Lucene search
+L

334 matches found

The Hacker News
The Hacker News
added 2025/09/04 5:58 p.m.4 views

GhostRedirector Hacks 65 Windows Servers Using Rungan Backdoor and Gamshen IIS Module

Cybersecurity researchers have lifted the lid on a previously undocumented threat cluster dubbed GhostRedirector that has managed to compromise at least 65 Windows servers primarily located in Brazil, Thailand, and Vietnam. The attacks, per Slovak cybersecurity company ESET, led to the deployment...

8.1AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2025/08/18 3:0 p.m.12 views

Dissecting PipeMagic: Inside the architecture of a modular backdoor framework

Among the plethora of advanced attacker tools that exemplify how threat actors continuously evolve their tactics, techniques, and procedures TTPs to evade detection and maximize impact, PipeMagic, a highly modular backdoor used by Storm-2460 masquerading as a legitimate open-source ChatGPT Deskto...

7.8CVSS9.3AI score0.13475EPSS
Exploits4
GithubExploit
GithubExploit
added 2025/08/13 11:5 a.m.459 views

Exploit for Path Traversal in Rarlab Winrar

CVE-2025-8088 WinRAR Proof of Concept PoC-Exploit !PoCht...

8.8CVSS7.1AI score0.80906EPSS
Exploits35
The Hacker News
The Hacker News
added 2025/08/12 8:36 a.m.13 views

Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors

The Dutch National Cyber Security Centre NCSC-NL has warned of cyber attacks exploiting a recently disclosed critical security flaw impacting Citrix NetScaler ADC products to breach organizations in the country. The NCSC-NL said it discovered the exploitation of CVE-2025-6543 targeting several...

9.8CVSS7.7AI score0.9987EPSS
Exploits21
The Hacker News
The Hacker News
added 2025/08/11 3:8 p.m.13 views

Researchers Spot Surge in Erlang/OTP SSH RCE Exploits, 70% Target OT Firewalls

Malicious actors have been observed exploiting a now-patched critical security flaw impacting Erlang/Open Telecom Platform OTP SSH as early as beginning of May 2025, with about 70% of detections originating from firewalls protecting operational technology OT networks. The vulnerability in questio...

10CVSS8.3AI score0.97859EPSS
Exploits36
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-27059

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - USB: usb-storage: Prevent divide-by-0 error in isd200atacommand The isd200 sub-driver in usb-storage uses the HEADS and SECTORS values in the ATA ID information...

5.5CVSS6.6AI score0.00242EPSS
Exploits0References3
Securelist
Securelist
added 2025/07/25 7:0 a.m.14 views

ToolShell: a story of five vulnerabilities in Microsoft SharePoint

On July 19–20, 2025, various security companies and national CERTs published alerts about active exploitation of on-premise SharePoint servers. According to the reports, observed attacks did not require authentication, allowed attackers to gain full control over the infected servers, and were...

9.8CVSS9AI score0.99979EPSS
Exploits51
The Hacker News
The Hacker News
added 2025/07/18 6:23 p.m.15 views

UNG0002 Group Hits China, Hong Kong, Pakistan Using LNK Files and RATs in Twin Campaigns

Multiple sectors in China, Hong Kong, and Pakistan have become the target of a threat activity cluster tracked as UNG0002 aka Unknown Group 0002 as part of a broader cyber espionage campaign. "This threat entity demonstrates a strong preference for using shortcut files LNK, VBScript, and...

7.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/22 12:0 a.m.4 views

Lessons for Cybersecurity from the American Public Health System

The United States needs national institutions and frameworks to systematically collect cybersecurity data, measure outcomes, and coordinate responses across government and private sectors, similar to how public health systems track and address disease outbreaks...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/06/09 3:23 p.m.22 views

Over 70 Organizations Across Multiple Sectors Targeted by China-Linked Cyber Espionage Group

The reconnaissance activity targeting American cybersecurity company SentinelOne was part of a broader set of partially-related intrusions into several targets between July 2024 and March 2025. "The victimology includes a South Asian government entity, a European media organization, and more than...

