Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Oracle

20 articles

CISA Advisories CVE Oracle Jun 1

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2024-21182 Oracle We...

1 IOC

CISA Advisories →

Tenable Blog Advisory Oracle May 29

Oracle May 2026 Critical Security Patch Update Addresses 35 CVEs

Oracle addresses 35 CVEs in its May 2026 Critical Security Patch Update with 35 patches, including 11 critical updates. Key Takeaways The May 2026 Critical S...

Tenable Blog →

GBHackers Malware Oracle May 28

Hackers Host JS Malware on GHOSTYNETWORKS and OMEGATECH

Hackers are abusing two bulletproof hosting providers, GHOSTYNETWORKS and OMEGATECH, to run a global JavaScript (JS) malware infrastructure that powers large...

T1583 T1598

GBHackers →

Help Net Security Malware Oracle GitHub May 27

Fake ChatGPT and Claude installers on GitHub are dropping Deno RAT malware

Attackers are hosting counterfeit installers and plugins on GitHub and SourceForge that pose as widely used software, including ChatGPT, Claude, AutoTune, Ko...

Help Net Security →

Infosecurity Magazine Campaigns Oracle May 27

PureLogs Variant Steals Data via Purchase Order Lures

FortiGuard Labs detailed a PureLogs campaign using JavaScript, PowerShell and process hollowing

Infosecurity Magazine →

Fortinet Blog Campaigns Oracle May 26

Phishing Campaign Deploys JavaScript-Driven PureLogs Variant to Steal Sensitive Data

FortiGuard Labs analyzed a new phishing campaign that uses obfuscated JavaScript, PowerShell, process hollowing, and PureLogs to steal sensitive data

T1566

Fortinet Blog →

The Hacker News CVE Oracle May 25

Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks

Threat actors are exploiting a recently disclosed critical security flaw in Ghost CMS to inject malicious JavaScript code with an aim to fuel ClickFix attack...

1 IOC

The Hacker News →

CSO Online Vulnerability Disclosure Oracle May 25

As AI speeds coding, CVE Lite CLI keeps security deliberately AI-free

As AI coding assistants accelerate software development, one OWASP-backed open-source project is arguing that dependency security tooling still arrives too l...

CSO Online →

BleepingComputer CVE Oracle May 24

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious JavaScript code that triggers C...

1 IOC

BleepingComputer →

The Hacker News Campaigns Oracle GitHub Linux May 23

Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware

A new "coordinated" supply chain attack campaign has impacted eight packages on Packagist including malicious code designed to run a Linux binary retrieved f...

T1195

The Hacker News →

GBHackers Campaigns Oracle May 22

Mini Shai-Hulud Attack Prompts npm to Revoke 2FA-Bypass Tokens

npm has forced a platform-wide reset of granular access tokens that bypass two-factor authentication (2FA) after a wave of supply chain attacks linked to the...

T1195

GBHackers →

GBHackers Vulnerability Disclosure Oracle F5 May 20

New NGINX Vulnerability Exposes Servers to Malicious Code Execution

NGINX has disclosed a new high‑severity vulnerability in its JavaScript module that can allow remote attackers to crash servers and, in specific conditions, ...

GBHackers →

Help Net Security Vulnerability Disclosure Oracle May 20

CVE Lite CLI: Open-source dependency vulnerability scanner

Dependency vulnerability scanning in JavaScript and TypeScript projects has long sat at the end of the development pipeline. Pull requests get opened, contin...

Help Net Security →

GBHackers TTPs Oracle May 19

JavaScript Malware Campaign Drops Crypto Clipper via PowerShell

A large-scale CountLoader campaign that uses layered obfuscation, multi-stage payload delivery, and covert command-and-control (C2) communication to deploy c...

T1027

GBHackers →

GBHackers Campaigns Oracle May 19

Mini Shai-Hulud Attack Hits @antv npm Packages

A large-scale npm supply chain attack has compromised multiple widely used packages within the @antv ecosystem, to investigate what appears to be an active a...

T1195

GBHackers →

GBHackers Vulnerability Disclosure Oracle WordPress May 18

Critical FunnelKit Vulnerability Puts 40,000+ WooCommerce Sites at Risk

A critical security vulnerability in the Funnel Builder plugin by FunnelKit is actively being exploited, putting more than 40,000 WooCommerce websites at ris...

T1041 1 IOC

GBHackers →

Security Affairs Vulnerability Disclosure Oracle WordPress May 17

Attackers exploit Funnel Builder bug to inject e-skimmers into e-stores

Attackers are exploiting a critical flaw in the WordPress Funnel Builder plugin to inject skimming code into WooCommerce checkout pages. A critical vulnerabi...

Security Affairs →

The Hacker News Vulnerability Disclosure Oracle WordPress May 16

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

A critical security vulnerability impacting the Funnel Builder plugin for WordPress has come under active exploitation in the wild to inject malicious JavaSc...

The Hacker News →

BleepingComputer Vulnerability Disclosure Oracle WordPress May 15

Funnel Builder WordPress plugin bug exploited to steal credit cards

A critical vulnerability in the Funnel Builder plugin for WordPress is being actively exploited to inject malicious JavaScript snippets into WooCommerce chec...

BleepingComputer →

GBHackers Malware Oracle May 15

Popular node-ipc npm Library Hit by Supply Chain Attack, Impacting 822K Weekly Downloads

A widely used npm package with more than 822,000 weekly downloads has once again become the center of a serious supply chain attack, raising fresh concerns a...

T1195 T1598

GBHackers →

«Previous page 1 2 3 4 5 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA