Daily CyberSecurity •

Gold Melody’s Stealthy Campaign: Leaked ASP.NET Machine Keys Fuel In-Memory RCE & Privilege Escalation

Cybercriminals

Gold Melody’s Stealthy Campaign: Leaked ASP.NET Machine Keys Fuel In-Memory RCE & Privilege Escalation

July 10, 2025

OmegaPro Founders Charged: DOJ Unseals Indictment for $650M Global Crypto Ponzi Scheme

OmegaPro, Crypto Ponzi Scheme

Cybercriminals

OmegaPro Founders Charged: DOJ Unseals Indictment for $650M Global Crypto Ponzi Scheme

July 9, 2025

Philippines Hit by Surge in Chinese Cybercrime: NFC & Smishing Attacks Steal Millions from Mobile Wallets

Philippines Cybercrime, NFC Fraud

Cybercriminals

Philippines Hit by Surge in Chinese Cybercrime: NFC & Smishing Attacks Steal Millions from Mobile Wallets

July 9, 2025

Chinese State-Sponsored Hacker Xu Zewei Arrested in Italy for COVID-19 Research & Exchange Server Hacks

China Cyberespionage, HAFNIUM Arrest

Cybercriminals

Chinese State-Sponsored Hacker Xu Zewei Arrested in Italy for COVID-19 Research & Exchange Server Hacks

July 9, 2025

New macOS.ZuRu Variant Uses Trojanized Termius App to Infiltrate Systems

ter

Malware

New macOS.ZuRu Variant Uses Trojanized Termius App to Infiltrate Systems

July 11, 2025

SafePay Ransomware Unleashed: New LockBit 3.0 Variant Hits 200+ MSPs & SMBs Worldwide

safe

Malware

SafePay Ransomware Unleashed: New LockBit 3.0 Variant Hits 200+ MSPs & SMBs Worldwide

July 11, 2025

Iranian Ransomware “Pay2Key.I2P” Resurfaces on I2P Network, Offering 80% Profit for Targeting Western Enemies

ZACROS data breach

Malware

Iranian Ransomware “Pay2Key.I2P” Resurfaces on I2P Network, Offering 80% Profit for Targeting Western Enemies

July 11, 2025

From Stealer to Spy: AMOS Malware Evolves into Full-Fledged Backdoor Threat for macOS

AMOS, macOS backdoor

Malware

From Stealer to Spy: AMOS Malware Evolves into Full-Fledged Backdoor Threat for macOS

July 10, 2025

Rockerbox Data Leak Exposes 245,949 Records: SSNs, Driver’s Licenses, Military IDs Leaked from Unsecured Cloud

Data Breach, Cloud Misconfiguration

Data Leak

Rockerbox Data Leak Exposes 245,949 Records: SSNs, Driver’s Licenses, Military IDs Leaked from Unsecured Cloud

July 9, 2025

Android Privacy Alert: Google Gemini AI Now Accesses WhatsApp, Texts & Calls by Default

Google Gemini, Android Privacy Google Veo 3, AI Video Generation Google AI video, generative AI

Android Privacy Alert: Google Gemini AI Now Accesses WhatsApp, Texts & Calls by Default

July 9, 2025

State Secrets for Sale: China’s “Hack-for-Hire” Ecosystem Exposed in Massive VenusTech & Salt Typhoon Leaks

china-data

State Secrets for Sale: China’s “Hack-for-Hire” Ecosystem Exposed in Massive VenusTech & Salt Typhoon Leaks

July 7, 2025

Taiwan Warns Public: Popular Chinese Apps (TikTok, WeChat, Rednote) Pose National Security Risk Via Data Transfer to China

Chinese Apps, Taiwan Security Warning

Data Leak

Taiwan Warns Public: Popular Chinese Apps (TikTok, WeChat, Rednote) Pose National Security Risk Via Data Transfer to China

July 7, 2025

Ubuntu 24.10 Reaches End of Life Today: Upgrade to Stay Secure! Ubuntu 24.10, End of Life Ubuntu 23.10 Translation

Ubuntu 24.10, End of Life Ubuntu 23.10 Translation

Ubuntu 24.10 Reaches End of Life Today: Upgrade to Stay Secure!

Ddos July 11, 2025

Windows 11’s Black Screen of Death (BSOD) Rolls Out: Faster Reboots & Enterprise Recovery Windows 11 BSOD, Black Screen of Death

Windows 11 BSOD, Black Screen of Death

Windows 11’s Black Screen of Death (BSOD) Rolls Out: Faster Reboots & Enterprise Recovery

Ddos July 11, 2025

Android Canary: Google’s New Path to Early Access Features Android Canary, Developer Program Android Updates, EU Regulation Android 16 Google Android Terminal Cloud Compilation Android, Google I/O

Android Canary, Developer Program Android Updates, EU Regulation Android 16 Google Android Terminal Cloud Compilation Android, Google I/O

Android Canary: Google’s New Path to Early Access Features

Ddos July 11, 2025

Apache HTTP Server 2.4.64 Released: Patches 8 Vulnerabilities, Including HTTP Splitting, SSRF & DoS CVE-2024-38472 Apache HTTP Server, Security Patches

CVE-2024-38472 Apache HTTP Server, Security Patches

Apache HTTP Server 2.4.64 Released: Patches 8 Vulnerabilities, Including HTTP Splitting, SSRF & DoS

Ddos July 11, 2025

Critical Wing FTP Server RCE (CVE-2025-47812) Actively Exploited In The Wild Wing FTP Server, RCE Exploit

