Lucene search
K

166 matches found

Circl
Circl
added 2026/04/03 5:25 p.m.4 views

GHSA-8MHJ-RFFC-RCVW

creationtimestamp| type| source ---|---|--- 2026-04-03 17:25:37+00:00| seen| Telegram/t4suql6I0-EgAbge55Y7fbPScZyJgFXRiuXCvL-XHGMk0Q...

4.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/12/13 12:0 a.m.2 views

PT-2025-51095

🚨 Google Chrome Eighth Zero-Day Vulnerability CVE-2025-7499109 Advisory High Dec 13, 2025 Checkout our Threat Intelligence Platform: https://t.co/QuwNtEgYh1 https://t.co/QuwNtEgYh1 ThreatIntelligence CyberSecurity Innovation LLM https://t.co/yHTrc16kSs...

6.8AI score
Exploits0References1
hivepro
hivepro
added 2024/03/27 12:15 p.m.32 views

Evil Ant The Python-Powered Ransomware

Summary: Evil Ant Ransomware, a sophisticated Python-based malware compiled with PyInstaller, operates covertly by hiding its console window and executing tasks discreetly. It aims to gain access to critical system functions and encrypt secured files. Threat Level - Amber | Attack Report For a...

7.5AI score
Exploits0
hivepro
hivepro
added 2024/03/23 2:6 a.m.37 views

Critical SQL Injection Vulnerability Discovered in Atlassian Bamboo

Summary: Atlassian has released patches addressing several security vulnerabilities, including a significant critical issue impacting Bamboo Data Center and Server, identified as CVE-2024-1597. This flaw, leading to a SQL injection, poses a risk of unnecessary data exposure and potential data...

7.5CVSS7.4AI score0.0481EPSS
Exploits0
hivepro
hivepro
added 2024/03/21 7:12 a.m.11 views

Operation PhantomBlu Deploys NetSupport RAT via OLE Template

Summary: Under the guise of Operation PhantomBlu, a new phishing campaign is aimed at American companies with the goal of deploying the remote access trojan NetSupport RAT. By utilising OLE template manipulation, the PhantomBlu operation presents a sophisticated exploitation technique. This...

7.4AI score
Exploits0
hivepro
hivepro
added 2024/03/21 6:54 a.m.20 views

The Evolution of DEEP#GOSU Attack Campaign by Kimsuky Group

Summary: A sophisticated multi-stage attack campaign linked to the North Korean Kimsuky group, dubbed DEEPGOSU. Using PowerShell and VBScript, the attackers leverage remote access trojan RAT software for full control over infected hosts, while employing legitimate services like Dropbox for comman...

7.4AI score
Exploits0
hivepro
hivepro
added 2024/03/18 8:18 a.m.24 views

Cisco IOS XR Flaws Enable Privilege Elevation and DoS Attacks

Summary: Three high-severity vulnerabilities have been discovered in the Cisco IOS XR software, posing risks of denial-of-service DoS attacks and elevation of privilege. These vulnerabilities are tracked as CVE-2024-20320, CVE-2024-20318, and CVE-2024-20327. Threat Level - Amber | Vulnerability...

4.3CVSS7.2AI score0.00336EPSS
Exploits0
hivepro
hivepro
added 2024/03/18 8:11 a.m.31 views

Critical XSS Flaw Discovered in WP Statistics Impacting 600K Sites

Summary: A critical Cross-Site Scripting XSS vulnerability CVE-2024-2194 in WP Statistics plugin, allowing attackers to inject malicious code via the URL parameter. With over 600,000 installations, the flaw poses severe risks, enabling unauthorized script execution and potential data theft or sit...

6.4CVSS6AI score0.67723EPSS
Exploits1
hivepro
hivepro
added 2024/03/14 6:22 p.m.16 views

Malware Concealed Within PDFs for Data Theft

Summary: In a recently observed campaign an infostealer masquerading as the Adobe Reader installer was being distributed. The file is being distributed by the threat actor in PDF format, luring people to download and execute it, collecting sensitive information. Threat Level - Amber | Attack Repo...

7.2AI score
Exploits0
hivepro
hivepro
added 2024/03/14 6:10 p.m.37 views

Microsoft’s March 2024 Patch Tuesday Addresses 60 Vulnerabilities

Summary: Microsofts March 2024 Patch Tuesday addresses 60 vulnerabilities, including two critical vulnerabilities, spanning various products like Office, Exchange Server, and Windows Kernel. Critical flaws in Windows Hyper-V CVE-2024-21407 and CVE-2024-21408 require immediate attention to mitigat...

