mitre-ta0002
146 articles with this tag
HIGH
HIGH
HIGH
CRITICAL
HIGH
MEDIUM
HIGH
MEDIUM
MEDIUM
MEDIUM
HIGH
CRITICAL
MEDIUM
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
CRITICAL
HIGH
HIGH
MEDIUM
HIGH
HIGH
HIGH
HIGH
MEDIUM
HIGH
CRITICAL
CRITICAL
HIGH
CRITICAL
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
CRITICAL
HIGH
CRITICAL
MEDIUM
CRITICAL
CRITICAL
CRITICAL
CRITICAL
HIGH
HIGH
CRITICAL
HIGH
MEDIUM
HIGH
HIGH
HIGH
HIGH
HIGH
CRITICAL
CRITICAL
MEDIUM
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
CRITICAL
HIGH
CRITICAL
HIGH
CRITICAL
CRITICAL
CRITICAL
HIGH
CRITICAL
MEDIUM
MEDIUM
CRITICAL
MEDIUM
HIGH
HIGH
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
CRITICAL
HIGH
HIGH
MEDIUM
HIGH
CRITICAL
HIGH
MEDIUM
CRITICAL
PureLogs Variant Steals Data via Purchase Order Lures
700+ education and tech websites hijacked in huge ClickFix malware campaign
KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike
Exploitation of KnowledgeDeliver via ViewState Deserialization Vulnerability
Analyzing Void Dokkaebi’s Cython-Compiled InvisibleFerret Malware
Belarus-linked Ghostwriter group targets Ukraine using Prometheus learning platform lures
Fast and Furious – Nimbus Manticore Operations During the Iranian Conflict
Webworm: New burrowing techniques
Internet Explorer may be dead, but its ghost still runs malware
Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks
Inside SHADOW-WATER-063’s Banana RAT: From Build Server to Banking Fraud
When prompts become shells: RCE vulnerabilities in AI agent frameworks
Hackers use PyInstaller to hide XWorm malware
ESET details new Ghostwriter activity targeting Ukrainian government
China-Linked Hackers Deploy New TencShell Malware Against Global Manufacturer
Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike
Chinese APTs Expand Targets, Update Backdoors in Recent Campaigns
[NEU] [mittel] Aruba ArubaOS: Mehrere Schwachstellen
NCSC-2026-0140 [1.00] [M/H] Kwetsbaarheden verholpen in diverse SAP-producten
[NEU] [hoch] pgAdmin: Mehrere Schwachstellen
Technical Analysis of EagleSpy V6.0 (CraxsRAT Rebrand) Distributed Through Odysee and Telegram
New TCLBanker malware self-spreads over WhatsApp and Outlook
MUSTANG PANDA × PLUGX - From deceptive LNK to multi-transport backdoor
New botnet targets gaming servers via misconfigured Jenkins
ClickFix Removes Your Background but Leaves the Malware
Hackers exploit Qinglong vulnerabilities to deploy cryptominers
Hackers exploit RCE flaws in Qinglong task scheduler for cryptomining
Vidar infostealer evolves, uses image files for stealthy attacks
North Korean Hackers Target Crypto Firms with ClickFix and AI-Made Zoom Lures
Tropic Trooper targets Chinese speakers with SumatraPDF trojan and VS Code tunnels
Incomplete Windows Patch Opens Door to Zero-Click Attacks
New GopherWhisper APT group abuses Outlook, Slack, Discord for comms
[NEU] [hoch] n8n: Mehrere Schwachstellen
AI Tools Are Helping Mediocre North Korean Hackers Steal Millions
New GoGra malware for Linux uses Microsoft Graph API for comms
PowMix botnet targets Czech workforce
Mirax RAT Targeting Android Users in Europe
Mirax Android Trojan Turns Devices Into Residential Proxy Nodes
[UPDATE] [mittel] Asterisk: Schwachstelle ermöglicht Privilegienerweiterung und Codeausführung
Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure
STX RAT Targets Finance Sector With Advanced Stealth Tactics
Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025
New Lua-based malware “LucidRook” observed in targeted attacks against Taiwanese organizations
Fortinet releases emergency hotfix for FortiClient EMS zero-day flaw
