全部
最新采集的全量资讯流
-
D&M Contractors by anubis
A small breach, real employee data.
A small breach, real employee data.A small breach, real employee data.扩展字段
{ "activity": "Construction", "attack_date": "2026-06-05T20:50:26.499998+00:00", "country": null, "discovered_at": "2026-06-05T20:50:58.625034+00:00", "duplicate_count": 0, "group": "anubis", "permalink": "https://www.ransomware.live/id/RCZNIENvbnRyYWN0b3JzQGFudWJpcw==", "post_url": "http://om6q4a6cyipxvt7ioudxt24cw4oqu4yodmqzl25mqd2hgllymrgu4aqd.onion/r/7ennLNxUKQ+HQYzWqdXuLdC6C5QrL0wfb8M5AZCTds3hzzunjNKym2DApCALNYMhfVLoA49bBTZQ2wEE3O4zd6bXpGSFJq", "press": null, "screenshot": "https://images.ransomware.live/victims/8fd100887388a977df70880ec73960ad.png", "website": null } -
obrieneng.com by incransom
contract nda confidential gov\dot\military\va\sam.gov other
contract nda confidential gov\dot\military\va\sam.gov othercontract nda confidential gov\dot\military\va\sam.gov other扩展字段
{ "activity": "Construction", "attack_date": "2026-06-05T20:06:41.957000+00:00", "country": "US", "discovered_at": "2026-06-05T20:23:40.606339+00:00", "duplicate_count": 0, "group": "incransom", "infostealer": { "employees": 0, "employees_url": 0, "infostealer_stats": {}, "last_employee_compromised": null, "last_user_compromised": null, "thirdparties": 1, "update": "2026-06-05T20:23:21", "users": 0, "users_url": 0 }, "permalink": "https://www.ransomware.live/id/b2JyaWVuZW5nLmNvbUBpbmNyYW5zb20=", "post_url": "http://incblog6qu4y4mm4zvw5nrmue6qbwtgjsxpw6b7ixzssu36tsajldoad.onion/blog/disclosures/6a232c515ae71db30c46b0a3", "press": null, "screenshot": "https://images.ransomware.live/victims/9857db7a7f715913ce24b634eaf394fd.png", "website": "obrieneng.com" } -
Demand.ioNEW by coinbasecartel
[AI generated] N/A
[AI generated] N/A[AI generated] N/A扩展字段
{ "activity": "Technology", "attack_date": "2026-06-05T19:21:24.643957+00:00", "country": null, "discovered_at": "2026-06-05T19:21:43.032988+00:00", "duplicate_count": 0, "group": "coinbasecartel", "permalink": "https://www.ransomware.live/id/RGVtYW5kLmlvTkVXQGNvaW5iYXNlY2FydGVs", "post_url": "http://fjg4zi4opkxkvdz7mvwp7h6goe4tcby3hhkrz43pht4j3vakhy75znyd.onion/companies/demand", "press": null, "screenshot": "https://images.ransomware.live/victims/42f28d16bf38ea457582f662f37d090a.png", "website": "Demand.ioNEW" } -
Cambridge Mobile TelematicNEW by coinbasecartel
[AI generated] Cambridge Mobile Telematics (CMT) is a US-based telematics technology company headquartered in Cambridge, Massachusetts. It develops mobile sensing and data analytics platforms that measure driving behavior to improve road safety and reduce vehicle crashes. Its technology is used by insurers, rideshare companies, and fleets to assess risk and …
[AI generated] Cambridge Mobile Telematics (CMT) is a US-based telematics technology company headquartered in Cambridge, Massachusetts. It develops mobile sensing and data analytics platforms that measure driving behavior to improve road safety and reduce vehicle crashes. Its technology is used by insurers, rideshare companies, and fleets to assess risk and[AI generated] Cambridge Mobile Telematics (CMT) is a US-based telematics technology company headquartered in Cambridge, Massachusetts. It develops mobile sensing and data analytics platforms that measure driving behavior to improve road safety and reduce vehicle crashes. Its technology is used by insurers, rideshare companies, and fleets to assess risk and reward safe driving through usage-based insurance and fleet management solutions.扩展字段
{ "activity": "Technology", "attack_date": "2026-06-05T19:20:51.073785+00:00", "country": null, "discovered_at": "2026-06-05T19:21:12.870572+00:00", "duplicate_count": 0, "group": "coinbasecartel", "permalink": "https://www.ransomware.live/id/Q2FtYnJpZGdlIE1vYmlsZSBUZWxlbWF0aWNORVdAY29pbmJhc2VjYXJ0ZWw=", "post_url": "http://fjg4zi4opkxkvdz7mvwp7h6goe4tcby3hhkrz43pht4j3vakhy75znyd.onion/companies/cmtele", "press": null, "screenshot": "https://images.ransomware.live/victims/99575ac1e984f0ad3ae2b21b5e995992.png", "website": null } -
CVE-2026-11413 | JingDong JD Cloud Box AX6600 4.5.3.r4546 /sbin/jdcweb_rpc set_macfilter stack-based overflow
A vulnerability classified as <a href="https://vuldb.com/kb/risk">critical</a> has been found in <a href="https://vuldb.com/product/jingdong:jd_cloud_box_ax6600">JingDong JD Cloud Box AX6600 4.5.3.r4546</a>. The impacted element is the function <code>set_macfilter</code> of the file <em>/sbin/jdcweb_rpc</em>. The manipulation leads to stack-based buffer over…
