Lucene search
K

33 matches found

GithubExploit
GithubExploit
added 2026/04/30 7:12 a.m.64 views

Agent389

Agent389 Agent389 is a professional, high-fidelity LDAP inje...

5.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/04/23 12:0 a.m.6 views

MCP Pitfall Lab: Exposing Developer Pitfalls in MCP Tool Server Security under Multi-Vector Attacks

Model Context Protocol MCP is increasingly adopted for tool-integrated LLM agents, but its multi-layer design and third-party server ecosystem expand risks across tool metadata, untrusted outputs, cross-tool flows, multimodal inputs, and supply-chain vectors. Existing MCP benchmarks largely measu...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/04/19 12:0 a.m.18 views

GuardPhish: Securing Open-Source LLMs from Phishing Abuse

The rapid adoption of open-source Large Language Models LLMs in offline and enterprise environments has introduced a largely unexamined security risk like susceptibility to adversarial phishing prompts under static safety configurations. In this work, we systematically investigate this...

5.8AI score
Exploits0
Imperva Blog
Imperva Blog
added 2026/03/15 1:4 p.m.7 views

Why Most DDoS Protection Fails: Solving for Continuity and Resilience

Most organisations assume DDoS Distributed denial of service protection is a box they’ve already ticked. If traffic spikes or an attack starts, the thinking goes, their provider will absorb it and move on. But in the real world it can be a different story. Many incidents aren’t caused by the scal...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/01/18 12:0 a.m.3 views

Abusing the Internet of Medical Things: Evaluating Threat Models and Forensic Readiness for Multi-Vector Attacks on Connected Healthcare Devices

Individuals experiencing interpersonal violence IPV, who depend on medical devices, represent a uniquely vulnerable population as healthcare technologies become increasingly connected. Despite rapid growth in MedTech innovation and "health-at-home" ecosystems, the intersection of MedTech...

5.4AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2025/10/27 12:0 a.m.4 views

Active Water Saci Campaign Spreading Via WhatsApp Features Multi-Vector Persistence and Sophisticated C&C

Continuous investigation on the Water Saci campaign reveals innovative email-based C&C system, multi-vector persistence, and real-time command capabilities that allow attackers to orchestrate coordinated botnet operations, gather detailed campaign intelligence, and dynamically control malware...

7.2AI score
Exploits0
GithubExploit
GithubExploit
added 2025/10/04 7:11 a.m.663 views

Exploit for Incomplete List of Disallowed Inputs in Fasterxml Jackson-Databind

🔥 Jackson RCE Exploiter - Enterprise Bypass Edition !Versi...

9.8CVSS9AI score0.45205EPSS
Exploits8
The Hacker News
The Hacker News
added 2025/09/25 11:30 a.m.5 views

Tech Overtakes Gaming as Top DDoS Attack Target, New Gcore Radar Report Finds

The latest Gcore Radar report analyzing attack data from Q1–Q2 2025, reveals a 41% year-on-year increase in total attack volume. The largest attack peaked at 2.2 Tbps, surpassing the 2 Tbps record in late 2024. Attacks are growing not only in scale but in sophistication, with longer durations,...

6.6AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2025/05/21 4:0 p.m.24 views

Lumma Stealer: Breaking down the delivery techniques and capabilities of a prolific infostealer

Over the past year, Microsoft observed the persistent growth and operational sophistication of Lumma Stealer, an infostealer malware used by multiple financially motivated threat actors to target various industries. Our investigation into Lumma Stealer’s distribution infrastructure reveals a...

7.9AI score
Exploits0
Imperva Blog
Imperva Blog
added 2023/11/22 6:55 p.m.7 views

Measures Healthcare Providers Can Take to Mitigate Disruptions

Earlier this month, an internet outage affected public healthcare clusters in Singapore, including major hospitals and polyclinics, lasting more than seven hours from 9:20 am. Investigations identified that a distributed denial-of-service DDoS attack was the cause of the online service outage. DD...

7.6AI score
Exploits0
Qualys Blog
Qualys Blog
added 2023/02/15 11:34 p.m.68 views

Forta GoAnywhere Zero-Day Exploited By Threat Actors

On February 1st, 2023, Forta released an advisory behind an auth wall notifying their customers of a remote code execution zero-day exploit affecting their GoAnywhere Managed File Transfer MFT application. This was picked up by Brian Krebs, an investigative journalist who published this on his...

