The Botting Network
96,320 records exposed — Dates of birth, Email addresses, Passwords, Usernames
Latest Disclosures
AUTOSUR
487,226 records exposed — Email addresses, Names, Phone numbers, Physical addresses and 3 more
Cisco Multiple Products
Cisco Multiple Products Improper Input Validation Vulnerability — Cisco Secure Email Gateway, Secure Email, AsyncOS Software, and Web Manager appliances contains an improper input validation vulnerability that allows thr
Web Hosting Talk
515,149 records exposed — Email addresses, IP addresses, Passwords, Usernames
ASUS Live Update
ASUS Live Update Embedded Malicious Code Vulnerability — ASUS Live Update contains an embedded malicious code vulnerability client were distributed with unauthorized modifications introduced through a supply chain compro
SonicWall SMA1000 appliance
SonicWall SMA1000 Missing Authorization Vulnerability — SonicWall SMA1000 contains a missing authorization vulnerability that could allow for privilege escalation appliance management console (AMC) of affected devices.
Fortinet Multiple Products
Fortinet Multiple Products Improper Verification of Cryptographic Signature Vulnerability — Fortinet FortiOS, FortiSwitchMaster, FortiProxy, and FortiWeb contain an improper verification of cryptographic signature vulner
Apple Multiple Products
Apple Multiple Products Use-After-Free WebKit Vulnerability — Apple iOS, iPadOS, macOS, and other Apple products contain a use-after-free vulnerability in WebKit. Processing maliciously crafted web content may lead to me
Gladinet CentreStack and Triofox
Gladinet CentreStack and Triofox Hard Coded Cryptographic Vulnerability — Gladinet CentreStack and TrioFox contain a hardcoded cryptographic keys vulnerability for their implementation of the AES cryptoscheme. This vulne
Sierra Wireless AirLink ALEOS
Sierra Wireless AirLink ALEOS Unrestricted Upload of File with Dangerous Type Vulnerability — Sierra Wireless AirLink ALEOS contains an unrestricted upload of file with dangerous type vulnerability. A specially crafted H
Google Chromium
Google Chromium Out of Bounds Memory Access Vulnerability — Google Chromium contains an out of bounds memory access vulnerability in ANGLE that could allow a remote attacker to perform out of bounds memory access via a c
OSGeo GeoServer
OSGeo GeoServer Improper Restriction of XML External Entity Reference Vulnerability — OSGeo GeoServer contains an improper restriction of XML external entity reference vulnerability that occurs when the application accep
Uber Technologies (2025)
1.8M driver records exposed via compromised background check vendor system
City of Mississauga (Ontario)
190K resident records exposed via compromised property tax and utility billing portal
Philips Healthcare
560K patient device records compromised
RARLAB WinRAR
RARLAB WinRAR Path Traversal Vulnerability — RARLAB WinRAR contains a path traversal vulnerability allowing an attacker to execute code in the context of the current user.
Microsoft Windows
Microsoft Windows Use After Free Vulnerability — Microsoft Windows Cloud Files Mini Filter Driver contains a use after free vulnerability that can allow an authorized attacker to elevate privileges locally.
D-Link Routers
D-Link Routers Buffer Overflow Vulnerability — D-Link Routers contains a buffer overflow vulnerability that has a high impact on confidentiality, integrity, and availability. The impacted products could be end-of-life (E
Vanderbilt University
190K student and medical center records exposed via ransomware on administrative systems
Discover Financial Services
520K card holder records exposed via vulnerability in mobile banking application
Array Networks ArrayOS AG
Array Networks ArrayOS AG OS Command Injection Vulnerability — Array Networks ArrayOS AG contains an OS command injection vulnerability that could allow an attacker to execute arbitrary commands.
KinoKong
817,808 records exposed — Email addresses, IP addresses, Names, Passwords and 1 more
Enbridge Inc
780K customer and pipeline operational records exposed
Gibson Dunn & Crutcher LLP
280K antitrust investigation records exposed via phishing attack on senior associates