Daily CyberSecurity • Zero-hour alerts. Unmatched analysis.

Android Developer Verification: Google Reveals the Full Timeline

Android developer verification timeline showing the September 30 2026 sideloading enforcement and 24-hour advanced flow

Android Developer Verification: Google Reveals the Full Timeline

Do Son June 23, 2026

Google announced its Android developer verification program in 2025. The plan requires a valid developer signature, even...

libssh2 vulnerability CVE-2026-55200 enabling remote code execution via out-of-bounds write

8.1 Critical libssh2 Vulnerability CVE-2026-55200 Enables Remote Code Execution

Do Son June 23, 2026

TL;DR A serious libssh2 vulnerability now puts SSH clients at risk. Researchers track it as CVE-2026-55200,...

MariaDB server vulnerabilities diagram showing shell command execution risks

10 MariaDB Server Vulnerabilities Allow CVSS 10 Attacks

Do Son June 23, 2026

] TL;DR Three serious MariaDB server vulnerabilities threaten database environments. The most severe flaw carries a...

10.0 Mitel Patches 12 Critical MiCollab Vulnerabilities Rated Up to CVSS 10.0 Mitel MiCollab vulnerabilities MISA-2026-0005 command injection flaws rated CVSS 10.0

Mitel MiCollab vulnerabilities MISA-2026-0005 command injection flaws rated CVSS 10.0

10.0 Mitel Patches 12 Critical MiCollab Vulnerabilities Rated Up to CVSS 10.0

Do Son June 23, 2026

TL;DR Mitel disclosed 12 security flaws in MiCollab and the MiVoice Business Solution Virtual Instance (MiVB SVI)....

vendor-signed UEFI applications Secure Boot bypass via BYOVD attack and UEFI DBX revocation

Vendor-Signed UEFI Applications Allow Secure Boot Bypass

Do Son June 23, 2026

TL;DR CERT/CC disclosed a Secure Boot bypass that affects many vendor-signed UEFI applications. ESET researcher Martin Smolar...

HAProxy Vulnerabilities Expose Reverse-Proxy Servers HAProxy vulnerabilities diagram showing reverse-proxy security risks

HAProxy Vulnerabilities Expose Reverse-Proxy Servers

Do Son June 23, 2026

TL;DR Two critical flaws affect the HAProxy software. First, an integer overflow bug allows response smuggling....

QNAP Patches QuMagie Flaws Exposing Private Media Files QNAP QuMagie vulnerabilities allowing unauthenticated information disclosure of media files in QSA-26-35

QNAP QuMagie vulnerabilities allowing unauthenticated information disclosure of media files in QSA-26-35

QNAP Patches QuMagie Flaws Exposing Private Media Files

Do Son June 22, 2026

TL;DR QNAP has patched four QNAP QuMagie vulnerabilities, three of which need no login at all....

Pre-emptive AI cybersecurity: what it takes to prioritize risk before attackers act Salesforce vulnerability CVE-2025-9844 Salt Typhoon cyberattack

Salesforce vulnerability CVE-2025-9844 Salt Typhoon cyberattack

Pre-emptive AI cybersecurity: what it takes to prioritize risk before attackers act

Joe Pettit June 22, 2026

There is no shortage of vulnerabilities for security teams to deal with. FIRST forecasts up to 59,000...

Apache Doris SQL Injection Vulnerability CVE-2025-66336 Apache Doris SQL injection diagram showing CVE-2025-66336 metadata query path bypass

Apache Doris SQL Injection Vulnerability CVE-2025-66336

Do Son June 22, 2026

TL;DR Apache Doris version 0.6.1 patches a severe security flaw in its MCP Server. Specifically, an Apache...

SHEETCREEP Malware Abuses Google Sheets API for Command-and-Control security-de

SHEETCREEP Malware Abuses Google Sheets API for Command-and-Control

Do Son June 22, 2026

At a glance Malware family SHEETCREEP (SHEET#CREEP), C# .NET RAT Threat actor APT36 / Transparent Tribe (suspected,...

