CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Hacker News•added 2025/10/23 7:52 a.m.•4 views

'Jingle Thief' Hackers Exploit Cloud Infrastructure to Steal Millions in Gift Cards

Cybersecurity researchers have shed light on a cybercriminal group called Jingle Thief that has been observed targeting cloud environments associated with organizations in the retail and consumer services sectors for gift card fraud. "Jingle Thief attackers use phishing and smishing to steal...

6.6AI score

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-6575

Malware in sbrugna...

5.4CVSS6.4AI score0.00134EPSS

Exploits0References4

The Hacker News•added 2024/05/27 12:12 p.m.•13 views

Moroccan Cybercrime Group Steals Up to $100K Daily Through Gift Card Fraud

Microsoft is calling attention to a Morocco-based cybercrime group dubbed Storm-0539 that's behind gift card fraud and theft through highly sophisticated email and SMS phishing attacks. "Their primary motivation is to steal gift cards and profit by selling them online at a discounted rate," the...

7AI score

The Hacker News•added 2024/04/09 1:45 p.m.•19 views

Hackers Targeting Human Rights Activists in Morocco and Western Sahara

Human rights activists in Morocco and the Western Sahara region are the targets of a new threat actor that leverages phishing attacks to trick victims into installing bogus Android apps and serve credential harvesting pages for Windows users. Cisco Talos is tracking the activity cluster under the...

7.2AI score

Trend Micro Simply Security•added 2023/09/21 12:0 a.m.•14 views

Cybercriminals Exploit the Moroccan Tragedy in New Scam Campaign

This blog entry details a scheme that exploits the recent Morocco earthquake by impersonating the domain name of a well-known humanitarian organization for financial fraud...

7AI score

OSV•added 2023/07/10 5:21 p.m.•2 views

CLSA-2023-1689009659 Update of alt-php

Backport the package from Ubuntu 18.04: New upstream version 2023c: - Egypt now uses DST again, from April through October. - This year Morocco springs forward April 23, not April 30. - Palestine delays the start of DST this year. - Much of Greenland still uses DST from 2024 on. The contents of...

OSV•added 2023/07/06 9:37 p.m.•4 views

CLSA-2023-1688679460 Update of tzdata

Upgrade to tzdata-2023c code and data are identical to 2023a - Egypt now uses DST again, from April through October. - This year Morocco springs forward April 23, not April 30. - Palestine delays the start of DST this year. - Much of Greenland still uses DST from 2024 on. - America/Yellowknife...

CloudLinux•added 2023/07/06 9:37 p.m.•32 views

Update of tzdata

7AI score

OSV•added 2023/07/06 9:0 p.m.•1 views

CLSA-2023-1688677210 Update of tzdata

OSV•added 2023/07/06 8:38 p.m.•3 views

CLSA-2023-1688675879 Update of tzdata

OSV•added 2023/07/06 8:4 p.m.•2 views

CLSA-2023-1688673886 Update of tzdata

Rockylinux•added 2023/05/17 1:10 a.m.•20 views

tzdata bug fix and enhancement update

An update is available for tzdata. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The tzdata packages contain data files with rules for various time zones. The...

6.9AI score

Openbugbounty•added 2023/05/04 12:12 p.m.•11 views

morocco-holidays-tours.com Cross Site Scripting vulnerability OBB-3293252

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6AI score

The Hacker News•added 2023/04/17 4:6 p.m.•4 views

New QBot Banking Trojan Campaign Hijacks Business Emails to Spread Malware

A new QBot malware campaign is leveraging hijacked business correspondence to trick unsuspecting victims into installing the malware, new findings from Kaspersky reveal. The latest activity, which commenced on April 4, 2023, has primarily targeted users in Germany, Argentina, Italy, Algeria, Spai...

6.7AI score

Debian•added 2023/03/24 12:20 p.m.•8 views

[SECURITY] [DLA 3366-1] tzdata new timezone database

------------------------------------------------------------------------- Debian LTS Advisory DLA-3366-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort March 24, 2023 https://wiki.debian.org/LTS -...

6.8AI score

HackRead•added 2023/01/28 5:2 p.m.•22 views

Extradited Alleged ShinyHunters Hacker Pleads Not Guilty in US Court

By Habiba Rashid The alleged member of the ShinyHunters group, Sebastian Raoult, is a French citizen who was arrested in Morocco in 2022 and extradited to the U.S. this week. This is a post from HackRead.com Read the original post: Extradited Alleged ShinyHunters Hacker Pleads Not Guilty in US Co...

3AI score

Hive Pro Threat Advisories•added 2022/09/12 11:39 a.m.•18 views

Dangerous Savanna campaign attacked African financial institutions

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary For the past two years, a malicious campaign known as DangerousSavanna has been targeting various financial service firms in Africa. The attackers use spear-phishing to infiltrate financial institution...

5.3AI score

The Hacker News•added 2021/11/11 8:0 a.m.•37 views

Iran's Lyceum Hackers Target Telecoms, ISPs in Israel, Saudi Arabia, and Africa

A state-sponsored threat actor allegedly affiliated with Iran has been linked to a series of targeted attacks aimed at internet service providers ISPs and telecommunication operators in Israel, Morocco, Tunisia, and Saudi Arabia, as well as a ministry of foreign affairs MFA in Africa, new finding...

7.6AI score