Aggregator

Live status, uptime, and verified .onion mirrors for active darknet markets. Real-time monitoring updated continuously by Dark Web Informer.

Threat actors are exploiting an unauthenticated information disclosure vulnerability in the WordPress plugin Gravity SMTP, active on 100,000 sites. [...]

Security researchers at Paradigm Shift have published a working exploit, dubbed usbliter8, that achieves arbitrary code execution inside the SecureROM of Apple's A12 and A13 chips. That code is burned into the silicon at manufacture. No software update can reach it. Affected devices will carry this flaw for as long as they stay in use. This is not a remote attack. It requires

The Gentlemen ransomware-as-a-service (RaaS) operation is actively developing and maintaining a suite of endpoint detection and response (EDR) killers that it hands out to affiliates for impairing system defenses before deploying the encryptor. This mature portfolio of EDR-terminating tools is centered around a framework that's known as GentleKiller. "They also incorporate third-party or

Только 2% генома человека кодирует белки. Остальные 98% — то, о чём наука до сих пор спорит.

Три секунды, которые нужны вредоносному сайту, чтобы угнать аккаунт через Firefox.

Алгоритм будет знать про офсайд раньше, чем это поймёт сам игрок.

Meteor 3.0 helped Rocket.Chat move from Node.js 14 to Node.js 20, cutting runtime debt after Fibers removal and reducing supply-chain risk across federal users.

A threat actor using the alias ChimeraZ has posted what they describe as the database of Ouestfrance-Immo.pro (ouestfrance-immo.com), a French digital platform built for real-estate professionals and property marketing services.

Даже свежая iOS не сможет закрыть путь к старой ошибке.

A vulnerability, which was classified as problematic, was found in NI grpc-device and InstrumentStudio up to 2.17.0. This affects an unknown function. The manipulation results in memory leak. This vulnerability is reported as CVE-2026-48141. The attack can be launched remotely. No exploit exists.

A vulnerability, which was classified as problematic, has been found in HCL Verse 14.5.10 on Android. The impacted element is an unknown function. The manipulation leads to improper input validation. This vulnerability is documented as CVE-2026-21768. The attack needs to be performed locally. There is not any exploit available.

A vulnerability classified as problematic was found in Apache APISIX up to 3.16.0. The affected element is an unknown function of the component Configuration Handler. Executing a manipulation can lead to cross-site request forgery. This vulnerability is registered as CVE-2026-49871. It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is advised.