Cybercrime

Farmers Insurance Breach: 1.1 Million Customers Exposed in Salesforce Attack Fiverr Data Leak Claude Code Leak Anthropic DMCA Takedown Coupang 33.7M Breach South Korea Data Leak Red Hat Breach, Customer Data Theft Farmers Insurance, Salesforce ESLint Plugin -Mamont Android banking Trojan

Fiverr Data Leak Claude Code Leak Anthropic DMCA Takedown Coupang 33.7M Breach South Korea Data Leak Red Hat Breach, Customer Data Theft Farmers Insurance, Salesforce ESLint Plugin -Mamont Android banking Trojan

Farmers Insurance Breach: 1.1 Million Customers Exposed in Salesforce Attack

Do Son August 27, 2025

Recently, there has been a surge in attacks targeting customer relationship management (CRM) systems, particularly Salesforce. Even...

FortiGuard Labs Uncovers Global Phishing Campaign Using UpCrypter to Deploy RATs Phishing campaign, UpCrypter

Phishing campaign, UpCrypter

FortiGuard Labs Uncovers Global Phishing Campaign Using UpCrypter to Deploy RATs

Do Son August 26, 2025

FortiGuard Labs has uncovered a rapidly spreading phishing campaign that leverages carefully crafted emails and fake websites...

Beyond Banks: Android Malware Is Getting Smarter to Bypass Google Play Protect CVE-2023-20951 Honor Update

CVE-2023-20951 Honor Update

Beyond Banks: Android Malware Is Getting Smarter to Bypass Google Play Protect

Do Son August 26, 2025

Droppers—seemingly harmless apps that secretly deliver malware—have long been a key part of Android cybercrime. But according...

Expel Uncovers Malicious PUP Ecosystem Masquerading as Free Utility Apps Potentially unwanted program, residential proxy

Potentially unwanted program, residential proxy

Expel Uncovers Malicious PUP Ecosystem Masquerading as Free Utility Apps

Do Son August 26, 2025

For years, potentially unwanted programs (PUPs) have been associated with nuisance-level behavior—displaying ads, installing toolbars, or collecting...

Ex-Programmer Davis Lu Jailed for Triggering Malicious “Kill Switch” at Eaton Davis Lu, Kill Switch

Davis Lu, Kill Switch

Ex-Programmer Davis Lu Jailed for Triggering Malicious “Kill Switch” at Eaton

Do Son August 25, 2025

In March 2025, 55-year-old programmer Davis Lu had triggered a “kill switch” to delete company data. He...

Beyond the Breach: Coinbase Cracks Down on Remote Work to Stop Hackers North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

Beyond the Breach: Coinbase Cracks Down on Remote Work to Stop Hackers

Do Son August 25, 2025

In June 2025, the Nasdaq-listed American cryptocurrency exchange Coinbase experienced a data breach. The incident was not...

Anatsa Android Trojan Expands Its Global Reach and Targets 831 Financial Apps Android malware, Anatsa

Android malware, Anatsa

Anatsa Android Trojan Expands Its Global Reach and Targets 831 Financial Apps

Do Son August 25, 2025

The Android ecosystem continues to face persistent threats from sophisticated banking trojans. The Zscaler ThreatLabz team, which...

Gayfemboy Botnet Resurfaces with Advanced Evasion and New Targets ahost.exe DLL Sideloading Signed Application Abuse PS1Bot, malware ransomware attacks bill

ahost.exe DLL Sideloading Signed Application Abuse PS1Bot, malware ransomware attacks bill

Gayfemboy Botnet Resurfaces with Advanced Evasion and New Targets

Do Son August 25, 2025

FortiGuard Labs has been closely tracking a stealthy new malware strain known as Gayfemboy. Initially disclosed by...

BQTLock: A New Ransomware-as-a-Service Operation Blending Marketing and Malware Ransomware-as-a-Service, BQTLock

Ransomware-as-a-Service, BQTLock

BQTLock: A New Ransomware-as-a-Service Operation Blending Marketing and Malware

Do Son August 25, 2025

A new ransomware strain has entered the cybercrime marketplace, blending technical sophistication with aggressive marketing. Researchers at...

YouTube Downloader Sites Are Now Hiding Proxyware to Hijack Your Bandwidth

Proxyware

YouTube Downloader Sites Are Now Hiding Proxyware to Hijack Your Bandwidth

Do Son August 23, 2025

Cybercriminals are once again exploiting popular online habits—this time leveraging YouTube video download sites as bait for...

Malicious Go Package Steals Your SSH Credentials in a “Brute-Force” Scam Go module, SSH brute-force scam

Go module, SSH brute-force scam

Malicious Go Package Steals Your SSH Credentials in a “Brute-Force” Scam

Do Son August 23, 2025

The open-source ecosystem has once again been exploited to distribute malicious software. Socket’s Threat Research Team has...

9.8 CVE-2024-36401 Exploited in Stealthy Bandwidth-Monetization Campaign Passive monetization, GeoServer vulnerability

Passive monetization, GeoServer vulnerability

9.8 CVE-2024-36401 Exploited in Stealthy Bandwidth-Monetization Campaign

Do Son August 22, 2025

A new report from Palo Alto Networks’ Unit 42 has shed light on an unusual and stealthy...

