NAME Node.js lusha-ui-components-v2 module code execution Platforms Affected:Node.js lusha-ui-components-v2Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js lusha-ui-components-v2 module could allow a remote attacker...
NAME Node.js fasly-audit-purge module code execution Platforms Affected:Node.js fasly-audit-purgeRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js fasly-audit-purge module could allow a remote attacker...
NAME Node.js usaa-mocks-proxy module code execution Platforms Affected:Node.js usaa-mocks-proxyRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js usaa-mocks-proxy module could allow a remote attacker...
Threat actors are using the Tox peer-to-peer instant messaging service as a command-and-control server, Uptycs researchers reported. Tox is a...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-2841A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610. It has been classified...
Kimsuky (also known as Thallium, Black Banshee and Velvet Chollima) is a prolific and active threat actor primarily targeting Korea-related...
Introduction In our crimeware reporting service, we analyze the latest crime-related trends we come across. Last month, we again posted...
The streaming media platform Plex is urging its users to reset passwords after threat actors gained access to its database....
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
HIVE Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
We investigate mhyprot2.sys, a vulnerable anti-cheat driver for the popular role-playing game Genshin Impact. The driver is currently being abused...
Preparing Critical Infrastructure for Post-Quantum Cryptography CISA has released CISA Insights: Preparing Critical Infrastructure for Post-Quantum Cryptography, which outlines the...
The threat actors behind a large-scale adversary-in-the-middle (AiTM) phishing campaign now target Google G Suite users The threat actors behind a large-scale...
Programme HackerOne Uber Uber Submitted by mustafa_farrag mustafa_farrag Report Golang expvar Information Disclosure Full Report A considerable amount of time...
Programme HackerOne Invision Power Services, Inc. Invision Power Services, Inc. Submitted by fthacker101 fthacker101 Report support.invisionpower.com takeover the subdomain with...
