CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Trend Micro Simply Security•added 2026/05/10 12:0 a.m.•2 views

What Is the Instructure Canvas Breach? Impact, Risks, and What Institutions Should Do

The Instructure Canvas breach affects universities, K–12 school districts, and teaching hospitals globally. This blog entry intends to provide context and practical guidance...

Krebs on Security•added 2026/05/08 2:58 a.m.•4 views

Canvas Breach Disrupts Schools & Colleges Nationwide

An ongoing data extortion attack targeting the widely-used education technology platform Canvas disrupted classes and coursework at school districts and universities across the United States today, after a cybercrime group defaced the service's login page with a ransom demand that threatened to...

5.7AI score

HackRead•added 2026/05/07 11:55 p.m.•9 views

ShinyHunters Defaces Canvas LMS Portal, Hundreds of Universities Affected

ShinyHunters hackers defaced the official Canvas LMS portal after breaching Instructure systems, disrupting university access worldwide...

The Hacker News•added 2026/04/24 2:13 p.m.•4 views

NASA Employees Duped in Chinese Phishing Scheme Targeting U.S. Defense Software

The Office of Inspector General OIG of the U.S. National Aeronautics and Space Administration NASA has revealed how a Chinese national posed as a U.S. researcher as part of a spear-phishing campaign to obtain sensitive information from the space agency, as well as from government entities,...

Packet Storm News•added 2026/04/20 12:0 a.m.•1 views

Zeek 8.0.7

Talos Blog•added 2026/04/08 10:0 a.m.•2 views

New Lua-based malware “LucidRook” observed in targeted attacks against Taiwanese organizations

Cisco Talos uncovered a cluster of activity we track as UAT-10362 conducting spear-phishing campaigns against Taiwanese non-governmental organizations NGOs and suspected universities to deliver a newly identified malware family, "LucidRook." LucidRook is a sophisticated stager that embeds a Lua...

6.4AI score

Packet Storm News•added 2026/03/07 12:0 a.m.•0 views

Exploring the Drivers of Information Security Policy Compliance among Contingent Employees: A Social, Deterrent, and Involvement-Based Approach

As institutions increasingly depend on Information Systems ISs, ensuring compliance with Information Systems Security Policies ISSPs is critical, especially among contingent employees, whose engagement differs from that of permanent staff. This study examines how Subjective Norm, Deterrence...

CNNVD•added 2026/02/03 12:0 a.m.•2 views

Open eClass 访问控制错误漏洞

Open eClass is an e-classroom system developed by the Greek Universities Network. Versions of Open eClass prior to 4.2 contained a security vulnerability related to access control. This vulnerability resulted from improper access control mechanisms, which could allow authenticated students to...

6.5CVSS5.8AI score0.00042EPSS

CNNVD•added 2026/02/03 12:0 a.m.•2 views

Open eClass 跨站脚本漏洞

Open eClass is an open-source e-classroom system developed by the Greek Universities Network. Versions of Open eClass prior to 4.2 contained a cross-site scripting vulnerability. This vulnerability stemmed from the storage of cross-site scripts in user profile fields, which could allow...

7.3CVSS5.6AI score0.00043EPSS

CNNVD•added 2026/02/03 12:0 a.m.•3 views

Open eClass 安全漏洞

Open eClass is an open-source e-classroom system developed by the Greek Universities Network. Versions of Open eClass prior to 4.2 contained security vulnerabilities; these vulnerabilities stemmed from username enumeration, which could lead to the identification of valid user accounts...

5.3CVSS5.8AI score0.00086EPSS

CNNVD•added 2026/02/03 12:0 a.m.•2 views

Open eClass 访问控制错误漏洞

Open eClass is an open-source e-classroom system developed by the Greek Universities Network. Versions of Open eClass prior to 4.2 contained a security vulnerability related to access control. This vulnerability resulted from improper access control mechanisms, which could allow authenticated...

6.5CVSS5.8AI score0.00042EPSS

CNNVD•added 2026/02/03 12:0 a.m.•3 views

Open eClass 跨站脚本漏洞

Open eClass is an e-classroom system developed by the Greek Universities Network. Versions of Open eClass prior to 4.2 contained a cross-site scripting vulnerability. This vulnerability stemmed from stored-xpected cross-site scripting, which could lead to the execution of malicious JavaScript...

8.7CVSS5.8AI score0.00043EPSS

Packet Storm News•added 2026/01/30 12:0 a.m.•2 views

Zeek 8.0.6

6AI score

HackRead•added 2025/12/08 11:15 a.m.•3 views

Over 70 Domains Used in Months-Long Phishing Spree Against US Universities

Infoblox Threat Intel reports a campaign that used the Evilginx phishing kit to bypass Multi-Factor Authentication MFA and steal credentials from 18 US universities between April and November 2025...

7AI score

Packet Storm News•added 2025/10/14 12:0 a.m.•2 views

Zeek 8.0.2

7AI score

Microsoft Secure•added 2025/10/09 3:0 p.m.•5 views

Investigating targeted “payroll pirate” attacks affecting US universities

Microsoft Threat Intelligence has observed a financially motivated threat actor that we track as Storm-2657 compromising employee accounts to gain unauthorized access to employee profiles and divert salary payments to attacker-controlled accounts. These types of attacks have been dubbed “payroll...

6.7AI score

Wired Threat Level•added 2025/08/27 5:9 p.m.•1 views

This Is the Group That's Been Swatting US Universities

WIRED spoke to a self-proclaimed leader of an online group called Purgatory, which charged as little as $20 to call in fake threats against schools...

7.2AI score

Packet Storm News•added 2025/08/27 12:0 a.m.•2 views

Zeek 8.0.1

7.5AI score