Lucene search
K

25 matches found

GithubExploit
GithubExploit
added 2025/07/30 8:4 a.m.245 views

Exploit for Use After Free in Microsoft

🚨 CVE-2025-29824 Exploit: PipeMagic Ransomware Chain 📌 Critical...

7.8CVSS9.7AI score0.48973EPSS
Exploits13
Trend Micro Simply Security
Trend Micro Simply Security
added 2025/05/27 12:0 a.m.16 views

Earth Lamia Develops Custom Arsenal to Target Multiple Industries

Trend™ Research has been tracking an active APT threat actor named Earth Lamia, targeting multiple industries in Brazil, India and Southeast Asia countries at least since 2023. The threat actor primarily exploits vulnerabilities in web applications to gain access to targeted organizations...

7.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2025/01/21 9:1 p.m.19 views

Imperva Protects Against the Exploited CVEs in the Cleo Data Theft Attacks

The Clop ransomware group has once again demonstrated its ability to exploit vulnerabilities to compromise sensitive systems. As Cleo—a managed file transfer provider for businesses—grapples with the aftermath of Clop’s targeted attack on their systems, the spotlight turns to CVE-2024-50623 and...

9.8CVSS9.1AI score0.99999EPSS
Exploits35
Talos Blog
Talos Blog
added 2024/07/10 12:0 p.m.12 views

Hidden between the tags: Insights into spammers’ evasion techniques in HTML Smuggling

Cisco Talos has spotted several malicious email campaigns over the past few months that disguise JavaScript code within HTML email attachments, a technique commonly known as "HTML Smuggling." Cisco Talos has noticed that some industry verticals were targeted more than others by email threats usin...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2024/01/12 1:23 p.m.56 views

Medusa Ransomware on the Rise: From Data Leaks to Multi-Extortion

The threat actors associated with the Medusa ransomware have ramped up their activities following the debut of a dedicated data leak site on the dark web in February 2023 to publish sensitive data of victims who are unwilling to agree to their demands. "As part of their multi-extortion strategy,...

9.1CVSS7AI score0.21583EPSS
Exploits0
The Hacker News
The Hacker News
added 2023/08/15 12:15 p.m.50 views

Malware Unleashed: Public Sector Hit in Sudden Surge, Reveals New Report

The just-released BlackBerry Global Threat Intelligence Report reveals a 40% increase in cyberattacks against government and public service organizations versus the previous quarter. This includes public transit, utilities, schools, and other government services we rely on daily. With limited...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/01/25 10:41 a.m.4 views

North Korean Hackers Turn to Credential Harvesting in Latest Wave of Cyberattacks

A North Korean nation-state group notorious for crypto heists has been attributed to a new wave of malicious email attacks as part of a "sprawling" credential harvesting activity targeting a number of industry verticals, marking a significant shift in its strategy. The state-aligned threat actor ...

6.5AI score
Exploits0
hivepro
hivepro
added 2022/07/26 5:2 a.m.18 views

Vulnerabilities & Threats that Matter 18 – 24th July

Published Vulnerabilities Interesting Vulnerabilities Active Threat Groups Targeted Countries Targeted Industries ATT&CK TTPs 497 11 2 Worldwide 6 33 For a detailed threat digest, download the pdf file here Summary The third week of July 2022 witnessed the discovery of 497 vulnerabilities out of...

1.2AI score
Exploits0
hivepro
hivepro
added 2022/07/19 12:46 p.m.15 views

Vulnerabilities & Threats that Matter 11-17 July 2022

Published Vulnerabilities Interesting Vulnerabilities Active Threat Groups Targeted Countries Targeted Industries ATT&CK TTPs 580 37 2 World-wide 11 61 For a detailed threat digest, download the pdf file here Summary The second week of July 2022 witnessed the discovery of 580 vulnerabilities out ...

1.2AI score
Exploits0
hivepro
hivepro
added 2022/04/27 12:44 p.m.419 views

Weekly Threat Digest: 18 – 24 April 2022

For a detailed threat digest, download the pdf file here Published Vulnerabilities Interesting Vulnerabilities Active Threat Groups Targeted Countries Targeted Industries ATT&CK TTPs 430 5 2 Worldwide 17 46 The fourth week of April 2022 witnessed the discovery of 430 vulnerabilities out of which ...

