Do Son

Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.

The AI Alliance: Apple Taps Google Gemini to Power the New Siri iOS 27 Apple Intelligence Apple AI Extensions bazaar Siri iOS 27 Gemini integration Apple AI server Baltra Siri AI delay iOS 26.4 Apple Google Gemini Siri partnership, Siri powered by Google Gemini 2026 Siri Gemini, Apple Intelligence Siri, Apple AI Apple "Veritas", Siri AI Siri Gemini Supercharged Siri, AI assistant Siri Integration, App Intents Apple Siri Apple AI Strategy, ChatGPT Rival

iOS 27 Apple Intelligence Apple AI Extensions bazaar Siri iOS 27 Gemini integration Apple AI server Baltra Siri AI delay iOS 26.4 Apple Google Gemini Siri partnership, Siri powered by Google Gemini 2026 Siri Gemini, Apple Intelligence Siri, Apple AI Apple "Veritas", Siri AI Siri Gemini Supercharged Siri, AI assistant Siri Integration, App Intents Apple Siri Apple AI Strategy, ChatGPT Rival

The AI Alliance: Apple Taps Google Gemini to Power the New Siri

Do Son January 13, 2026

After months of fervent speculation and whispered rumors, Apple and Google have issued a definitive joint statement...

India’s Source Code Demand Sparks Tech Revolt India smartphone source code mandate, MeitY security requirements 2026 iOS photo backup, background upload iOS crash Foldable iPhone, iPhone design

India smartphone source code mandate, MeitY security requirements 2026 iOS photo backup, background upload iOS crash Foldable iPhone, iPhone design

India’s Source Code Demand Sparks Tech Revolt

Do Son January 13, 2026

As India aggressively pursues its “Make in India” initiative, aspiring to supplant China as the preeminent global...

Cutting the Cord: QEMU 11.0 to Expunge 32-Bit Host Support in Cloud Variant QEMU 11.0 Cloud 32-bit host deprecation, QEMU TCG code reduction

QEMU 11.0 Cloud 32-bit host deprecation, QEMU TCG code reduction

Cutting the Cord: QEMU 11.0 to Expunge 32-Bit Host Support in Cloud Variant

Do Son January 13, 2026

The venerable open-source virtualization architecture, QEMU, is currently orchestrating the deprecation of 32-bit processor support for its...

Double Critical: Hardcoded Secrets Expose Ruckus IoT Controllers to Root RCE Ruckus vRIoT Vulnerability CVE-2025-69425 Ruckus Wireless, Critical Vulnerabilities

Ruckus vRIoT Vulnerability CVE-2025-69425 Ruckus Wireless, Critical Vulnerabilities

Double Critical: Hardcoded Secrets Expose Ruckus IoT Controllers to Root RCE

Do Son January 13, 2026

A pair of critical security vulnerabilities has been disclosed in the Ruckus vRIoT IoT Controller, the central...

CVE-2025-52694 (CVSS 10): Critical Advantech SQL Injection Exposes IoT Devices

Everon OCPP Vulnerability CVE-2026-26288 ASUSTOR ADM Vulnerability CVE-2026-24936 PrismX MX100 Vulnerability Hard-Coded Credentials Advantech Vulnerability CVE-2025-52694 Eaton UPS Companion, CVE-2025-59887 ASUS Router, Authentication Bypass ASUSTOR DLL Hijacking, Privilege Escalation OpenShift AI, Privilege Escalation GoAnywhere vulnerability CVE-2025-10035 LangChainGo, template injection DeepDiff, class pollution ToolShell Sunshine, CSRF Vulnerability KACE SMA, Critical Vulnerabilities Oracle Zero-Days - PDQ Deploy vulnerability

CVE-2025-52694 (CVSS 10): Critical Advantech SQL Injection Exposes IoT Devices

Do Son January 13, 2026

The Cyber Security Agency of Singapore (CSA) has issued a high-priority alert regarding a devastating vulnerability in...