A vulnerability classified as <a href="https://vuldb.com/kb/risk">critical</a> has been found in <a href="https://vuldb.com/product/jingdong:jd_cloud_box_ax6600">JingDong JD Cloud Box AX6600 4.5.3.r4546</a>. The impacted element is the function <code>set_macfilter</code> of the file <em>/sbin/jdcweb_rpc</em>. The manipulation leads to stack-based buffer overA vulnerability classified as <a href="https://vuldb.com/kb/risk">critical</a> has been found in <a href="https://vuldb.com/product/jingdong:jd_cloud_box_ax6600">JingDong JD Cloud Box AX6600 4.5.3.r4546</a>. The impacted element is the function <code>set_macfilter</code> of the file <em>/sbin/jdcweb_rpc</em>. The manipulation leads to stack-based buffer overflow. This vulnerability is traded as <a href="https://vuldb.com/cve/CVE-2026-11413">CVE-2026-11413</a>. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.扩展字段
{ "raw_pub_date": "Fri, 05 Jun 2026 20:45:50 +0200" } -
CVE-2026-11412 | Jinher OA C6 GetFormSn.aspx queryID sql injection
A vulnerability described as <a href="https://vuldb.com/kb/risk">critical</a> has been identified in <a href="https://vuldb.com/product/jinher:oa">Jinher OA C6</a>. The affected element is an unknown function of the file <em>/C6/JHSoft.Web.ModuleCount/GetFormSn.aspx</em>. Executing a manipulation of the argument <em>queryID</em> can lead to sql injection. T…
A vulnerability described as <a href="https://vuldb.com/kb/risk">critical</a> has been identified in <a href="https://vuldb.com/product/jinher:oa">Jinher OA C6</a>. The affected element is an unknown function of the file <em>/C6/JHSoft.Web.ModuleCount/GetFormSn.aspx</em>. Executing a manipulation of the argument <em>queryID</em> can lead to sql injection. TA vulnerability described as <a href="https://vuldb.com/kb/risk">critical</a> has been identified in <a href="https://vuldb.com/product/jinher:oa">Jinher OA C6</a>. The affected element is an unknown function of the file <em>/C6/JHSoft.Web.ModuleCount/GetFormSn.aspx</em>. Executing a manipulation of the argument <em>queryID</em> can lead to sql injection. This vulnerability appears as <a href="https://vuldb.com/cve/CVE-2026-11412">CVE-2026-11412</a>. The attack may be performed from remote. In addition, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.扩展字段
{ "raw_pub_date": "Fri, 05 Jun 2026 20:43:46 +0200" } -
CVE-2026-11411 | iAI Lab PDF AI App 4.21.0 on Android chatpdf.pro getExternalCacheDir _display_name path traversal
A vulnerability marked as <a href="https://vuldb.com/kb/risk">critical</a> has been reported in <a href="https://vuldb.com/product/iai_lab:pdf_ai_app">iAI Lab PDF AI App 4.21.0</a> on Android. Impacted is the function <code>getExternalCacheDir</code> of the component <em>chatpdf.pro</em>. Performing a manipulation of the argument <em>_display_name</em> resul…
A vulnerability marked as <a href="https://vuldb.com/kb/risk">critical</a> has been reported in <a href="https://vuldb.com/product/iai_lab:pdf_ai_app">iAI Lab PDF AI App 4.21.0</a> on Android. Impacted is the function <code>getExternalCacheDir</code> of the component <em>chatpdf.pro</em>. Performing a manipulation of the argument <em>_display_name</em> resulA vulnerability marked as <a href="https://vuldb.com/kb/risk">critical</a> has been reported in <a href="https://vuldb.com/product/iai_lab:pdf_ai_app">iAI Lab PDF AI App 4.21.0</a> on Android. Impacted is the function <code>getExternalCacheDir</code> of the component <em>chatpdf.pro</em>. Performing a manipulation of the argument <em>_display_name</em> results in path traversal. This vulnerability is reported as <a href="https://vuldb.com/cve/CVE-2026-11411">CVE-2026-11411</a>. The attack requires a local approach. Moreover, an exploit is present. The vendor was contacted early about this disclosure but did not respond in any way.扩展字段
{ "raw_pub_date": "Fri, 05 Jun 2026 20:42:27 +0200" } -
CVE-2026-11408 | vertex-app vertex up to 2026.02.12 Log Viewer Endpoint app/model/LogMod.js req.query os command injection
A vulnerability labeled as <a href="https://vuldb.com/kb/risk">critical</a> has been found in <a href="https://vuldb.com/product/vertex-app:vertex">vertex-app vertex up to 2026.02.12</a>. This issue affects some unknown processing of the file <em>app/model/LogMod.js</em> of the component <em>Log Viewer Endpoint</em>. Such manipulation of the argument <em>req…
A vulnerability labeled as <a href="https://vuldb.com/kb/risk">critical</a> has been found in <a href="https://vuldb.com/product/vertex-app:vertex">vertex-app vertex up to 2026.02.12</a>. This issue affects some unknown processing of the file <em>app/model/LogMod.js</em> of the component <em>Log Viewer Endpoint</em>. Such manipulation of the argument <em>reqA vulnerability labeled as <a href="https://vuldb.com/kb/risk">critical</a> has been found in <a href="https://vuldb.com/product/vertex-app:vertex">vertex-app vertex up to 2026.02.12</a>. This issue affects some unknown processing of the file <em>app/model/LogMod.js</em> of the component <em>Log Viewer Endpoint</em>. Such manipulation of the argument <em>req.query</em> leads to os command injection. This vulnerability is documented as <a href="https://vuldb.com/cve/CVE-2026-11408">CVE-2026-11408</a>. The attack can be executed remotely. Additionally, an exploit exists. It is best practice to apply a patch to resolve this issue.扩展字段
{ "raw_pub_date": "Fri, 05 Jun 2026 20:39:00 +0200" }