Lucene search
K

22 matches found

Malwarebytes
Malwarebytes
added 2026/06/04 11:28 a.m.18 views

Travel scams are everywhere. Here’s how to avoid them

Planning a holiday should be exciting, fun, and not a cybersecurity risk. But booking flights, hotels, and rental properties often means sharing sensitive personal and financial information across multiple platforms. Combined with frequent travel scams and recurring data breaches in the travel an...

5.6AI score
Exploits0
OSV
OSV
added 2026/05/05 7:11 p.m.7 views

GHSA-G9CM-RXP7-6GV5 AVideo: HTML Injection in notifySubscribers.json.php Allows Platform-Branded Phishing Emails to Channel Subscribers

Summary objects/notifySubscribers.json.php takes the raw message POST parameter and passes it into sendSiteEmail, which substitutes it directly into an HTML email template via strreplace on the message placeholder and renders it with PHPMailer::msgHTML. There is no HTML sanitization, character...

6.4CVSS5.9AI score0.00156EPSS
Exploits0References4
Malwarebytes
Malwarebytes
added 2026/02/18 5:9 p.m.5 views

Betterment data breach might be worse than we thought

Betterment LLC is an investment advisor registered with US Securities and Exchange Commission SEC. The company disclosed a January 2026 incident in which an attacker used social engineering to access a third‑party platform used for customer communications, then abused it to send crypto‑themed...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-0596

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.0074EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/09/05 7:59 p.m.8 views

CVE-2025-10044 Keycloak: keycloak error_description injection on error pages

A flaw was found in Keycloak. Keycloak’s account console and other pages accept arbitrary text in the errordescription query parameter. This text is directly rendered in error pages without validation or sanitization. While HTML encoding prevents XSS, an attacker can craft URLs with misleading...

4.3CVSS0.00291EPSS
Exploits0References7
The Hacker News
The Hacker News
added 2025/06/10 4:46 p.m.21 views

FIN6 Uses AWS-Hosted Fake Resumes on LinkedIn to Deliver More_eggs Malware

The financially motivated threat actor known as FIN6 has been observed leveraging fake resumes hosted on Amazon Web Services AWS infrastructure to deliver a malware family called Moreeggs. "By posing as job seekers and initiating conversations through platforms like LinkedIn and Indeed, the group...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/04/04 4:54 a.m.15 views

CERT-UA Reports Cyberattacks Targeting Ukrainian State Systems with WRECKSTEEL Malware

The Computer Emergency Response Team of Ukraine CERT-UA has revealed that no less than three cyber attacks were recorded against state administration bodies and critical infrastructure facilities in the country with an aim to steal sensitive data. The campaign, the agency said, involved the use o...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/02/06 5:28 p.m.16 views

New scams could abuse brief USPS suspension of inbound packages from China, Hong Kong

I would be the last one to provide scammers with good ideas, but as a security provider, sometimes we need to think like criminals to stay ahead in the race. Recently, the US Postal Service USPS announced that it would suspend inbound packages from China and Hong Kong until further notice. That...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2024/04/24 1:36 p.m.31 views

Researchers Detail Multistage Attack Hijacking Systems with SSLoad, Cobalt Strike

Cybersecurity researchers have discovered an ongoing attack campaign that's leveraging phishing emails to deliver a malware called SSLoad. The campaign, codenamed FROZENSHADOW by Securonix, also involves the deployment of Cobalt Strike and the ConnectWise ScreenConnect remote desktop software...

6.8AI score
Exploits0
OSV
OSV
added 2024/02/05 8:44 p.m.37 views

CVE-2024-22208 phpMyFAQ sharing FAQ functionality can easily be abused for phishing purposes

phpMyFAQ is an Open Source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. The 'sharing FAQ' functionality allows any unauthenticated actor to misuse the phpMyFAQ application to send arbitrary emails to a large range of targets. The phpMyFAQ application has a...

