexpected mission...

4.2CVSS6.8AI score0.00335EPSS
Exploits1References2
The Hacker News
The Hacker News
added 2024/01/29 6:59 a.m.26 views

NSA Admits Secretly Buying Your Internet Browsing Data without Warrants

The U.S. National Security Agency NSA has admitted to buying internet browsing records from data brokers to identify the websites and apps Americans use that would otherwise require a court order, U.S. Senator Ron Wyden said last week. "The U.S. government should not be funding and legitimizing a...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/06/21 11:29 a.m.3 views

Chinese Hacker Group 'Flea' Targets American Ministries with Graphican Backdoor

Foreign affairs ministries in the Americas have been targeted by a Chinese state-sponsored actor named Flea as part of a recent campaign that spanned from late 2022 to early 2023. The cyber attacks, per Broadcom's Symantec, involved a new backdoor codenamed Graphican. Some of the other targets...

7.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/05 11:9 p.m.14 views

missions-resplandor.com Cross Site Scripting vulnerability OBB-3394738

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/23 1:56 p.m.44 views

North Korean Kimsuky Hackers Strike Again with Advanced Reconnaissance Malware

The North Korean advanced persistent threat APT group known as Kimsuky has been observed using a piece of custom malware called RandomQuery as part of a reconnaissance and information exfiltration operation. "Lately, Kimsuky has been consistently distributing custom malware as part of...

6.7AI score
Exploits0
hivepro
hivepro
added 2022/07/27 5:9 a.m.17 views

APT29 utilizes cloud storage service to deliver malicious payloads

Threat Level Actor Report For a detailed advisory, download the pdf file here Summary APT29, a cyber espionage gang uses cloud storage services such as Google Drive and Dropbox to distribute malware to compromised systems. The gang used a phishing campaign that targeted several Western diplomatic...

1.2AI score
Exploits0
The Hacker News
The Hacker News
added 2022/07/20 4:3 a.m.23 views

Russian Hackers Using DropBox and Google Drive to Drop Malicious Payloads — The Hacker News

The Russian state-sponsored hacking collective known as APT29 has been attributed to a new phishing campaign that takes advantage of legitimate cloud services like Google Drive and Dropbox to deliver malicious payloads on compromised systems. "These campaigns are believed to have targeted several...

0.3AI score
Exploits0
ThreatPost
ThreatPost
added 2022/03/24 2:8 p.m.108 views

Chinese APT Combines Fresh Hodur RAT with Complex Anti-Detection

The Chinese advanced persistent threat APT Mustang Panda a.k.a. Temp.Hex, HoneyMyte, TA416 or RedDelta has upgraded its espionage campaign against diplomatic missions, research entities and internet service providers ISPs – largely in and around Southeast Asia. For one thing, the APT has deployed...

9AI score
Exploits0References10
Kitploit
Kitploit
added 2021/10/06 8:30 p.m.28 views

Smersh - A Pentest Oriented Collaborative Tool Used To Track The Progress Of Your Company'S Missions

Smersh is a pentest oriented collaborative tool used to track the progress of your company's missions and generate rapport. Preview front Angular: Documentation All information is available at the following address: https://docs.smersh.app How to contribute ? Just fork repository then create...

7AI score
Exploits0References7
The Hacker News
The Hacker News
added 2020/11/12 10:11 a.m.62 views

MISSIONS — The Next Level of Interactive Developer Security Training

If organizations want to get serious about software security, they need to empower their engineers to play a defensive role against cyberattacks as they craft their code. The problem is, developers haven't had the most inspiring introduction to security training over the years, and anything that...

7.4AI score
Exploits0
Rows per page
Query Builder