Daily CyberSecurity • Zero-hour alerts. Unmatched analysis.

Pre-emptive AI cybersecurity: what it takes to prioritize risk before attackers act Salesforce vulnerability CVE-2025-9844 Salt Typhoon cyberattack

Salesforce vulnerability CVE-2025-9844 Salt Typhoon cyberattack

Pre-emptive AI cybersecurity: what it takes to prioritize risk before attackers act

Joe Pettit June 22, 2026

There is no shortage of vulnerabilities for security teams to deal with. FIRST forecasts up to 59,000...

Apache Doris SQL Injection Vulnerability CVE-2025-66336 Apache Doris SQL injection diagram showing CVE-2025-66336 metadata query path bypass

Apache Doris SQL Injection Vulnerability CVE-2025-66336

Do Son June 22, 2026

TL;DR Apache Doris version 0.6.1 patches a severe security flaw in its MCP Server. Specifically, an Apache...

Microsoft Details Support Lifecycle for Windows 11 Version 26H2 Windows 11 version 26H2 support lifecycle and deployment roadmap for enterprise environments Windows 11 update anomaly Windows 11 context menu Windows 11 KB5089549 update error 0x800f0922 Windows 11 taskbar relocation

Windows 11 version 26H2 support lifecycle and deployment roadmap for enterprise environments Windows 11 update anomaly Windows 11 context menu Windows 11 KB5089549 update error 0x800f0922 Windows 11 taskbar relocation

Microsoft Details Support Lifecycle for Windows 11 Version 26H2

Do Son June 22, 2026

Microsoft recently unveiled the early preview of Windows 11 version 26H2. The official release will likely debut...

Windows Recycle Bin Bug Surfaces After the June 2026 Update Windows Recycle Bin bug showing an internal $Rxxxxx filename in the delete confirmation dialog after the June 2026 update

Windows Recycle Bin bug showing an internal $Rxxxxx filename in the delete confirmation dialog after the June 2026 update

Windows Recycle Bin Bug Surfaces After the June 2026 Update

Do Son June 22, 2026

Microsoft released its June 2026 Patch Tuesday updates on June 9. Within days, users began reporting odd...

2,060 New CVEs and 4 Actively Exploited Flaws (June 15-21, 2026) Weekly CVE report dashboard showing 2,060 new vulnerabilities and 4 actively exploited CVEs in CISA KEV

Weekly CVE report dashboard showing 2,060 new vulnerabilities and 4 actively exploited CVEs in CISA KEV

2,060 New CVEs and 4 Actively Exploited Flaws (June 15-21, 2026)

Do Son June 22, 2026

TL;DR This weekly CVE report covers 2,060 new vulnerabilities disclosed between June 15 and 21, 2026. Among...

Four undici Vulnerabilities Affect a Package With 133M Weekly Downloads undici vulnerabilities in the Node.js HTTP client affecting a package with 133M weekly downloads

undici vulnerabilities in the Node.js HTTP client affecting a package with 133M weekly downloads

Four undici Vulnerabilities Affect a Package With 133M Weekly Downloads

Do Son June 22, 2026

TL;DR Maintainers have disclosed four undici vulnerabilities in the widely used Node.js HTTP client. The package draws...

9.6 Avo Flaw CVE-2026-55518 Enables Privilege Escalation in Rails Apps Avo authorization bypass CVE-2026-55518 enabling privilege escalation in a Ruby on Rails admin panel

Avo authorization bypass CVE-2026-55518 enabling privilege escalation in a Ruby on Rails admin panel

9.6 Avo Flaw CVE-2026-55518 Enables Privilege Escalation in Rails Apps

Do Son June 22, 2026

At a glance CVE CVE-2026-55518 CVSS 9.6 (Critical) Product / vendor Avo admin panel framework / Avo...

Critical Three Critical pgAdmin 4 Vulnerabilities Patched: XSS, Auth Bypass, and AI Assistant SQLi pgAdmin 4 vulnerabilities CVE-2026-12046 stored XSS and RCE in PostgreSQL admin tool

pgAdmin 4 vulnerabilities CVE-2026-12046 stored XSS and RCE in PostgreSQL admin tool

Critical Three Critical pgAdmin 4 Vulnerabilities Patched: XSS, Auth Bypass, and AI Assistant SQLi

Do Son June 22, 2026

Database administrators have urgent patching to do. The pgAdmin team has fixed three critical pgAdmin 4 vulnerabilities,...

Public Exploit Released for FreeBSD kTLS Local Root Flaw CVE-2026-45257 FreeBSD kTLS vulnerability CVE-2026-45257 public PoC exploit enabling local privilege escalation to root

FreeBSD kTLS vulnerability CVE-2026-45257 public PoC exploit enabling local privilege escalation to root

Public Exploit Released for FreeBSD kTLS Local Root Flaw CVE-2026-45257

Do Son June 22, 2026

TL;DR FreeBSD has patched a kernel flaw, CVE-2026-45257, that hands local root to any unprivileged user. This...

