CVE Alert: CVE-2024-55075
Vulnerability Summary: CVE-2024-55075 Grocy through 4.3.0 allows remote attackers to obtain sensitive information via direct requests to pages that are...
Year: 2025
CVE Alert: CVE-2024-55076
Vulnerability Summary: CVE-2024-55076 Grocy through 4.3.0 has no CSRF protection, as demonstrated by changing the Administrator's password. Affected Endpoints: No...
CVE Alert: CVE-2024-51741
Vulnerability Summary: CVE-2024-51741 Redis is an open source, in-memory database that persists on disk. An authenticated with sufficient privileges may...
CVE Alert: CVE-2024-46981
Vulnerability Summary: CVE-2024-46981 Redis is an open source, in-memory database that persists on disk. An authenticated user may use a...
CVE Alert: CVE-2025-21620
Vulnerability Summary: CVE-2025-21620 Deno is a JavaScript, TypeScript, and WebAssembly runtime with secure defaults. When you send a request with...
CVE Alert: CVE-2025-21616
Vulnerability Summary: CVE-2025-21616 Plane is an open-source project management tool. A cross-site scripting (XSS) vulnerability has been identified in Plane...
Chinese Hackers Launch Doubling Cyber-Attacks on Taiwan in 2024
In 2024, Taiwan's government networks faced a staggering average of 2.4 million cyber-attacks daily, primarily attributed to state-sponsored Chinese hackers....
PhishWP Plugin: A New Threat for Payment Page Scams
The recently discovered PhishWP plugin is revolutionizing the way cybercriminals execute payment page scams, targeting legitimate services to steal sensitive...
Infostealer Campaign Targeting Gamers on Discord: Stay Vigilant
Gamers are advised to stay alert against unsolicited Discord messages linked to a new infostealer campaign that poses as game...
Crypto Wallet Drainers: $500m Lost in Scams in 2024
In 2024, approximately $500 million was lost due to wallet drainer attacks, marking a significant increase in cryptocurrency-related scams. Understanding...
Supply Chain Attack Hits Ethereum Development Tools: How to Protect Yourself
A recent supply chain attack has dangerously impacted the Ethereum development ecosystem, specifically targeting the Nomic Foundation and Hardhat platforms....
Cobalt Strike Beacon Detected – 8[.]217[.]7[.]159:6666
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 185[.]43[.]4[.]80:8001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 165[.]154[.]244[.]73:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 118[.]25[.]85[.]198:2222
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CISA: CISA and Partners Release Joint Guidance on PRC-Affiliated Threat Actor Compromising Networks of Global Telecommunications Providers
CISA and Partners Release Joint Guidance on PRC-Affiliated Threat Actor Compromising Networks of Global Telecommunications Providers Today, CISA—in partnership with...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on December 3, 2024. These...
CISA: CISA Releases New Public Version of CDM Data Model Document
CISA Releases New Public Version of CDM Data Model Document Today, the Cybersecurity and Infrastructure Security Agency (CISA) released an...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on December 5, 2024. These...
CISA: Microsoft Releases December 2024 Security Updates
Microsoft Releases December 2024 Security Updates Microsoft released security updates to address vulnerabilities in multiple Microsoft products. A cyber threat...
CISA: Cisco Releases Security Updates for NX-OS Software
Cisco Releases Security Updates for NX-OS Software Cisco released security updates to address a vulnerability in Cisco NX-OS software. A...
CISA: ASD’s ACSC, CISA, and US and International Partners Release Guidance on Choosing Secure and Verifiable Technologies
ASD’s ACSC, CISA, and US and International Partners Release Guidance on Choosing Secure and Verifiable Technologies Today, CISA—in partnership with...
