257 matches found
Russian hacking group targets home and small office routers to spy on users
British security officials found that a group linked to the Russian military is spying on users of compromised Small Office/Home Office SOHO routers in a broad cyber espionage campaign. A Microsoft blog goes into the technical details of these attacks. The group, which we’ll refer to as APT28, bu...
Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign
The Russia-linked threat actor known as APT28 aka Forest Blizzard has been linked to a new campaign that has compromised insecure MikroTik and TP-Link routers and modified their settings to turn them into malicious infrastructure under their control as part of a cyber espionage campaign since at...
SOHO router compromise leads to DNS hijacking and adversary-in-the-middle attacks
In this article 1. DNS hijacking attack chain: From compromised devices to AiTM and other follow-on activity 2. Mitigation and protection guidance 3. Microsoft Defender detection and hunting guidance Executive summary Forest Blizzard, a threat actor linked to the Russian military, has been...
SOHO router compromise leads to DNS hijacking and adversary-in-the-middle attacks
In this article 1. DNS hijacking attack chain: From compromised devices to AiTM and other follow-on activity 2. Mitigation and protection guidance 3. Microsoft Defender detection and hunting guidance Executive summary Forest Blizzard, a threat actor linked to the Russian military, has been...
CVE-2025-69368
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GT3themes SOHO - Photography WordPress Theme soho allows DOM-Based XSS.This issue affects SOHO - Photography WordPress Theme: from n/a through = 3.0.3...
CVE-2025-69368
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GT3themes SOHO - Photography WordPress Theme soho allows DOM-Based XSS.This issue affects SOHO - Photography WordPress Theme: from n/a through = 3.0.3...
CVE-2025-69368
CVE-2025-69368 is a DOM-based XSS in GT3themes SOHO – Photography WordPress Theme (soho) up to version 3.0.3, caused by improper input neutralization during web page generation. Public sources (NVD/Red Hat/CVE listing) describe the vulnerability as cross-site scripting with DOM-based execution an...
CVE-2025-69368 WordPress SOHO - Photography WordPress Theme theme <= 3.0.3 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GT3themes SOHO - Photography WordPress Theme soho allows DOM-Based XSS.This issue affects SOHO - Photography WordPress Theme: from n/a through = 3.0.3...
CVE-2025-69368 WordPress SOHO - Photography WordPress Theme theme <= 3.0.3 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GT3themes SOHO - Photography WordPress Theme soho allows DOM-Based XSS.This issue affects SOHO - Photography WordPress Theme: from n/a through = 3.0.3...
PT-2026-21150
Name of the Vulnerable Software and Affected Versions GT3themes SOHO - Photography WordPress Theme versions through 3.0.3 Description The GT3themes SOHO - Photography WordPress Theme contains a flaw related to improper input handling during web page generation, leading to a DOM-Based Cross-site...
WordPress plugin SOHO 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
WordPress SOHO - Photography WordPress Theme theme <= 3.0.3 - Cross Site Scripting (XSS) vulnerability
WordPress SOHO - Photography WordPress Theme theme = 3.0.3 - Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme SOHO - Photography WordPress Theme versions = 3.0.3...
EUVD-2004-0316
Malware in sbrugna...
EUVD-2003-0122
Malware in sbrugna...
EUVD-2002-0522
Malware in sbrugna...
EUVD-2004-0614
Malware in sbrugna...
EUVD-2000-0881
Malware in sbrugna...
EUVD-2000-0882
Malware in sbrugna...
EUVD-2001-1085
Malware in sbrugna...
EUVD-2002-1036
Malware in sbrugna...