Lucene search
K

41 matches found

Securelist
Securelist
added 2026/02/11 10:0 a.m.8 views

Spam and phishing in 2025

The year in figures 44.99% of all emails sent worldwide and 43.27% of all emails sent in the Russian web segment were spam 32.50% of all spam emails were sent from Russia Kaspersky Mail Anti-Virus blocked 144,722,674 malicious email attachments Our Anti-Phishing system thwarted 554,002,207 attemp...

6.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2026/01/12 9:4 p.m.8 views

Received an Instagram password reset email? Here’s what you need to know

Last week, many Instagram users began receiving unsolicited emails from the platform that warned about a password reset request. The message said: “Hi username, We got a request to reset your Instagram password. If you ignore this message, your password will not be changed. If you didn’t request ...

6.7AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-31248

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00557EPSS
Exploits0References1
Malwarebytes
Malwarebytes
added 2025/06/18 9:48 a.m.7 views

5 riskiest places to get scammed online

Scammers love your smartphone. They can text you fraudulent tracking links for packages you never bought. They can profess their empty love to you across your social media apps. They can bombard your email inbox with phishing attempts, impersonate a family member through a phone call, and even...

7.4AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 6:54 a.m.5 views

CVE-2024-36494

Due to missing input sanitization, an attacker can perform cross-site-scripting attacks and run arbitrary Javascript in the browser of other users. The login page at /cgi/slogin.cgi suffers from XSS due to improper input filtering of the -tsetup+-uuser parameter, which can only be exploited if th...

4.7CVSS4.7AI score0.0046EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:4 a.m.13 views

CVE-2023-5629

A CWE-601:URL Redirection to Untrusted Site ‘Open Redirect’ vulnerability exists that could cause disclosure of information through phishing attempts over HTTP...

8.2CVSS6.5AI score0.00423EPSS
Exploits0
NVD
NVD
added 2025/03/04 5:15 p.m.22 views

CVE-2025-27156

Tuleap is an Open Source Suite to improve management of software developments and collaboration. The mass emailing features do not sanitize the content of the HTML emails. A malicious user could use this issue to facilitate a phishing attempt or to indirectly exploit issues in the recipients mail...

5.4CVSS0.00242EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2025/01/06 11:30 a.m.10 views

From $22M in Ransom to +100M Stolen Records: 2025's All-Star SaaS Threat Actors to Watch

In 2024, cyber threats targeting SaaS surged, with 7,000 password attacks blocked per second just in Entra ID—a 75% increase from last year—and phishing attempts up by 58%, causing $3.5 billion in losses source: Microsoft Digital Defense Report 2024. SaaS attacks are increasing, with hackers ofte...

7.5AI score
Exploits0
Cvelist
Cvelist
added 2024/12/12 12:51 p.m.14 views

CVE-2024-36494 Reflected Cross Site Scripting

Due to missing input sanitization, an attacker can perform cross-site-scripting attacks and run arbitrary Javascript in the browser of other users. The login page at /cgi/slogin.cgi suffers from XSS due to improper input filtering of the -tsetup+-uuser parameter, which can only be exploited if th...

0.0046EPSS
Exploits0References2
CVE
CVE
added 2024/11/12 6:53 p.m.61 views

CVE-2024-33510

Fortinet CVE-2024-33510 targets FortiOS versions <=7.4.3, <=7.2.8, <=7.0.16 and FortiProxy <=7.4.3, <=7.2.9,

4.3CVSS7.1AI score0.00557EPSS
Exploits0References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2024/11/12 12:0 a.m.13 views

Fortinet Fortigate SSLVPN WEB UI Text injection (FG-IR-24-033)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-033 advisory. - An improper neutralization of special elements in output used by a downstream component 'Injection' vulnerability CWE-74 in...

4.3CVSS5.6AI score0.00557EPSS
Exploits0References2
Trellix
Trellix
added 2024/10/02 12:0 a.m.6 views

Cyber Threats Targeting the US Government During the Democratic National Convention

Cyber Threats Targeting the US Government During the Democratic National Convention By Anne An · October 2, 2024 Introduction Trellix global sensors detected increased threat activities during the days that the Democratic National Convention DNC was held in August 2024, culminating into a massive...

7.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/07/03 11:1 a.m.26 views

Affirm says Evolve Bank data breach also compromised some of its customers

Buy now, pay later payment specialist Affirm has warned that holders of its payment cards had their personal information exposed after a ransomware attack and data breach at Evolve Bank & Trust. In a form 8-K, submitted to the Securities and Exchange Commission SEC, Affirm states: “Because the...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2024/03/15 7:50 a.m.39 views

Google Introduces Enhanced Real-Time URL Protection for Chrome Users

Google on Thursday announced an enhanced version of Safe Browsing to provide real-time, privacy-preserving URL protection and safeguard users from visiting potentially malicious sites. "The Standard protection mode for Chrome on desktop and iOS will check sites against Google's server-side list o...

6.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/10/16 1:0 a.m.12 views

Customer data stolen from gaming cloud host Shadow

Cloud infrastructure provider Shadow has warned of the data theft of over 500,000 customers. The customers were informed by a breach notification which was posted online. Cloud is known in the gaming world and, among other things, allows gamers to play resource heavy games on lower-end devices, T...

7.2AI score
Exploits0
ICS
ICS
added 2023/01/05 12:0 p.m.184 views

#StopRansomware: Cuba Ransomware

Summary Actions to take today to mitigate cyber threats from ransomware: • Prioritize remediating known exploited vulnerabilities. • Train users to recognize and report phishing attempts. • Enable and enforce phishing-resistant multifactor authentication. Note: This joint Cybersecurity Advisory C...

10CVSS9.6AI score0.99512EPSS
Exploits77References82
Malwarebytes
Malwarebytes
added 2022/12/22 4:0 a.m.20 views

The Guardian hit by "ransomware attack"

On Tuesday December 20, 2022 British newspaper The Guardian experienced a major IT security incident that crippled a part of its IT infrastructure. The suspected cause is ransomware. In an online article the newspaper published an internal statement from the chief executive and the editor-in-chie...

Exploits0
ICS
ICS
added 2022/09/08 12:0 p.m.117 views

#StopRansomware: Vice Society

Note: This joint Cybersecurity Advisory CSA is part of an ongoing StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These StopRansomware advisories include recently and historically observed tactics, techniques,...

9.3CVSS10AI score0.99759EPSS
Exploits75References56
CISA
CISA
added 2022/06/30 12:0 a.m.11 views

#StopRansomware: MedusaLocker

CISA, the Federal Bureau of Investigation FBI, the Department of the Treasury Treasury, and the Financial Crimes Enforcement Network FinCEN have released a joint Cybersecurity Advisory CSA, StopRansomware: MedusaLocker, to provide information on MedusaLocker ransomware. MedusaLocker actors target...

2.3AI score
Exploits0References4
Rapid7 Blog
Rapid7 Blog
added 2022/04/20 3:10 p.m.22 views

2022 Cloud Misconfigurations Report: A Quick Look at the Latest Cloud Security Breaches and Attack Trends

Every year, Rapid7's team of cloud security experts and researchers put together a report to review data from publicly disclosed breaches that occurred over the prior year. The goal of this report is to unearth patterns and trends in cloud-related breaches and persistent exposures, so organizatio...

6.9AI score
Exploits0
Rows per page
Query Builder