9.4CVSS8.7AI score0.98557EPSS
Exploits3
Microsoft Secure
Microsoft Secure
added 2025/05/27 9:45 a.m.61 views

New Russia-affiliated actor Void Blizzard targets critical sectors for espionage

Executive summary: Void Blizzard is a new threat actor Microsoft Threat Intelligence has observed conducting espionage operations primarily targeting organizations that are important to Russian government objectives. These include organizations in government, defense, transportation, media, NGOs,...

7.4AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 7:29 p.m.6 views

CVE-2021-26951

An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::setlen is used without proper memory claiming, and this uninitialized memory is used for a user-provided Read operation, as demonstrated by Sectors::get...

9.8CVSS6.7AI score0.01728EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:5 p.m.11 views

CVE-2021-1983

Possible buffer overflow due to improper handling of negative data length while processing write request in VR service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...

8.4CVSS7.6AI score0.00157EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2025/05/01 9:27 a.m.18 views

DarkWatchman, Sheriff Malware Hit Russia and Ukraine with Stealth and Nation-Grade Tactics

Russian companies have been targeted as part of a large-scale phishing campaign that's designed to deliver a known malware called DarkWatchman. Targets of the attacks include entities in the media, tourism, finance and insurance, manufacturing, retail, energy, telecom, transport, and biotechnolog...

7.2AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2025/04/14 12:0 a.m.23 views

BPFDoor’s Hidden Controller Used Against Asia, Middle East Targets

A controller linked to BPF backdoor can open a reverse shell, enabling deeper infiltration into compromised networks. Recent attacks have been observed targeting the telecommunications, finance, and retail sectors across South Korea, Hong Kong, Myanmar, Malaysia, and Egypt...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2025/04/11 1:9 p.m.21 views

Paper Werewolf Deploys PowerModul Implant in Targeted Cyberattacks on Russian Sectors

The threat actor known as Paper Werewolf has been observed exclusively targeting Russian entities with a new implant called PowerModul. The activity, which took place between July and December 2024, singled out organizations in the mass media, telecommunications, construction, government entities...

7.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/03/29 3:34 p.m.15 views

CVE-2025-21874

In the Linux kernel, the following vulnerability has been resolved: dm-integrity: Avoid divide by zero in table status in Inline mode In Inline mode, the journal is unused, and journalsectors is zero. Calculating the journal watermark requires dividing by journalsectors, which should be done only...

5.5CVSS7AI score0.00187EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/03/28 3:0 a.m.2 views

SUSE CVE-2025-21874

In the Linux kernel, the following vulnerability has been resolved: dm-integrity: Avoid divide by zero in table status in Inline mode In Inline mode, the journal is unused, and journalsectors is zero. Calculating the journal watermark requires dividing by journalsectors, which should be done only...

5.5CVSS7.6AI score0.00187EPSS
Exploits0References3
CVE
CVE
added 2025/03/27 2:57 p.m.80 views

CVE-2025-21874

CVE-2025-21874 is a Linux kernel vulnerability in dm-integrity, where in Inline mode the journal is unused and journal_sectors can be zero. Calculating the journal watermark divides by journal_sectors, which can trigger an OOPS during a simple dmsetup table query. The issue was observed on some s...

5.5CVSS6.9AI score0.00187EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/03/27 2:57 p.m.6 views

CVE-2025-21874 dm-integrity: Avoid divide by zero in table status in Inline mode

In the Linux kernel, the following vulnerability has been resolved: dm-integrity: Avoid divide by zero in table status in Inline mode In Inline mode, the journal is unused, and journalsectors is zero. Calculating the journal watermark requires dividing by journalsectors, which should be done only...

5.5CVSS6AI score0.00187EPSS
Exploits0References6
Rows per page
Query Builder