Daily CyberSecurity •

Tor Meets Docker: Sophisticated Crypto-Mining Campaign Hijacks Misconfigured APIs

Docker

Cybercriminals

Tor Meets Docker: Sophisticated Crypto-Mining Campaign Hijacks Misconfigured APIs

June 19, 2025

MySQL Servers Under Attack: Threat Actors Exploiting UDFs to Inject Gh0stRAT, XWorm & Zoho Agents

MySQL Attacks, UDF Exploitation

Cybercriminals

MySQL Servers Under Attack: Threat Actors Exploiting UDFs to Inject Gh0stRAT, XWorm & Zoho Agents

June 19, 2025

Elastic Uncovers Stealthy Campaign Using GHOSTPULSE and ARECHCLIENT2 Malware

Fake captcha

Cybercriminals

Elastic Uncovers Stealthy Campaign Using GHOSTPULSE and ARECHCLIENT2 Malware

June 19, 2025

Water Curse: GitHub Supply Chain Attack Spreads Malware via Fake Tools, Targets Devs & Gamers

GitHub

Water Curse: GitHub Supply Chain Attack Spreads Malware via Fake Tools, Targets Devs & Gamers

June 17, 2025

Ransomware Gang Qilin Rises Amid Collapse of Major Gangs Like RansomHub and LockBit

Qilin

Malware

Ransomware Gang Qilin Rises Amid Collapse of Major Gangs Like RansomHub and LockBit

June 19, 2025

Invoice to Infection: Sorillus RAT Campaign Strikes European Organizations

invoic

Malware

Invoice to Infection: Sorillus RAT Campaign Strikes European Organizations

June 19, 2025

Taiwan Under Attack: Sophisticated Phishing Campaign Delivers Winos 4.0, HoldingHands RAT, & Gh0stCringe

Taiwan Cyberattack, Phishing Campaign

Malware

Taiwan Under Attack: Sophisticated Phishing Campaign Delivers Winos 4.0, HoldingHands RAT, & Gh0stCringe

June 18, 2025

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

KimJong

Malware

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

June 18, 2025

Hackers Leak 7.4 Million Paraguayan Citizen Records, Demand $1 Per Person Ransom

Paraguay Data Breach, Ransomware

Data Leak

Hackers Leak 7.4 Million Paraguayan Citizen Records, Demand $1 Per Person Ransom

June 17, 2025

SmartAttack: Turning Your Smartwatch into a Spy Tool for Air-Gapped Networks

Smartwatch Hacking, Air-Gapped Data Exfiltration

Data Leak

SmartAttack: Turning Your Smartwatch into a Spy Tool for Air-Gapped Networks

June 16, 2025

Android’s Secret Tracking: Meta & Yandex Abused Localhost for User Data

Android Tracking

Data Leak

Android’s Secret Tracking: Meta & Yandex Abused Localhost for User Data

June 9, 2025

Popular Chrome Extensions Caught Leaking Sensitive User Data via Unencrypted HTTP

Data Leak

Popular Chrome Extensions Caught Leaking Sensitive User Data via Unencrypted HTTP

June 7, 2025

Windows 11 Recall Adds Data Export for EU Users: Share Snapshots with Third Parties Windows 11 Recall, Data Export Windows 11 Easy Anti-Cheat Windows 11 Update, Cumulative Update Windows Update, ACPI.sys Windows Updates, Enterprise Software Windows 11 Start Data Encryption Standard Printing Problems Windows 11 updates Estimated installation time Smart App Control, Windows 11 security

Windows 11 Recall, Data Export Windows 11 Easy Anti-Cheat Windows 11 Update, Cumulative Update Windows Update, ACPI.sys Windows Updates, Enterprise Software Windows 11 Start Data Encryption Standard Printing Problems Windows 11 updates Estimated installation time Smart App Control, Windows 11 security

Windows 11 Recall Adds Data Export for EU Users: Share Snapshots with Third Parties

Ddos June 19, 2025

YouTube Shorts to Integrate Veo 3 AI: Text-to-Video Creation Arriving This Summer YouTube Shorts, AI Video Generation

YouTube Shorts, AI Video Generation

YouTube Shorts to Integrate Veo 3 AI: Text-to-Video Creation Arriving This Summer

Ddos June 19, 2025

Seamless eSIM Transfer: iOS 26 Now Supports Direct Migration to Android Apple-WWDC25-iOS-26-Home-Screen

Apple-WWDC25-iOS-26-Home-Screen

Seamless eSIM Transfer: iOS 26 Now Supports Direct Migration to Android

Ddos June 19, 2025

Cisco ClamAV Critical Flaws: CVE-2025-20260 (CVSS 9.8) Allows Code Execution ClamAV Vulnerability ClamAV Vulnerabilities, RCE

ClamAV Vulnerability ClamAV Vulnerabilities, RCE

Cisco ClamAV Critical Flaws: CVE-2025-20260 (CVSS 9.8) Allows Code Execution

Ddos June 19, 2025

WordPress AI Engine Flaw (CVE-2025-5071): Critical Bug Allows Subscriber-Level Account Takeover WordPress AI Engine, Privilege Escalation CVE-2024-43153 & CVE-2024-43234

WordPress AI Engine, Privilege Escalation CVE-2024-43153 & CVE-2024-43234

WordPress AI Engine Flaw (CVE-2025-5071): Critical Bug Allows Subscriber-Level Account Takeover

