CVE-2025-29927 is a vulnerability tracked across 5 threat clusters and 5 intelligence report mentions on ThreatCluster. First observed December 15, 2025; most recent activity July 2, 2026.
In early February 2026, hackers exploited two critical authentication bypass vulnerabilities in the Qinglong task scheduling platform, affecting versions 2.20.1 and earlier. These vulnerabilities, identified as…
In late March 2026, the Vect ransomware group partnered with TeamPCP, a credential theft specialist, to enhance their cybercriminal operations. This collaboration aims to leverage TeamPCP's extensive credential…
Operation PCPcat has compromised 59,128 Next.js and React servers in under 48 hours, exploiting critical vulnerabilities CVE-2025-29927 and CVE-2025-66478. The attackers utilized prototype pollution in JSON payloads to…
The PCPcat malware campaign has compromised more than 59,000 servers in under 48 hours by exploiting critical vulnerabilities in .js and React frameworks. It specifically targets vulnerabilities CVE-2025-29927 and…
IBM QRadar SIEM has eleven known vulnerabilities that can be exploited by attackers, potentially turning the security solution into an entry point for further attacks if not patched. The vulnerabilities include…