0.5AI score0.99999EPSS
Exploits12
Imperva Blog
Imperva Blog
added 2022/10/06 12:48 p.m.13 views

Massive Multi-Vector 1.37 Tbps DDoS Attack Mitigated by Imperva DDoS Protection

On July 22, an Imperva customer was targeted by a network DDoS attack that reached a maximum bandwidth of 1.37 trillion bits per second Tbps, making it one of the largest attacks that Imperva has stopped and one of the larger DDoS attacks on record. The attack lasted a little over two hours in...

0.7AI score
Exploits0
Qualys Blog
Qualys Blog
added 2022/08/16 11:9 p.m.65 views

AsyncRAT C2 Framework: Overview, Technical Analysis & Detection

In this blog we describe the AsyncRAT C2 command & control Framework, which allows attackers to remotely monitor and control other computers over a secure encrypted link. We provide an overview of this threat, a technical analysis, and a method of detecting the malware using Qualys Multi-Vector...

8.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/08/09 12:0 p.m.17 views

Can your EDR handle a ransomware attack? 6-point checklist for an anti-ransomware EDR

Most cybersecurity experts agree that having Endpoint Detection and Response software is essential to fighting ransomware today--but not every EDR is equal. Businesses, especially small-to-medium sized ones with limited budget or IT resources, need to make sure that their EDR is cost-effective,...

7.2AI score
Exploits0
Qualys Blog
Qualys Blog
added 2022/08/01 12:0 p.m.36 views

Here’s a Simple Script to Detect the Stealthy Nation-State BPFDoor

In this blog, the Qualys Research Team explains the mechanics of a Linux malware variant named BPFdoor. We then demonstrate the efficacy of Qualys Custom Assessment and Remediation to detect it, and Qualys Multi-Vector EDR to protect against it. BPFDoor is a Linux/Unix backdoor that allows threat...

7.8AI score
Exploits0
Akamai Blog
Akamai Blog
added 2022/04/21 9:33 p.m.15 views

Australia Experiences Massive Spike in WAF Multi-Vector, DDoS Attacks

With web applications under increased attacks, Akamai has analyzed data points for web application firewall WAF multi-vector and DDoS attacks between April 2021 and March 2022 to determine the severity of the situation in Australia...

3.8AI score
Exploits0
Qualys Blog
Qualys Blog
added 2022/04/04 1:0 p.m.15 views

EDR Is Dead. Long Live Multi-Vector EDR.

News of EDR’s demise has been greatly exaggerated. Fact is: older approaches to EDR have to move over. There’s a new solution now: Multi-Vector EDR. This blog reviews the highlights of our latest release of this critically important app on the Qualys Cloud Platform. Although it now seems like a...

7.4AI score
Exploits0
Qualys Blog
Qualys Blog
added 2022/03/31 11:34 p.m.28 views

Qualys Multi-Vector EDR Excels in 2022 MITRE ATT&CK Evaluation

MITRE evaluated Qualys Multi-Vector EDR against competing alternatives, and the results are in. This blog reviews the basics of MITRE ATT&CK evaluation, how our EDR solution performed, and how to interpret the ratings. MITRE Engenuity has released the results of round 4 of its ATT&CK Evaluations...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/03/15 10:3 a.m.6 views

Rising Demand for DDoS Protection Software Market By 2020-2028

Distributed Denial of Service DDoS attack is a malicious form of attack that disrupts the regular network traffic by overwhelming the website with more traffic than the server can handle. The main aim of this kind of cyberattack is to render the website inoperable. Over recent years, these kinds ...

5.9AI score
Exploits0
Akamai Blog
Akamai Blog
added 2021/01/26 2:0 p.m.37 views

PART I: Retrospective 2020: DDoS Was Back -- Bigger and Badder Than Ever Before

Never before has the risk of a distributed denial-of-service DDoS attack been higher. In 2020, we saw record-breaking attacks, a DDoS extortion campaign impacting thousands of organizations globally, more emergency customer turnups, and more Akamai customers attacked than any year on record -- an...

6.9AI score
Exploits0
Rows per page
Query Builder