Google Tests reCAPTCHA Hand Gesture Verification

reCAPTCHA hand gesture verification scanning process and biometric CAPTCHA security reCAPTCHA Data

Google Tests reCAPTCHA Hand Gesture Verification

Do Son June 22, 2026

Combatting Advanced Bots with Hand Gestures Google initiated a limited beta test for its reCAPTCHA hand gesture...

Microsoft Details Support Lifecycle for Windows 11 Version 26H2 Windows 11 version 26H2 support lifecycle and deployment roadmap for enterprise environments Windows 11 update anomaly Windows 11 context menu Windows 11 KB5089549 update error 0x800f0922 Windows 11 taskbar relocation

Windows 11 version 26H2 support lifecycle and deployment roadmap for enterprise environments Windows 11 update anomaly Windows 11 context menu Windows 11 KB5089549 update error 0x800f0922 Windows 11 taskbar relocation

Microsoft Details Support Lifecycle for Windows 11 Version 26H2

Do Son June 22, 2026

Microsoft recently unveiled the early preview of Windows 11 version 26H2. The official release will likely debut...

Gemini CLI Deprecation: Google Moves Developers to Antigravity CLI Gemini CLI deprecation notice as Google moves developers to the Antigravity CLI terminal tool Google Antigravity 2.0 release

Gemini CLI deprecation notice as Google moves developers to the Antigravity CLI terminal tool Google Antigravity 2.0 release

Gemini CLI Deprecation: Google Moves Developers to Antigravity CLI

Do Son June 22, 2026

Google gave developers an early warning about the Gemini CLI deprecation. Now the change has arrived. The...

Windows Recycle Bin Bug Surfaces After the June 2026 Update Windows Recycle Bin bug showing an internal $Rxxxxx filename in the delete confirmation dialog after the June 2026 update

Windows Recycle Bin bug showing an internal $Rxxxxx filename in the delete confirmation dialog after the June 2026 update

Windows Recycle Bin Bug Surfaces After the June 2026 Update

Do Son June 22, 2026

Microsoft released its June 2026 Patch Tuesday updates on June 9. Within days, users began reporting odd...

DragonForce Hides Backdoor C2 Inside Microsoft Teams TURN Relays digital-hacker

DragonForce Hides Backdoor C2 Inside Microsoft Teams TURN Relays

Do Son June 22, 2026

At a glance Malware family Backdoor.Turn (Go-based RAT) Threat actor DragonForce ransomware, developed by Hackledorb (Symantec attribution)...

2,060 New CVEs and 4 Actively Exploited Flaws (June 15-21, 2026) Weekly CVE report dashboard showing 2,060 new vulnerabilities and 4 actively exploited CVEs in CISA KEV

Weekly CVE report dashboard showing 2,060 new vulnerabilities and 4 actively exploited CVEs in CISA KEV

2,060 New CVEs and 4 Actively Exploited Flaws (June 15-21, 2026)

Do Son June 22, 2026

TL;DR This weekly CVE report covers 2,060 new vulnerabilities disclosed between June 15 and 21, 2026. Among...

Four undici Vulnerabilities Affect a Package With 133M Weekly Downloads undici vulnerabilities in the Node.js HTTP client affecting a package with 133M weekly downloads

undici vulnerabilities in the Node.js HTTP client affecting a package with 133M weekly downloads

Four undici Vulnerabilities Affect a Package With 133M Weekly Downloads

Do Son June 22, 2026

TL;DR Maintainers have disclosed four undici vulnerabilities in the widely used Node.js HTTP client. The package draws...

ErrTraffic Malware Spreads ClickFix Lures via Hacked WordPress Sites hacker-security

ErrTraffic Malware Spreads ClickFix Lures via Hacked WordPress Sites

Do Son June 22, 2026

At a glance Malware family ErrTraffic (ClickFix distribution framework / TDS, sold as MaaS) Threat actor Sold...

9.6 Avo Flaw CVE-2026-55518 Enables Privilege Escalation in Rails Apps Avo authorization bypass CVE-2026-55518 enabling privilege escalation in a Ruby on Rails admin panel