THREAT OPS › Threat News
Threat Intelligence News
2668 reports from 110+ open cyber-threat-intelligence sources — APT activity, malware, vulnerabilities and campaigns, newest first.
- MCP: Untrusted Servers and Confused Clients, Plus a Sneaky Exploitembracethered · 2025-05-02
- Drag and Pwnd: Leverage ASCII characters to exploit VS Codeportswigger_research · 2025-04-30
- Shadow Roles: AWS Defaults Can Open the Door to Service Takeoveraqua_nautilus · 2025-04-29
- Document My Pentest: you hack, the AI writes it up!portswigger_research · 2025-04-23
- What’s Really Happening in Your Containers? Aqua’s Risk Assessment Has the Answeraqua_nautilus · 2025-04-23
- Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflowsvolexity · 2025-04-22
- [NVD] CVE-2024-58093 (HIGH 7.8) — In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix link state exit during switch upstream function removal Before 456d8aa37d0f ("PCI/ASPM: Disable ASPM on MFD function removal to avoid use-after-free"), we would free the ASPM link only after the lnvd · 2025-04-16
- GitHub for Beginners: Security best practices with GitHub Copilotgithub_security_lab · 2025-04-14
- Aqua Security Achieves FedRAMP® High Authorizationaqua_nautilus · 2025-04-08
- GitHub Copilot Custom Instructions and Risksembracethered · 2025-04-07
- Tomcat in the Crosshairs: New Research Reveals Ongoing Attacksaqua_nautilus · 2025-04-02
- GoResolver: Using Control-flow Graph Similarity to Deobfuscate Golang Binaries, Automaticallyvolexity · 2025-04-01
- [NVD] CVE-2025-31693 (MEDIUM 6.6) — Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Drupal AI (Artificial Intelligence) allows OS Command Injection.This issue affects AI (Artificial Intelligence): from 0.0.0 before 1.0.5.nvd · 2025-03-31
- [NVD] CVE-2025-31692 (HIGH 7.5) — Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Drupal AI (Artificial Intelligence) allows OS Command Injection.This issue affects AI (Artificial Intelligence): from 0.0.0 before 1.0.5.nvd · 2025-03-31
- Cut Through Alert Noise and Fix Toxic Combinations Firstaqua_nautilus · 2025-03-27
- IngressNightmare Vulnerabilities: All You Need to Knowaqua_nautilus · 2025-03-26
- How the Google-Wiz acquisition redefines cloud securityaqua_nautilus · 2025-03-24
- [Breach] Cuties AI — 144,250 accounts exposedhibp_breaches · 2025-03-21
- [NVD] CVE-2024-7959 — Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.nvd · 2025-03-20
- [NVD] CVE-2024-7040 — Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.nvd · 2025-03-20
- [NVD] CVE-2024-7039 — Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.nvd · 2025-03-20
- [NVD] CVE-2024-7034 — Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.nvd · 2025-03-20
- [NVD] CVE-2024-7033 — Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.nvd · 2025-03-20
- SAML roulette: the hacker always winsportswigger_research · 2025-03-18
- Supply Chain Security Risk: GitHub Action tj-actions/changed-files Compromisedaqua_nautilus · 2025-03-16
- Stopping Sobolan Malware with Aqua Runtime Protectionaqua_nautilus · 2025-03-11
- Shadow Repeater:AI-enhanced manual testingportswigger_research · 2025-02-20
- Multiple Russian Threat Actors Targeting Microsoft Device Code Authenticationvolexity · 2025-02-13
- Top 10 web hacking techniques of 2024portswigger_research · 2025-02-04
- Bypassing character blocklists with unicode overflowsportswigger_research · 2025-01-28
- Stealing HttpOnly cookies with the cookie sandwich techniqueportswigger_research · 2025-01-22
- Research that builds detectionsvirustotal_blog · 2025-01-09
- Top 10 web hacking techniques of 2024: nominations openportswigger_research · 2025-01-08
