mitre-ta0003
355 articles with this tag
CRITICAL
HIGH
MEDIUM
HIGH
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
MEDIUM
HIGH
CRITICAL
HIGH
CRITICAL
CRITICAL
MEDIUM
CRITICAL
HIGH
HIGH
MEDIUM
HIGH
HIGH
MEDIUM
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
MEDIUM
MEDIUM
CRITICAL
HIGH
HIGH
HIGH
HIGH
MEDIUM
MEDIUM
HIGH
MEDIUM
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
MEDIUM
HIGH
HIGH
HIGH
CRITICAL
HIGH
HIGH
HIGH
HIGH
CRITICAL
CRITICAL
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
MEDIUM
CRITICAL
HIGH
CRITICAL
HIGH
HIGH
HIGH
MEDIUM
CRITICAL
HIGH
HIGH
HIGH
CRITICAL
CRITICAL
HIGH
HIGH
HIGH
CRITICAL
HIGH
Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT
Typosquatted npm packages used to steal cloud and CI/CD secrets
Global Stock Exchange Hit by Monthslong Email Campaign
Argamal: Malware hidden in hentai games
Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign
SideCopy group targets Afghanistan's Ministry of Finance with Xeno RAT
Gamaredon Exploits WinRAR to Deliver GammaWorm and GammaSteel Against Ukraine
LABScon25 Replay | Gamaredon x Turla: Unveiling a 2025 Espionage Alliance Targeting Ukraine
Infected Red Hat npm packages expose developer credentials
Meta AI Hands Over High-Profile Instagram Accounts to Hackers
Pakistan-Linked SideCopy Targets Afghanistan Finance Ministry with Xeno RAT
Malware hides in Steam comments to infect WordPress sites
Miasma supply chain attack: malicious code found in @redhat-cloud-services npm packages
Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm
Russian hacker used AI to run fraud scheme on MAGA Telegram channel
PHANTOMPULSE: anatomy of a hijackable blockchain-C2 RAT
FSB Group Gamaredon Hides Worm in Windows Data Streams
Typosquatted npm packages used to steal cloud and CI/CD secrets
Hackers exploit FortiClient EMS flaw to push infostealer malware
Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer
BTMOB RAT Spreads Across Brazil, LatAm via MaaS Model
Critical FortiClient EMS Vulnerability Exploited in Fresh Attacks
New Threat Actor Jinx-0164 Targets Crypto Developers on macOS
GPU mining malware spreads via SEO poisoning, AI chatbots
[local] Realtek rtl819x - Local Privilege
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
Iranian threat group targets US aviation sector with AI-assisted ‘MiniFast’ backdoor
GlassWorm Botnet Disrupted
BTMOB: A stealthy RAT burrowing deep into Android devices
Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos
KnowledgeDeliver flaw exploited as a zero-day to install web shells
North Korea's Lazarus Group uses new RemotePE malware against financial targets
Zero-day vulnerability in Japanese LMS exploited to deploy Cobalt Strike
Iranian APT Targets Aviation, Software Companies With Updated Tools
MFA Prompt Bombing: Why Your Second Factor Isn't Saving You
Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms
TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
Laravel Lang packages hijacked to deploy credential-stealing malware
FatGid - FreeBSD 14.x kernel LPE
Paved With Intent: ROADtools and Nation-State Tactics in the Cloud
Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor
Chinese APTs Share Linux Backdoor in Central Asia Telco Attacks
Nine-Year-Old Linux Kernel Flaw Leaks SSH Keys and Password Hashes
How a Webmail Log File Became a Root-Level Backdoor
Mini Shai-Hulud Hits Hundreds of npm Packages in AntV Ecosystem
Webworm APT targets European government organizations with new backdoors
SHub Reaper impersonates Apple, Google, and Microsoft in one MacOS attack chain
Exploit released for new PinTheft Arch Linux root escalation flaw
Tracking TamperedChef Clusters via Certificate and Code Reuse
Stealer Spoofs Google, Microsoft & Apple, Then Backdoors macOS
Mini Shai-Hulud returns, compromising hundreds of npm packages
New Shai-Hulud malware wave compromises 600 npm packages
Critical Microsoft Vulnerabilities Doubled: From Exposure to Escalation
New macOS infostealer impersonates Apple, Microsoft, and Google in a single attack chain
Mini Shai-Hulud Hits AntV: 300+ Malicious npm Packages Published via Compromised Maintainer Account
'Claw Chain' Vulnerabilities Threaten OpenClaw Deployments
Shai-Hulud Worm Clones Spread After Code Release
Turla group evolves Kazuar backdoor into modular P2P botnet
TeamPCP releases ‘vibe coded’ Shai-Hulud source code, issues challenge
Undermining the trust boundary: Investigating a stealthy intrusion through third-party compromise
Kazuar: Anatomy of a nation-state botnet
Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access
Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence
CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits
Broadcom patches high-severity VMware Fusion flaw allowing local privilege escalation
dMSA Ouroboros: Self-Sustaining Credential Extraction in Windows Server 2025
Threat Actors Weaponize Tiflux RMMs in Malspam Attacks
Meet Fragnesia, the third Linux kernel vulnerability in a month
Fragnesia (CVE-2026-46300): Frequently asked questions about new Linux Kernel XFRM ESP-in-TCP privilege escalation
Ongoing exploitation of Cisco Catalyst SD-WAN vulnerabilities
Kazuar: Anatomy of a nation-state botnet
Mustang Panda Linked to Updated FDMTP Backdoor in Asia-Pacific Espionage Campaign
VELVET CHOLLIMA Infostealer Campaign Using Trading App as Lure
Kimsuky targets organizations with PebbleDash-based tools
Dirty Frag gets a sequel as Fragnesia hands Linux attackers root-level access
New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption
New Fragnesia Linux flaw lets attackers gain root privileges
Analyzing TeamPCP’s Supply Chain Attacks: Checkmarx KICS and elementary-data in CI/CD Credential Theft
Iranian hackers targeted major South Korean electronics maker
Operation SilentCanvas: Attackers use .jpeg files to deliver malware
ClickFix finds a backup plan in PySoxy proxy chains
Malware crew TeamPCP open-sources its Shai-Hulud worm on GitHub
May Patch Tuesday roundup: Critical holes in Windows Netlogon, DNS, and SAP S/4HANA
‘Mini’ Shai-Hulud attack compromises hundreds of npm, PyPI packages
Threat actor Mr_Rot13 exploits critical cPanel flaw to deploy Filemanager backdoor
CVE-2026-41086 Windows Admin Center in Azure Portal Elevation of Privilege Vulnerability
Undermining the trust boundary: Investigating a stealthy intrusion through third-party compromise
Free OnlyFans Lure Used to Spread Cross-Platform CRPx0 Malware
Attackers Combine ClickFix With PySoxy Proxying to Maintain Persistence
cPanel flaw exposes enterprises to hosting supply-chain risks
Malicious Hugging Face Repository Typosquats OpenAI
Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages
TanStack Npm Packages Compromised Inside The Mini Shai Hulud Supply Chain Attack
Inside AD CS Escalation: Unpacking Advanced Misuse Techniques and Tools
cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor
New PamDOORa Linux backdoor sold on cybercrime forum
Malicious Hugging Face model masquerading as OpenAI release hits 244K downloads
Fake OpenAI Privacy Filter Repo Hits #1 on Hugging Face, Draws 244K Downloads
Inside Shadow-Earth-053: A China-Aligned Cyberespionage Campaign Against Government and Defense Sectors in Asia
'Dirty Frag' Linux zero-day exposes most distributions to LPE