Lucene search
K

10 matches found

Talos Blog
Talos Blog
added 2023/09/21 6:0 p.m.27 views

What’s the point of press releases from threat actors?

Welcome to this weeks edition of the Threat Source newsletter. As a former reporter, Ive seen my fair share of press releases. But one from a threat actor was definitely a new one for me last week. ALPHV aka BlackCat publicly took credit for a massive cyber attack against MGM, a resort, gambling...

7.3AI score
Exploits0
CNVD
CNVD
added 2023/07/16 12:0 a.m.16 views

ImpressCMS Cross-Site Scripting Vulnerability (CNVD-2023-59104)

ImpressCMS is a MySQL-based, modular content management system CMS. The system includes modules for press releases, forums and photo albums. A cross-site scripting vulnerability exists in ImpressCMS v1.4.5 and earlier versions, which stems from the lack of effective filtering and escaping of...

4.8CVSS6.3AI score0.00457EPSS
Exploits1References1
Pen Test Partners Blog
Pen Test Partners Blog
added 2023/01/24 6:35 a.m.14 views

OSINT your OT suppliers

There is much talk about supply chain security and reviewing your suppliers for cyber security. But how much information do they intentionally and unintentionally leak about your organisation online? We see this particularly in the industrial controls sector as its cyber security maturity is...

7.3AI score
Exploits0
CNVD
CNVD
added 2022/03/24 12:0 a.m.49 views

ImpressCMS path traversal vulnerability

ImpressCMS is a MySQL-based, modular content management system CMS. The system includes modules for press releases, forums, and photo albums. ImpressCMS is vulnerable to a path traversal vulnerability that can be exploited by an authenticated attacker to delete arbitrary files on the system by...

8.1CVSS2.9AI score0.03186EPSS
Exploits3References1
Wired Threat Level
Wired Threat Level
added 2022/02/28 12:0 p.m.8 views

An Internet Troll Gives Nonalcoholic Spirits Startups the Spins

From false press releases to misleading domain names, one man has allegedly gone to great lengths to sabotage his competitors...

3.1AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2021/06/11 12:0 a.m.7 views

Trend Micro and JC3 Study on Fraud, Phishing Targeting Japanese Users

This blog details the aspects of two major phishing fraud groups identified from the research and analysis. This study was also announced via separate press releases from Trend Micro Incorporated and JC3...

3.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/09/05 3:38 p.m.10 views

pia.ca.gov XSS vulnerability

Open Bug Bounty ID: OBB-289707 Description| Value ---|--- Affected Website:| pia.ca.gov Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/05/17 2:3 p.m.9 views

olympus.cz XSS vulnerability

Vulnerable URL: https://www.olympus.cz/corporate/cs/presscentre/pressreleases/pressreleasesoverview.jsp?c==%22%3E%3Cimg%20src=x%20onerror=prompt%28/OPENBUGBOUNTY/%29%3E=12 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability...

6.2AI score
Exploits0
The Hacker News
The Hacker News
added 2016/05/17 4:2 a.m.15 views

Ukrainian Hacker Admits Stealing Corporate Press Releases for $30 Million Profit

A 28-year-old Ukrainian hacker has pleaded guilty in the United States to stealing unpublished news releases and using that non-public information in illegal trading to generate more than $30 Million £20.8 Million in illicit profits. Vadym Iermolovych, 28, admitted Monday that he worked with two...

8.1AI score
Exploits0
ThreatPost
ThreatPost
added 2015/08/11 2:52 p.m.9 views

Hack That Fueled Insider Trading Ring Netted $100M

Hackers based in Ukraine and Russia allegedly broke into servers belonging to several newswires and passed sensitive information onto an underground trading ring as part of what’s being referred to as an unprecedented new level of insider trading. Prosecutors claimed Tuesday that corporate...

0.4AI score
Exploits0References2
Rows per page
Query Builder