5.1CVSS6.8AI score0.16384EPSS
Exploits0
hivepro
hivepro
added 2024/03/06 5:21 p.m.33 views

Critical Vulnerabilities Discovered in TeamCity, Enable Server Takeover

Summary: Two vulnerabilities in the JetBrains TeamCity On-Premises software have been discovered CVE-2024-27198 and CVE-2024-27199. Threat actors may attempt to take advantage of these vulnerabilities in order to breach and gain control of the impacted systems leading to system compromise. Threat...

7.5CVSS10AI score0.99991EPSS
Exploits25
hivepro
hivepro
added 2024/02/29 3:5 p.m.33 views

Xeno RAT Open-Source Trojan Sparks Alarm

Summary: The Xeno RAT, a remote access trojan RAT available on GitHub, has gained attention in the threat landscape due to its open-source nature. This C-based malware is compatible with both Windows 10 and 11, specifically targeting consumers by presenting itself as disguised binaries that...

7.2AI score
Exploits0
hivepro
hivepro
added 2024/02/28 1:33 a.m.16 views

LockBit’s Resurgence After Operation Cronos

Summary: LockBit ransomware, previously known as "ABCD," remains a significant threat despite the recent takedown of its operations by global law enforcement. It reemerged within 4 days and its Affiliates were found exploiting vulnerabilities in ScreenConnect to install LockBit ransomware and...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/02/26 12:57 p.m.24 views

Roundcube Webmail Faces Unrelenting Exploitation

Summary: The Roundcube email server vulnerability, identified as CVE-2023-43770 and previously mitigated in September 2023, is currently being actively exploited. This flaw enables attackers to gain access to restricted information, with potential repercussions including sensitive data theft, use...

5.8CVSS7.2AI score0.58483EPSS
Exploits2
hivepro
hivepro
added 2024/02/23 6:41 a.m.21 views

Earth Preta’s DOPLUGS Leaves its Mark in Asia

Summary: The Chinese threat actor, Earth Preta, strategically targeted numerous Asian countries by employing a customized version of the PlugX backdoor known as DOPLUGS. This sophisticated threat was allegedly revealed during the SMUGX campaign in July 2023. Threat Level - Red | Attack Report For...

7.2AI score
Exploits0
hivepro
hivepro
added 2024/02/21 2:22 p.m.20 views

Kimsuky Exploits Legitimate Certificate to Disseminate TrollAgent

Summary: The Kimsuky group, backed by North Korea, used TrollAgent malware via a fake security program to target a Korean construction associations website, stealing data and enabling remote control between December 2023 and January 2024. Threat Level - Amber | Attack Report For a detailed threat...

7.3AI score
Exploits0
hivepro
hivepro
added 2024/02/21 2:13 p.m.16 views

North-Korean Cyber-Espionage Operations Grapples Defense Sector

Summary: There is an ongoing cyber-espionage campaign purportedly led by the North Korean threat actors, specifically targeting the global defense industry. The primary objective of these attacks is to acquire data pertaining to advanced military technology, with the intention of assisting North...

7.1AI score
Exploits0
hivepro
hivepro
added 2024/02/20 11:9 a.m.12 views

Novel Smishing Kit Leverages Cloud Platform

Summary: SNS Sender, a malicious Python script that leverages AWS SNS for mass SMS spamming, presents a novel approach to cloud-based attack tools, particularly in the area of smishing. The ARDUINODAS threat actor is linked to the operation that uses this cloud capability to send out a lot of...

6.8AI score
Exploits0
hivepro
hivepro
added 2024/02/19 8:18 a.m.10 views

A Fresh Look at the Bumblebee’s Comeback Strategies

Summary: BumbleBee, a malicious loader discovered in March 2022, resurfaced in the cyber threat landscape on February 8, 2024, after a four-month hiatus. Unlike in previous campaigns, this attack chain diverges from conventional techniques. Threat Level - Amber | Attack Report For a detailed thre...

7.2AI score
Exploits0
hivepro
hivepro
added 2024/02/15 1:48 p.m.35 views

Critical Flaw in Zoom Windows Apps Allows Privilege Elevation

Summary: Zoom has addressed an input validation flaw CVE-2024-24691 that renders the Zoom desktop and VDI clients, along with the Meeting SDK for Windows, vulnerable to privilege escalation on the target system via the network, even by an unauthenticated attacker. Threat Level - Red | Vulnerabili...

6.8CVSS7.5AI score0.01689EPSS
Exploits0
Rows per page
Query Builder