10CVSS0.3AI score0.99999EPSS
Exploits28
hivepro
hivepro
added 2022/04/05 10:11 a.m.131 views

Weekly Threat Digest: 28 March – 3 April 2022

For a detailed threat digest, download the pdf file here Published Vulnerabilities Interesting Vulnerabilities Active Threat Groups Targeted Countries Targeted Industries ATT&CK TTPs 500 7 3 27 16 46 The fourth week of March 2022 witnessed the discovery of 500 vulnerabilities out of which 7 gaine...

7.5CVSS1.4AI score0.99796EPSS
Exploits112
hivepro
hivepro
added 2022/03/14 4:24 p.m.230 views

Weekly Threat Digest: 7 – 13 March 2022

For a detailed threat digest, download the pdf file here Published Vulnerabilities Interesting Vulnerabilities Active Threat Groups Targeted Countries Targeted Industries ATT&CK TTPs 538 16 3 42 19 89 The second week of March 2022 witnessed the discovery of 538 vulnerabilities out of which 16...

9.3CVSS0.4AI score0.99999EPSS
Exploits454
Rapid7 Blog
Rapid7 Blog
added 2022/03/03 10:53 p.m.481 views

The Top 5 Russian Cyber Threat Actors to Watch

This post was updated on March 10, 2022 to include a section on the Conti Ransomware Group. As we continue to monitor the situation between Russia and Ukraine – and the potential for global cybersecurity impacts – we realize that our customers and other business and industry stakeholders may be...

9.3CVSS0.4AI score0.81628EPSS
Exploits22
Imperva Blog
Imperva Blog
added 2021/12/17 6:44 a.m.88 views

5 Things We’ve Learned About CVE-2021-44228

Over the last week, Imperva Threat Research observed interesting data points related to CVE-2021-44228. Despite new variants being discovered and patched by our team, we wanted to share five interesting things that we’ve learned from analyzing a subset of our overall global network traffic. Attac...

9.3CVSS0.4AI score0.99999EPSS
Exploits349
Akamai Blog
Akamai Blog
added 2021/07/27 1:0 p.m.53 views

Cutting the Red Tape: Lessons Learned from CyberThreats 2021

If I had a dollar for every time I heard the phrase "digital transformation," I would have a lot of dollars. I'm sure you would too. We'd have even more if we counted the term "Zero Trust." Maybe we should start counting them, now that I think about it! Speakers and authors often use these buzz...

7.2AI score
Exploits0
Akamai Blog
Akamai Blog
added 2021/02/09 2:0 p.m.20 views

Phishing: Holiday Season Attacks on the Rise

Overview Phishing continues to be a major attack vector, and it's surprising just how many security incidents and breaches start with an employee clicking on a link in a carefully crafted phishing email and sometimes doing the same with a not-so-well crafted phishing email -- see this example...

1.5AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/02/01 5:0 p.m.42 views

What tracking an attacker email infrastructure tells us about persistent cybercriminal operations

From March to December 2020, we tracked segments of a dynamically generated email infrastructure that attackers used to send more than a million emails per month, distributing at least seven distinct malware families in dozens of campaigns using a variety of phishing lures and tactics. These...

0.8AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/02/01 5:0 p.m.53 views

What tracking an attacker email infrastructure tells us about persistent cybercriminal operations

From March to December 2020, we tracked segments of a dynamically generated email infrastructure that attackers used to send more than a million emails per month, distributing at least seven distinct malware families in dozens of campaigns using a variety of phishing lures and tactics. These...

0.8AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2020/06/16 4:0 p.m.26 views

Exploiting a crisis: How cybercriminals behaved during the outbreak

In the past several months, seemingly conflicting data has been published about cybercriminals taking advantage of the COVID-19 outbreak to attack consumers and enterprises alike. Big numbers can show shifts in attacker behavior and grab headlines. Cybercriminals did indeed adapt their tactics to...

6.9AI score
Exploits0
FireEye
FireEye
added 2020/03/25 12:0 a.m.653 views

This Is Not a Test: APT41 Initiates Global Intrusion Campaign Using Multiple Exploits

Beginning this year, FireEye observed Chinese actor APT41 carry out one of the broadest campaigns by a Chinese cyber espionage actor we have observed in recent years. Between January 20 and March 11, FireEye observed APT41 attempt to exploit vulnerabilities in Citrix NetScaler/ADC, Cisco routers,...

10CVSS0.3AI score0.99999EPSS
Exploits100References19
Rows per page
Query Builder