Wing FTP Server, RCE Exploit

Critical Wing FTP Server RCE (CVE-2025-47812) Actively Exploited In The Wild

Ddos July 11, 2025

Laravel Flaw: Leaked APP_KEY Turns Into Remote Code Execution Laravel APP_KEY, Deserialization Attack

Laravel APP_KEY, Deserialization Attack

Laravel Flaw: Leaked APP_KEY Turns Into Remote Code Execution

Ddos July 11, 2025

DoNot APT Expands to Europe: Targets Foreign Ministry with LoptikMod Malware via Google Drive Phishing DoNot APT, European Cyberespionage

DoNot APT, European Cyberespionage

DoNot APT Expands to Europe: Targets Foreign Ministry with LoptikMod Malware via Google Drive Phishing

Ddos July 11, 2025

Helm Flaw (CVE-2025-53547): Local Code Execution via Malicious Chart.yaml & Symlinks Helm, Local Code Execution

Helm, Local Code Execution

Helm Flaw (CVE-2025-53547): Local Code Execution via Malicious Chart.yaml & Symlinks

Ddos July 11, 2025

INE Security Launches Enhanced eMAPT Certification Cyberwire_Logo_-_INE_Security_-_1200x720px_1751478697kV2agKijXr

Cyberwire_Logo_-_INE_Security_-_1200x720px_1751478697kV2agKijXr

INE Security Launches Enhanced eMAPT Certification

cybernewswire July 10, 2025

Cary, North Carolina, 10th July 2025, CyberNewsWire

Perplexity Unveils Comet: The AI-Powered Browser Revolutionizing Workflow Perplexity Comet, AI Browser

Perplexity Comet, AI Browser

Perplexity Unveils Comet: The AI-Powered Browser Revolutionizing Workflow

Ddos July 10, 2025

Gmail Rolls Out Global Subscription Management: One-Click Unsubscribe & Inbox Decluttering Arrive Gmail, Subscription Management

Gmail, Subscription Management

Gmail Rolls Out Global Subscription Management: One-Click Unsubscribe & Inbox Decluttering Arrive

Ddos July 10, 2025

OpenAI Unveils AI-Powered Browser: ChatGPT Integration to Revolutionize Web Browse & Challenge Chrome OpenAI AI Browser, ChatGPT Integration Mattel AI, OpenAI Partnership OpenAI o3, Price Cut OpenAI's Next-Gen AI: O3-Pro's Enhanced Reasoning PowerOpenAI profit OpenAI Bid OpenAI Social Network ChatGPT Social OpenAI Non-profit OpenAI UAE ChatGPT Plus free

OpenAI AI Browser, ChatGPT Integration Mattel AI, OpenAI Partnership OpenAI o3, Price Cut OpenAI's Next-Gen AI: O3-Pro's Enhanced Reasoning PowerOpenAI profit OpenAI Bid OpenAI Social Network ChatGPT Social OpenAI Non-profit OpenAI UAE ChatGPT Plus free

OpenAI Unveils AI-Powered Browser: ChatGPT Integration to Revolutionize Web Browse & Challenge Chrome

Ddos July 10, 2025

Navigate Smarter: Google Maps Arrives on Garmin Smartwatches Garmin, Google Maps

Garmin, Google Maps

Navigate Smarter: Google Maps Arrives on Garmin Smartwatches

Ddos July 10, 2025

LPDDR6 Unleashed: The Future of AI & Mobile Performance LPDDR6, Memory

LPDDR6, Memory

LPDDR6 Unleashed: The Future of AI & Mobile Performance

Ddos July 10, 2025

X CEO Linda Yaccarino Resigns After Two Years: Future Direction Under Elon Musk in Question

X CEO Linda Yaccarino Resigns After Two Years: Future Direction Under Elon Musk in Question

Ddos July 10, 2025

SureForms WordPress Plugin Flaw (CVE-2025-6691): Unauthenticated Arbitrary File Deletion Leads to Site Takeover, 200K Sites at Risks WordPress Plugin, Arbitrary File Deletion

WordPress Plugin, Arbitrary File Deletion

SureForms WordPress Plugin Flaw (CVE-2025-6691): Unauthenticated Arbitrary File Deletion Leads to Site Takeover, 200K Sites at Risks

Ddos July 10, 2025

GitLab Releases Security Updates: XSS and Authorization Bypass Flaws Patched GitLab sale GitLab, Security

GitLab sale GitLab, Security

GitLab Releases Security Updates: XSS and Authorization Bypass Flaws Patched

Ddos July 10, 2025

Critical D-Link DIR-825 Router Flaw (CVE-2025-7206, CVSS 9.8): Remote Crash Via Buffer Overflow D-Link DIR-825, Critical Vulnerability

D-Link DIR-825, Critical Vulnerability

Critical D-Link DIR-825 Router Flaw (CVE-2025-7206, CVSS 9.8): Remote Crash Via Buffer Overflow

Ddos July 10, 2025

Ruckus Wireless Exposed: 9 Critical Vulnerabilities Leave Wi-Fi Management Systems Wide Open, No Patch! Ruckus Wireless, Critical Vulnerabilities

Ruckus Wireless, Critical Vulnerabilities

Ruckus Wireless Exposed: 9 Critical Vulnerabilities Leave Wi-Fi Management Systems Wide Open, No Patch!

Ddos July 10, 2025

Opossum Attack: New Vulnerability Compromises Encrypted TLS Connections, Allowing MitM & Data Injection Opossum Attack, TLS Desynchronization

Opossum Attack, TLS Desynchronization

Opossum Attack: New Vulnerability Compromises Encrypted TLS Connections, Allowing MitM & Data Injection

Ddos July 10, 2025