Critical Alert: Moxa Switches Exposed to OpenSSH Remote Code Execution (CVSS 9.8) Moxa Linux kernel vulnerabilities Moxa Vulnerability CVE-2024-12297 Moxa OpenSSH Vulnerability CVE-2023-38408 CVE-2023-5961 - CVE-2024-9138 and CVE-2024-9140

Moxa Linux kernel vulnerabilities Moxa Vulnerability CVE-2024-12297 Moxa OpenSSH Vulnerability CVE-2023-38408 CVE-2023-5961 - CVE-2024-9138 and CVE-2024-9140

Critical Alert: Moxa Switches Exposed to OpenSSH Remote Code Execution (CVSS 9.8)

Do Son January 13, 2026

A critical security vulnerability has been identified in Moxa’s industrial ethernet switches, threatening the integrity of operational...

Tearing Down the Wall: Google Brings AirDrop Support to the Pixel 9 Google Quick Share AirDrop Google Quick Share AirDrop interoperability, Pixel 9 AirDrop support 2026 Snapdragon AirDrop Quick Share Interoperability Quick Share AirDrop Cross-Platform File Transfer

Google Quick Share AirDrop Google Quick Share AirDrop interoperability, Pixel 9 AirDrop support 2026 Snapdragon AirDrop Quick Share Interoperability Quick Share AirDrop Cross-Platform File Transfer

Tearing Down the Wall: Google Brings AirDrop Support to the Pixel 9

Do Son January 13, 2026

The dissolution of the formidable “walled garden” separating Android and iOS appears to be accelerating beyond initial...

The End of the Shopping Tab: Google Unveils “Agentic Commerce” and UCP Google Agentic Commerce UCP, Universal Commerce Protocol retail partners

Google Agentic Commerce UCP, Universal Commerce Protocol retail partners

The End of the Shopping Tab: Google Unveils “Agentic Commerce” and UCP

Do Son January 13, 2026

At the recent NRF 2026 Retail’s Big Show in New York, Google CEO Sundar Pichai unveiled the...

Everything to Know about Staying Safe While Reconnecting With Old Friends Online bored man with laptop working at home office

bored man with laptop working at home office

Everything to Know about Staying Safe While Reconnecting With Old Friends Online

Do Son January 12, 2026

Reconnecting with old friends online can be a powerful and uplifting experience. It brings back shared memories,...

The Hype Hangover: Dell Admits Consumers Aren’t Buying the “AI PC” Narrative Dell AI PC marketing pivot, XPS 2026 brand revival, NPU, Tech Industry News CVE-2023-32484 PowerScale OneFS, CVE-2024-53298

The Hype Hangover: Dell Admits Consumers Aren’t Buying the “AI PC” Narrative

Do Son January 12, 2026

Over the past biennium, the vanguard of the technology sector—including silicon titans such as Intel, AMD, and...

The 2nm Reunion: Qualcomm Confirms Samsung Foundry Talks at CES 2026 Qualcomm Samsung 2nm foundry deal, Snapdragon 8 Elite 2nm refresh Qualcomm Ventana Acquisition, RISC-V Strategy Qualcomm Autotalks, China Antitrust Qualcomm Antitrust, Which? Lawsuit Qualcomm GPU driver, CVE-2024-38399 Qualcomm's March 2025 Security Bulletin

Qualcomm Samsung 2nm foundry deal, Snapdragon 8 Elite 2nm refresh Qualcomm Ventana Acquisition, RISC-V Strategy Qualcomm Autotalks, China Antitrust Qualcomm Antitrust, Which? Lawsuit Qualcomm GPU driver, CVE-2024-38399 Qualcomm's March 2025 Security Bulletin

The 2nm Reunion: Qualcomm Confirms Samsung Foundry Talks at CES 2026

Do Son January 12, 2026

During the proceedings of CES 2026, Qualcomm CEO Cristiano Amon formally confirmed to the press that the...

