mitre-t1059
932 articles with this tag
HIGH
MEDIUM
HIGH
MEDIUM
HIGH
MEDIUM
CRITICAL
MEDIUM
HIGH
HIGH
CRITICAL
MEDIUM
HIGH
HIGH
CRITICAL
HIGH
HIGH
MEDIUM
MEDIUM
MEDIUM
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
MEDIUM
HIGH
HIGH
CRITICAL
HIGH
HIGH
CRITICAL
HIGH
HIGH
CRITICAL
HIGH
HIGH
CRITICAL
MEDIUM
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
HIGH
CRITICAL
CRITICAL
MEDIUM
CRITICAL
CRITICAL
CRITICAL
CRITICAL
HIGH
HIGH
MEDIUM
HIGH
CRITICAL
HIGH
HIGH
HIGH
MEDIUM
MEDIUM
HIGH
HIGH
MEDIUM
MEDIUM
HIGH
HIGH
MEDIUM
HIGH
HIGH
CRITICAL
HIGH
CRITICAL
MEDIUM
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
CRITICAL
CRITICAL
HIGH
HIGH
CRITICAL
HIGH
MEDIUM
AI accelerates development of ransomware toolkit with EDR evasion capabilities
MazeBolt launches AI module to simulate novel DDoS attack vectors
Typosquatted npm packages used to steal cloud and CI/CD secrets
Hackers Target Global Stock Exchange in Espionage Operation
‘HTTP/2 Bomb’ Exploit Knocks Web Servers Offline in Seconds
Global Stock Exchange Hit by Monthslong Email Campaign
New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare
Infostealers are becoming the go-to phishing payload
Argamal: Malware hidden in hentai games
Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign
Russian hackers exploit WinRAR vulnerability for data theft
China Uses Dual-Method Cyberattack on Czech Orgs
AI-built ransomware toolkit automates EDR evasion, AD discovery
Four coordinated npm supply chain campaigns active in May–June 2026 — TTPs, IOCs, and detection notes
Gamaredon Exploits WinRAR to Deliver GammaWorm and GammaSteel Against Ukraine
CISA and Partners Urge Hardening Automatic Tank Gauge Systems
The HazyBeacon Protocol – How Malware Weaponizes Amazon Web Services (AWS) Lambda Function URLs
Russian spy agency says foreign spies turned officials' smartphones into surveillance devices
Threat Actor Uses AI to Build EDR Evasion Tools
Sophos uncovers AI-powered malware lab built for EDR evasion
Attackers Hijack Red Hat npm Scope to Steal Cloud Secrets
Supply Chain Attack Hits 32 Red Hat NPM Packages
Malware hides in Steam comments to infect WordPress sites
Red Hat npm packages compromised to steal developer credentials
Miasma supply chain attack: malicious code found in @redhat-cloud-services npm packages
Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm
WordPress malware campaign hides payloads in Steam profiles
PHANTOMPULSE: anatomy of a hijackable blockchain-C2 RAT
China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan
Critical Flowise Flaw Gives Attackers Full Server Control
Poisoning Claude Code: One GitHub Issue to Break the Supply Chain
Flowise’s MCP implementation can run ghost commands
FSB Group Gamaredon Hides Worm in Windows Data Streams
Malicious npm packages abuse dependency confusion to profile developer environments
Russia-aligned crime group Greyvibe extensively uses AI in attacks
No fix yet for critical RCE bug in open-source Git service Gogs - exploit module is out
North Korean hackers Kimsuky target South Korea with new malware variants
New threat actor JINX-0164 targets crypto firms with macOS malware
Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit
Silent Ransom Group Uses In-Person IT Impersonation to Breach Systems
‘Claude Code install’ search result leads to ClickFix infostealer attack
With Complex Cloud Integrations, Small Errors Lead to Major Compromises
New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks
Russia-linked threat group put ChatGPT to work from lure to payload
[NEU] [hoch] OpenClaw: Mehrere Schwachstellen
[NEU] [mittel] Kibana: Mehrere Schwachstellen
Typosquatted npm packages used to steal cloud and CI/CD secrets
Lack of response to critical vulnerability in Gogs is a reminder of the limits of open source projects
Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft
GreyVibe hackers use ChatGPT, Gemini to power cyberattacks
BTMOB Android malware service generates custom phishing payloads
Russia-Linked ‘GreyVibe’ Attackers Use AI to Supercharge Cyberattacks
Hackers exploit FortiClient EMS flaw to push infostealer malware
Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer
BTMOB RAT Spreads Across Brazil, LatAm via MaaS Model
New Gogs zero-day flaw lets hackers get remote code execution
Critical FortiClient EMS Vulnerability Exploited in Fresh Attacks
Authenticated RCE via Argument Injection in Gogs (NOT FIXED)
[NEU] [hoch] Rancher: Mehrere Schwachstellen
New Threat Actor Jinx-0164 Targets Crypto Developers on macOS
[NEU] [hoch] Jenkins Plugins: Mehrere Schwachstellen
Download pumping: New npm deception technique for supply chain attacks
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware
[NEU] [hoch] Gladinet Triofox: Mehrere Schwachstellen
GPU mining malware spreads via SEO poisoning, AI chatbots
BTMOB Android RAT poses significant threat with easy-to-use builder
Latin American Cybercriminals Hoover Up Government Data
CrowdStrike, Google Take Down Glassworm Botnet
[webapps] Casdoor 3.54.1 - Arbitrary File Write via Path Traversal
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
Iranian threat group targets US aviation sector with AI-assisted ‘MiniFast’ backdoor
FBI warns of in-person data theft attacks from extortion gang
GlassWorm Botnet Disrupted
‘SymJack’ Attack Turns AI Coding Agents Into Supply Chain Attack Delivery Systems
LA Metro Cyberattack Linked to Iranian State-Sponsored Hackers
RCE in Strix Agent(Sandbox): A practical guide to prompt injections with impact
FBI: Hackers Sending Operatives in Person to Insert USB Drives and Steal Data
PureLogs Variant Steals Data via Purchase Order Lures
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos
KnowledgeDeliver flaw exploited as a zero-day to install web shells
The Hackers Behind Shai-Hulud: Lucky or Skilled?
From Cookies to Keys: The Threat of Session Hijacking
North Korea's Lazarus Group uses new RemotePE malware against financial targets
Zero-day vulnerability in Japanese LMS exploited to deploy Cobalt Strike
MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries
Iranian APT Targets Aviation, Software Companies With Updated Tools
700+ education and tech websites hijacked in huge ClickFix malware campaign
Iran-Linked Hackers Target US Aviation with Phishing and SEO Poisoning Campaign
KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike
Laravel-Lang Packages Poisoned for Malware Delivery
Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms
TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
Exploitation of KnowledgeDeliver via ViewState Deserialization Vulnerability
Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign
Laravel Lang packages hijacked to deploy credential-stealing malware
Laravel Lang Supply Chain Advisory
Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer
Analyzing Void Dokkaebi’s Cython-Compiled InvisibleFerret Malware
Belarus-linked Ghostwriter group targets Ukraine using Prometheus learning platform lures