6.5CVSS6.5AI score0.0074EPSS
Exploits1References4
The Hacker News
The Hacker News
added 2023/01/10 4:40 p.m.3 views

StrongPity Hackers Distribute Trojanized Telegram App to Target Android Users

The advanced persistent threat APT group known as StrongPity has targeted Android users with a trojanized version of the Telegram app through a fake website that impersonates a video chat service called Shagle. "A copycat website, mimicking the Shagle service, is used to distribute StrongPity's...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/10/19 12:3 p.m.20 views

A New Variant of FlawedGrace Spreading Through Mass Email Campaigns

Cybersecurity researchers on Tuesday took the wraps off a mass volume email attack staged by a prolific cybercriminal gang affecting a wide range of industries, with one of its region-specific operations notably targeting Germany and Austria. Enterprise security firm Proofpoint tied the malware...

0.6AI score
Exploits0
ThreatPost
ThreatPost
added 2021/03/19 6:18 p.m.28 views

Office 365 Phishing Attack Targets Financial Execs

A new phishing scam is on the rise, targeting executives in the insurance and financial services industries to harvest their Microsoft 365 credentials and launch business email compromise BEC attacks, according to a new report from Area 1 Security. These new, sophisticated attacks are aimed at...

0.2AI score
Exploits0References8
The Hacker News
The Hacker News
added 2021/02/19 9:18 a.m.59 views

Masslogger Trojan Upgraded to Steal All Your Outlook, Chrome Credentials

A credential stealer infamous for targeting Windows systems has resurfaced in a new phishing campaign that aims to steal credentials from Microsoft Outlook, Google Chrome, and instant messenger apps. Primarily directed against users in Turkey, Latvia, and Italy starting mid-January, the attacks...

0.7AI score
Exploits0
ThreatPost
ThreatPost
added 2020/08/28 7:38 p.m.74 views

Instagram 'Help Center' Phishing Scam Pilfers Credentials

Turkish-speaking cybercriminals are sending Instagram users seemingly legitimate messages from the social media company, with the aim of stealing their Instagram and email credentials. Researchers said that the campaign has been targeting hundreds of celebrities, startup business owners, and othe...

0.1AI score
Exploits0References10
ThreatPost
ThreatPost
added 2020/05/21 12:0 p.m.57 views

Crooks Tap Google Firebase in Fresh Phishing Tactic

A series of phishing campaigns using Google Firebase storage URLs have surfaced, showing that cybercriminals continue to leverage the reputation of Google’s cloud infrastructure to dupe victims and skate by secure email gateways. Google Firebase is a mobile and web application development platfor...

7.2AI score
Exploits0References7
ThreatPost
ThreatPost
added 2017/06/15 2:28 p.m.43 views

Nigerian BEC Scams Hit 500 Companies in 50 Countries

Nigerian cybercriminals targeting industrial firms have stolen a slew of sensitive technical drawings, network diagrams, cost estimates, and project plans already this year. The data, exfiltrated by a cocktail of different spyware programs, wasn’t stolen from just executives, but also operators,...

9.3CVSS0.5AI score0.97327EPSS
Exploits1References6
myhack58
myhack58
added 2016/07/11 12:0 a.m.52 views

Dropping Elephant hacker group using the old Windows vulnerability to implementation attacks-vulnerability warning-the black bar safety net

! As the old saying goes:don't judge people on. For the network of criminal organizations is the same,not only from its use of the vulnerability to determine a hacker organizations. According to foreign media reports,Kaspersky Lab's global research and analysis team has discovered a network of...

0.1AI score
Exploits0
ThreatPost
ThreatPost
added 2015/04/08 10:40 a.m.13 views

New Evasion Techniques Help AlienSpy RAT Spread Citadel Malware

Hackers have co-opted AlienSpy, a remote access tool, to deliver the Citadel banking Trojan and establish backdoors inside a number of critical infrastructure operations. AlienSpy is a descendent of the Adwind, Unrecom and Frutas Java-based remote access Trojans, according to security company...

7.4AI score
Exploits0References2
ThreatPost
ThreatPost
added 2015/03/20 1:49 p.m.13 views

Dridex Campaign Evades Detection with AutoClose Function

Pushers of the Dridex banking malware have gone old-school for some time now, moving the malware through phishing messages executed by macros in Microsoft Office documents. While macros are disabled by default since the release of Office 2007, the malware includes somewhat convincing social...

0.1AI score
Exploits0References3
Rows per page
Query Builder