Max severity Flowise RCE vulnerability now exploited in attacks
Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign
Fortinet customers confront actively exploited zero-day, with a full patch still pending
Security lapse lets researchers view React2Shell hackers’ dashboard
New Progress ShareFile flaws can be chained in pre-auth RCE attacks
Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners
Qilin EDR killer infection chain
Sophisticated CrystalX RAT Emerges
A laughing RAT: CrystalX combines spyware, stealer, and prankware features
Don't open that WhatsApp message, Microsoft warns
CrewAI Vulnerabilities Expose Devices to Hacking
VU#221883: CrewAI contains multiple vulnerabilities including SSRF, RCE and local file read
Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs
CISA: New Langflow flaw actively exploited to hijack AI workflows
Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds
iPhones Are Hackable? Threat Wire
From Invitation to Infection: How SILENTCONNECT Delivers ScreenConnect
Vidar Stealer 2.0 Exploits GitHub, Reddit to Deliver Malware via Fake Game Cheats
Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate Malware
New KadNap botnet hijacks ASUS routers to fuel cybercrime proxy network
'BlackSanta' EDR Killer Targets HR Workflows
Microsoft Teams phishing targets employees with backdoors
UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device
Spyware disguised as emergency-alert app sent to Israeli smartphones
AI as tradecraft: How threat actors operationalize AI
Coruna iOS exploit kit moved from spy tool to mass criminal campaign in under a year
Microsoft Warns OAuth Redirect Abuse Delivers Malware to Government Targets
Iranian Cyber Threat Actor Targets Iraqi Government Officials in AI-Powered Campaign
SloppyLemming Targets Pakistan and Bangladesh Governments Using Dual Malware Chains
Suspected Nork digital intruders caught breaking into US healthcare, education orgs
900 Sangoma FreePBX Instances Infected With Web Shells
[NEU] [hoch] OpenClaw: Mehrere Schwachstellen
UAT-10027 Targets U.S. Education and Healthcare with Dohdoor Backdoor
Vulnérabilité dans Juniper Networks Junos OS Evolved (26 février 2026)
Multiples vulnérabilités dans SPIP (26 février 2026)
[NEU] [mittel] Cisco Unified Computing System (UCS) Manager Software: Mehrere Schwachstellen
[NEU] [mittel] Cisco FXOS und Unified Computing System (UCS): Mehrere Schwachstellen
[NEU] [kritisch] Cisco Catalyst SD-WAN Manager und SD-WAN Controller: Mehrere Schwachstellen
[UPDATE] [mittel] GIMP: Schwachstelle ermöglicht Codeausführung
[UPDATE] [hoch] GIMP: Mehrere Schwachstellen ermöglichen Codeausführung
[UPDATE] [mittel] GIMP: Schwachstelle ermöglicht Codeausführung
Claude collaboration tools left the door wide open to remote code execution
Fake Next.js job interview tests backdoor developer's devices
Patch these 4 critical, make-me-root SolarWinds bugs ASAP
Developer-targeting campaign using malicious Next.js repositories
[UPDATE] [mittel] GIMP: Mehrere Schwachstellen ermöglichen Codeausführung
Fraud Investigation Reveals Sophisticated Python Malware
Bulletin d'actualité CERTFR-2026-ACT-008 (23 février 2026)
Fake Huorong security site infects users with ValleyRAT
How a single typo led to RCE in Firefox
Compromised npm package silently installs OpenClaw on developer machines
[UPDATE] [hoch] Microsoft Azure: Mehrere Schwachstellen
Chinese hackers exploited zero-day Dell RecoverPoint flaw for 1.5 years
Flaws in four popular VS Code extensions left 128 million installs open to attack
ClickFix Attacks Abuses DNS Lookup Command to Deliver ModeloRAT
Critical Vulnerabilities in Ivanti EPMM Exploited