- Bypassing WAFs with the phantom $Version cookieportswigger_research · 2024-12-04
- The Nearest Neighbor Attack: How A Russian APT Weaponized Nearby Wi-Fi Networks for Covert Accessvolexity · 2024-11-22
- BrazenBamboo Weaponizes FortiClient Vulnerability to Steal VPN Credentials via DEEPDATAvolexity · 2024-11-15
- Important Update: IP Address Change for VirusTotalvirustotal_blog · 2024-11-12
- New crazy payloads in the URL Validation Bypass Cheat Sheetportswigger_research · 2024-10-29
- Concealing payloads in URL credentialsportswigger_research · 2024-10-23
- Unveiling Hidden Connections: JA4 Client Fingerprinting on VirusTotalvirustotal_blog · 2024-10-18
- [NVD] CVE-2024-7038 — Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.nvd · 2024-10-09
- VirusTotal AI-Generated Conversations: Threat Intel Made Easyvirustotal_blog · 2024-09-29
- [NVD] CVE-2024-8751 (HIGH 7.5) — A vulnerability allows a remote unauthenticated attacker to modify the prod uct’s IP address over the Sopas ET interface. This can lead to a Denial of Service attack.nvd · 2024-09-12
- Introducing the URL validation bypass cheat sheetportswigger_research · 2024-09-03
- Gotta cache 'em all: bending the rules of web cache exploitationportswigger_research · 2024-08-08
- Splitting the email atom: exploiting parsers to bypass access controlsportswigger_research · 2024-08-07
- Listen to the whispers: web timing attacks that actually workportswigger_research · 2024-08-07
- StormBamboo Compromises ISP to Abuse Insecure Software Update Mechanismsvolexity · 2024-08-02
- Fickle PDFs: exploiting browser rendering discrepanciesportswigger_research · 2024-07-09
- A hacking hat-trick: previewing three PortSwigger Research publications coming to DEF CON & Black Hat USAportswigger_research · 2024-07-02
- onwebkitplaybacktargetavailabilitychanged?! New exotic events in the XSS cheat sheetportswigger_research · 2024-06-11
- Refining your HTTP perspective, with bambdasportswigger_research · 2024-05-29
- Introducing SignSaboteur: forge signed web tokens with easeportswigger_research · 2024-05-22
- Making desync attacks easy with TRACEportswigger_research · 2024-03-19
- Using form hijacking to bypass CSPportswigger_research · 2024-03-05
- Top 10 web hacking techniques of 2023portswigger_research · 2024-02-19
- Hiding payloads in Java source code stringsportswigger_research · 2024-01-23
- Top 10 web hacking techniques of 2023 - nominations openportswigger_research · 2024-01-09
- Finding that one weird endpoint, with Bambdasportswigger_research · 2023-12-12
- Blind CSS Exfiltration: exfiltrate unknown web pagesportswigger_research · 2023-12-05
- The single-packet attack: making remote race-conditions 'local'portswigger_research · 2023-10-18
- How to build custom scanners for web security research automationportswigger_research · 2023-10-03
- [NVD] CVE-2023-4346 (HIGH 7.5) — KNX devices that use KNX Connection Authorization and support Option 1 are, depending on the implementation, vulnerable to being locked and users being unable to reset them to gain access to the device. The BCU key feature on the devices can be used to create a password for the nvd · 2023-08-29
- Smashing the state machine: the true potential of web race conditionsportswigger_research · 2023-08-09
- Content Not Foundmsrc_blog · 2022-05-26
- [Breach] Windows93 / Myspace93 — 46,105 accounts exposedhibp_breaches · 2021-01-01
- [Breach] Scuf Gaming — 128,683 accounts exposedhibp_breaches · 2015-06-05
- [Breach] RuneScape Boards — 222,762 accounts exposedhibp_breaches · 2011-12-26
← NewerPage 27 of 27