ClickFix and CORNFLAKE.V3: Mandiant Uncovers a New Wave of Access-as-a-Service Campaigns ClickFix, UNC5518

ClickFix, UNC5518

ClickFix and CORNFLAKE.V3: Mandiant Uncovers a New Wave of Access-as-a-Service Campaigns

Do Son August 22, 2025

Mandiant researchers have uncovered a sophisticated cybercrime operation where compromised websites are weaponized with fake CAPTCHA pages...

RapperBot Botnet Dismantled: US Charges 22-Year-Old for Massive DDoS Attacks Winos 4.0 Malware Silver Fox APT RapperBot BVIEC cyberattack - CNC group DAMASCENED PEACOCK, malware analysis

Winos 4.0 Malware Silver Fox APT RapperBot BVIEC cyberattack - CNC group DAMASCENED PEACOCK, malware analysis

RapperBot Botnet Dismantled: US Charges 22-Year-Old for Massive DDoS Attacks

Do Son August 21, 2025

The U.S. Department of Justice has recently charged 22-year-old Oregon resident Ethan Foltz with operating a massive...

Inside the “Traffer” Economy: How a Thriving Cybercrime Ecosystem Professionalized Data Theft SEO

SEO

Inside the “Traffer” Economy: How a Thriving Cybercrime Ecosystem Professionalized Data Theft

Do Son August 21, 2025

The global cybercrime economy continues to expand, with new players and organizational structures emerging to maximize profits...

Hacker Tied to Yemen Cyber Army Sentenced for Stealing Data of 4 Million People Cybercrime, Hacker

Cybercrime, Hacker

Hacker Tied to Yemen Cyber Army Sentenced for Stealing Data of 4 Million People

Do Son August 20, 2025

The UK’s National Crime Agency (NCA) has announced the sentencing of Al Tahery Al-Mashriky, a 26-year-old hacker...

The AI Double-Edged Sword: How Generative AI Is Fueling a New Wave of Cyberattacks AI-G

AI-G

The AI Double-Edged Sword: How Generative AI Is Fueling a New Wave of Cyberattacks

Do Son August 20, 2025

The rapid rise of generative AI (GenAI) has revolutionized industries by enabling new forms of content creation,...

REVENANT: The Experimental Framework That Infects AI Models and Evades Traditional Defenses Experimental attack framework, AI security

Experimental attack framework, AI security

REVENANT: The Experimental Framework That Infects AI Models and Evades Traditional Defenses

Do Son August 18, 2025

In a new report, CYFIRMA has detailed an experimental attack framework called REVENANT, which demonstrates how adversaries...

Dodi Repacks Malware: Why Your Adblocker Won’t Save You Battlefield 6 Malware, Fake Game Cracks

Battlefield 6 Malware, Fake Game Cracks

Dodi Repacks Malware: Why Your Adblocker Won’t Save You

Do Son August 18, 2025

Pirated games have long been a risky endeavor, but recent research from Trellix reveals just how dangerous...

PhantomCard: The New Android Trojan That Steals Your Contactless Payments PhantomCard, NFC Attack

PhantomCard, NFC Attack

PhantomCard: The New Android Trojan That Steals Your Contactless Payments

Do Son August 15, 2025

ThreatFabric’s Mobile Threat Intelligence team has identified PhantomCard, a new Android NFC-based Trojan capable of relaying contactless...

🚨

Receive alerts for vulnerabilities being exploited in the wild.

⚡

Get notified instantly when a Proof of Concept (PoC) exploit is published.

🔍

Access critical info on vulnerabilities even when marked as "RESERVED".

🧠

Insights powered by decades of expertise and global intelligence sources.

🎯

Customize alerts with up to 10 keywords for your specific tech stack.

📊

Export the raw CVE database for SIEM integration and reporting.

CVE-2026-20230CVSS 8.6
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified...
CVE-2026-4020CVSS 7.5
The Gravity SMTP plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and...
CVE-2026-10735
Multiple plugins by ShapedPlugin contain a backdoor in various versions. This makes it possible for unauthenticated attackers to...
CVE-2026-20262CVSS 6.5
A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated,...
CVE-2026-54420CVSS 8.5
LiteSpeed cPanel plugin before 2.4.8 (as distributed in LiteSpeed WHM PlugIn before 5.3.2.0) mishandles symlinks provided by a...
CVE-2026-53435CVSS 8.8
In Jenkins 2.567 and earlier, LTS 2.555.2 and earlier, it is possible for attackers to have Jenkins deserialize...
CVE-2026-10795CVSS 8.1
The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to Authentication Bypass in all versions...
CVE-2026-11645
Out of bounds read and write in V8 in Google Chrome prior to 149.0.7827.103 allowed a remote attacker...
CVE-2026-50751CVSS 9.3
A logic flow weakness in Remote Access and Mobile Access certificate validation in deprecated IKEv1 key exchange allows...
CVE-2026-20245CVSS 7.8
A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, local...