Ddos June 19, 2025

CVE-2025-20271: Cisco Meraki VPN Bug Exposes MX and Z Series Devices to Remote DoS Attacks Cisco Meraki, VPN Vulnerability Cisco Nexus Dashboard - CVE-2024-20424 CVE-2025-20115 Cisco Vulnerability CVE-2018-0171 Privilege Escalation Cisco Unified Intelligence Center

Cisco Meraki, VPN Vulnerability Cisco Nexus Dashboard - CVE-2024-20424 CVE-2025-20115 Cisco Vulnerability CVE-2018-0171 Privilege Escalation Cisco Unified Intelligence Center

CVE-2025-20271: Cisco Meraki VPN Bug Exposes MX and Z Series Devices to Remote DoS Attacks

Ddos June 19, 2025

SSRF Flaw (CVE-2025-6087) in OpenNext for Cloudflare Allows Unauthenticated Content Proxying SSRF, Cloudflare OpenNext

SSRF, Cloudflare OpenNext

SSRF Flaw (CVE-2025-6087) in OpenNext for Cloudflare Allows Unauthenticated Content Proxying

Ddos June 19, 2025

Critical Auth Bypass Vulnerability (CVE-2025-51381) Found in KAON KCM3100 Gateways KAON Wi-Fi Gateway, Authentication Bypass

KAON Wi-Fi Gateway, Authentication Bypass

Critical Auth Bypass Vulnerability (CVE-2025-51381) Found in KAON KCM3100 Gateways

Ddos June 19, 2025

XDSpy Resurfaces: Stealthy Cyber-Espionage Campaign Targets Governments with Obscure Windows LNK Flaw XDSPY

XDSPY

XDSpy Resurfaces: Stealthy Cyber-Espionage Campaign Targets Governments with Obscure Windows LNK Flaw

Ddos June 19, 2025

Halo Security Honored with 2025 MSP Today Product of the Year Award halo-security-msp-today_1750188136PpIMWQWEM7

halo-security-msp-today_1750188136PpIMWQWEM7

Halo Security Honored with 2025 MSP Today Product of the Year Award

cybernewswire June 18, 2025

Miami, Florida, 18th June 2025, CyberNewsWire

TikTok Gets Another Lifeline: Trump Extends Ban Deadline by 90 Days TikTokRefugee TikTok Ban, US Extension

TikTokRefugee TikTok Ban, US Extension

TikTok Gets Another Lifeline: Trump Extends Ban Deadline by 90 Days

Ddos June 18, 2025

D-Link Router Flaws Allow Code Execution, PoC Available, No Patch D-Link

D-Link

D-Link Router Flaws Allow Code Execution, PoC Available, No Patch

Ddos June 18, 2025

Broadcom Unveils VMware Cloud Foundation 9.0: A Unified Private Cloud for AI & Modern Workloads Broadcom VCF, Private Cloud

Broadcom VCF, Private Cloud

Broadcom Unveils VMware Cloud Foundation 9.0: A Unified Private Cloud for AI & Modern Workloads

Ddos June 18, 2025

Wi-Fi 8 is Coming: Ultra-Reliable Connectivity Set for 2028 Launch Wi-Fi 8, Wireless Standard Captive portal - WPA3 Security

Wi-Fi 8, Wireless Standard Captive portal - WPA3 Security

Wi-Fi 8 is Coming: Ultra-Reliable Connectivity Set for 2028 Launch

Ddos June 18, 2025

OneDrive Shock: User Loses 30 Years of Photos After Account Suspension, Highlighting Cloud Backup Risks OneDrive Suspension, Data Loss

OneDrive Suspension, Data Loss

OneDrive Shock: User Loses 30 Years of Photos After Account Suspension, Highlighting Cloud Backup Risks

Ddos June 18, 2025

Mastodon Cracks Down: New Terms Ban Unauthorized AI Data Scraping Mastodon Data, AI Scraping CVE-2024-23832 PoC

Mastodon Data, AI Scraping CVE-2024-23832 PoC

Mastodon Cracks Down: New Terms Ban Unauthorized AI Data Scraping

Ddos June 18, 2025

Firefox Pilots AI Search: Perplexity AI Integration Challenges Google’s Dominance Firefox AI Search, Perplexity AI

Firefox AI Search, Perplexity AI

Firefox Pilots AI Search: Perplexity AI Integration Challenges Google’s Dominance

Ddos June 18, 2025

The “Infinite Workday” is Here: Microsoft Warns of Never-Ending Work Driven by Hybrid Models & AI Infinite Workday, AI in Work Microsoft Russia, Bankruptcy AI code generation, Microsoft AI Microsoft Layoffs, Restructuring

Infinite Workday, AI in Work Microsoft Russia, Bankruptcy AI code generation, Microsoft AI Microsoft Layoffs, Restructuring

The “Infinite Workday” is Here: Microsoft Warns of Never-Ending Work Driven by Hybrid Models & AI

Ddos June 18, 2025

Urgent Ubiquiti Alert: Critical Flaws (CVSS 9.9) Allow Privilege Escalation via XSS & SQL Injection Ubiquiti Vulnerabilities, Privilege Escalation

Ubiquiti Vulnerabilities, Privilege Escalation

Urgent Ubiquiti Alert: Critical Flaws (CVSS 9.9) Allow Privilege Escalation via XSS & SQL Injection

Ddos June 18, 2025

Critical Linux Root Exploit Chain Discovered in PAM & UDisks, Affecting Major Distros Linux Root Privilege Escalation

Linux Root Privilege Escalation

Critical Linux Root Exploit Chain Discovered in PAM & UDisks, Affecting Major Distros

Ddos June 18, 2025