QNAP Patches 14 Vulnerabilities in QTS, QuTS hero, and QVP Devices QNAP NAS vulnerabilities in QTS and QuTS hero firmware including command injection flaws from QSA-26-10

QNAP NAS vulnerabilities in QTS and QuTS hero firmware including command injection flaws from QSA-26-10

QNAP Patches 14 Vulnerabilities in QTS, QuTS hero, and QVP Devices

Do Son June 21, 2026

TL;DR QNAP has patched 14 vulnerabilities affecting its QTS, QuTS hero, QuTS cloud, and QVP systems. The...

NPM Package Tests AI Malware Scanner Evasion hacker-security

NPM Package Tests AI Malware Scanner Evasion

Do Son June 21, 2026

At a glance Malware Family: shai_hulululud (Protestware/Testing) Threat Actor: Unknown (Suspected researcher or troll) Targets: AI-based malware...

GlassWASM Malware Hidden in Open VSX Extensions code

GlassWASM Malware Hidden in Open VSX Extensions

Do Son June 20, 2026

Security researchers have uncovered GlassWASM malware, a stealthy threat hiding inside trojanized Visual Studio Code extensions. Socket’s...

Gcore Helps Ucom Safeguard Public Live Broadcast Infrastructure During Armenia’s Parliamentary Elections fi_5_e3ed09ff94_1_1781877042S8sPtX4e3f

Gcore Helps Ucom Safeguard Public Live Broadcast Infrastructure During Armenia’s Parliamentary Elections

cybernewswire June 19, 2026

Luxembourg, Luxembourg, 19th June 2026, CyberNewswire

eFAQ Publishes Investigation Into Alleged Scam Activity and Coordinated Reputation Attacks ChatGPT_Image_12__2026__14_15_31_1781266554PR1huQkj8c

ChatGPT_Image_12__2026__14_15_31_1781266554PR1huQkj8c

eFAQ Publishes Investigation Into Alleged Scam Activity and Coordinated Reputation Attacks

cybernewswire June 19, 2026

New York, USA, 19th June 2026, CyberNewswire

UNC1151 ‘Ghostwriter’ Phishing Campaign Hijacks Gmail Accounts and 2FA Codes UNC1151 Gmail phishing fake Google login page stealing 2FA codes by Ghostwriter

UNC1151 Gmail phishing fake Google login page stealing 2FA codes by Ghostwriter

UNC1151 ‘Ghostwriter’ Phishing Campaign Hijacks Gmail Accounts and 2FA Codes

Do Son June 19, 2026

Poland’s national cyber team has sounded the alarm. A fresh UNC1151 Gmail phishing campaign is hunting credentials...

Interlock and Rhysida Ransomware: IBM X-Force Maps a Shared Ecosystem malware

Interlock and Rhysida Ransomware: IBM X-Force Maps a Shared Ecosystem

Do Son June 19, 2026

A two-year look at a shared ransomware ecosystem IBM X-Force has released long-term research into the Interlock...

9.1 1M WordPress Sites at Risk: Critical Unauthenticated Arbitrary File Deletion in Avada Builder (CVSS 9.1) Avada Builder vulnerability CVE-2026-8713 unauthenticated arbitrary file deletion in WordPress

Avada Builder vulnerability CVE-2026-8713 unauthenticated arbitrary file deletion in WordPress

9.1 1M WordPress Sites at Risk: Critical Unauthenticated Arbitrary File Deletion in Avada Builder (CVSS 9.1)

Do Son June 19, 2026

Around one million WordPress sites just got an urgent reason to patch. A critical Avada Builder...

APT37 NarwhalRAT Malware: A Python Backdoor Threat APT37 NarwhalRAT malware diagram

APT37 NarwhalRAT Malware: A Python Backdoor Threat

Do Son June 19, 2026

Genians Security Center recently confirmed the continued distribution of compiled Python-based malware. This threat targets Korean users...

Claude Code Quota Reset Follows Morning Outage Claude Code quota reset notification displayed on a developer workstation screen

Claude Code Quota Reset Follows Morning Outage

Do Son June 19, 2026

On the morning of June 19, a server anomaly within Claude Code erroneously obscured users’ weekly quotas....

Chrome Extension Vulnerabilities: Millions at Risk Illustration of Chrome extension vulnerabilities and hacker exploiting MaXSS and Spyder flaws

Illustration of Chrome extension vulnerabilities and hacker exploiting MaXSS and Spyder flaws

Chrome Extension Vulnerabilities: Millions at Risk

Do Son June 19, 2026

Rebora Security Research recently uncovered severe Chrome extension vulnerabilities. These critical flaws impact two widely used AI...

LATEST NEWS

Tech News

Vulnerability

Cyber Security

Malware Alert

Data Leak