CVE Analysis Center
404 posts | Page 4 of 17
CVE Analysis Center
SideWinder Uses ClickOnce to Target South Asian Diplomatic Entities via MagTek ReaderConfiguration.exe Sideloading Attack Chain
CVE Analysis Center
Operation ForumTroll: Italian Spyware Vendor Memento Labs Exploits Chrome Zero-Day (CVE-2025-2783) in Targeted Attacks on Russia and Belarus
CVE Analysis Center
Google Refutes Claims of Massive Gmail Data Breach: Analysis Reveals Stolen Credentials Originated from Infostealer Malware, Not Google Systems
CVE Analysis Center
Chrome Zero-Day Exploited: Memento Spyware Campaign Targets Windows Systems with LeetAgent and Dante Malware
CVE Analysis Center
Too Many Secrets: Huntress Exposes Credential Theft and Sensitive Data Sprawl in Supply Chain and Banking Sectors
CVE Analysis Center
TARmageddon (CVE-2025-62518): Critical RCE Vulnerability in Rust async-tar and tokio-tar Libraries Threatens Software Supply Chains
CVE Analysis Center
Surge in Ransomware and DDoS Attacks Targeting Microsoft, WordPress, and Network Appliances in MENA and Africa
CVE Analysis Center
SessionReaper (CVE-2025-54236): Active Exploitation of Critical Adobe Magento Vulnerability Threatens E-Commerce Security
CVE Analysis Center
Over 250 Magento and Adobe Commerce Stores Compromised via CVE-2025-54236 SessionReaper Vulnerability: Threat Intelligence Report
CVE Analysis Center
MuddyWater Targets MENA Government Organizations with Phoenix v4 Backdoor in Large-Scale Cyber-Espionage Campaign
CVE Analysis Center
Jingle Thief: How Hackers Exploit Microsoft 365 Cloud Services to Steal Millions in Retail Gift Cards
CVE Analysis Center
Homoglyph Supply Chain Attack Targets NuGet: Fake Netherеum.All Package Steals Ethereum Wallet Keys
CVE Analysis Center
CVE-2025-61932: Critical Lanscope Endpoint Manager Vulnerability Actively Exploited in Cyberattacks, CISA Warns
CVE Analysis Center
Cryptomus Crypto Platform Fined $176M by Canada for Facilitating Cybercrime and Money Laundering
CVE Analysis Center
Critical Lanscope Endpoint Manager Zero-Day Vulnerability (CVE-2025-61932) Actively Exploited – Patch Now
CVE Analysis Center
Mysterious Elephant (APT-K-47) Targets South Asian Government Networks With Advanced Custom Malware and Supply Chain Attacks
CVE Analysis Center
Jewelbug (Chinese APT) Infiltrates Russian IT Service Provider: Multi-Month Espionage and Supply Chain Attack on Code Repositories and Build Systems
CVE Analysis Center
Harvard University Data Breach: Cl0p Ransomware Exploits Oracle E-Business Suite Zero-Day (CVE-2025-61882)
CVE Analysis Center
Fake LastPass and Bitwarden Breach Alerts Used in Phishing Campaign to Hijack PCs via Syncro MSP and ScreenConnect
CVE Analysis Center
Critical SAP NetWeaver AS Java Vulnerability (CVE-2025-42944) Allows Unauthenticated Remote Server Takeover via RMI-P4 Exploit
CVE Analysis Center
Critical Adobe AEM Forms JEE Vulnerability (CVE-2025-54253) Under Active Exploitation: CISA Alerts, Patch Now
CVE Analysis Center
OpenSSL September 2025 Vulnerabilities: Critical CVEs Enable Private Key Recovery, Code Execution, and DoS
CVE Analysis Center
New Phoenix Attack: Bypassing Rowhammer Defenses in DDR5 Memory Systems
CVE Analysis Center