The Glass Box: Musk Pledges Full X Algorithm & Ad Transparency in 7 Days Elon Musk SEC settlement X bootloader verification X Creator Revenue Sharing suspension X Platform, AI Training X open-source algorithm 2026, Elon Musk ad transparency

Elon Musk SEC settlement X bootloader verification X Creator Revenue Sharing suspension X Platform, AI Training X open-source algorithm 2026, Elon Musk ad transparency

The Glass Box: Musk Pledges Full X Algorithm & Ad Transparency in 7 Days

Do Son January 12, 2026

On the heels of the recently concluded CES 2026, Elon Musk, ever the polymathic provocateur, has once...

The Solonik Leak: 17.5 Million Instagram Profiles Exposed on Dark Web Instagram 3 Billion, Reels Focus

Instagram 3 Billion, Reels Focus

The Solonik Leak: 17.5 Million Instagram Profiles Exposed on Dark Web

Do Son January 12, 2026

A monumental data breach has compromised approximately 17.5 million Instagram users, resulting in the exfiltration of sensitive...

WAFs Wide Open: Critical OWASP CRS Flaw Bypasses Filters Radware WAF, WAF bypass OWASP CRS Vulnerability CVE-2026-21876

Radware WAF, WAF bypass OWASP CRS Vulnerability CVE-2026-21876

WAFs Wide Open: Critical OWASP CRS Flaw Bypasses Filters

Do Son January 12, 2026

A foundational pillar of web application security has cracked. The OWASP Core Rule Set (CRS) team has...

Critical React Router Flaws: CVE-2025-61686 Exposes Server Files React Router vulnerabilities patch React Router Vulnerabilities CVE-2025-61686

React Router vulnerabilities patch React Router Vulnerabilities CVE-2025-61686

Critical React Router Flaws: CVE-2025-61686 Exposes Server Files

Do Son January 12, 2026

Developers relying on the popular React Router library are being urged to patch their applications immediately following...

The Soviet Ghost: How Carding Markets Survive on Legacy Domains BlueNoroff macOS Attack GhostCall Campaign Carding Underground Bulletproof Hosting DPRK Contagious Interview, npm Flood Stonefly group -HiatusRAT Actors

BlueNoroff macOS Attack GhostCall Campaign Carding Underground Bulletproof Hosting DPRK Contagious Interview, npm Flood Stonefly group -HiatusRAT Actors

The Soviet Ghost: How Carding Markets Survive on Legacy Domains

Do Son January 12, 2026

A new analysis by Team Cymru researchers has shed light on the physical and digital infrastructure powering...

The XML Trap: Critical Struts 2 Flaw CVE-2025-68493 Exposes Data Apache Struts 2 Vulnerability CVE-2025-68493 CVE-2021-31805 Struts DoS, File Upload Leak

Apache Struts 2 Vulnerability CVE-2025-68493 CVE-2021-31805 Struts DoS, File Upload Leak

The XML Trap: Critical Struts 2 Flaw CVE-2025-68493 Exposes Data

Do Son January 12, 2026

A new flaw has appeared in the foundation of one of the web’s most popular Java frameworks....

CVE-2025-68637: Critical Apache Uniffle Flaw Exposes Clusters to Eavesdropping Apache Uniffle Vulnerability CVE-2025-68637

Apache Uniffle Vulnerability CVE-2025-68637

CVE-2025-68637: Critical Apache Uniffle Flaw Exposes Clusters to Eavesdropping

Do Son January 12, 2026

A high-severity vulnerability has been unearthed in Apache Uniffle, the remote shuffle service that powers data movement...

“Boto Cor-de-Rosa”: Banking Malware Astaroth Pivots to WhatsApp in New Campaign NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

“Boto Cor-de-Rosa”: Banking Malware Astaroth Pivots to WhatsApp in New Campaign

Do Son January 12, 2026

The notorious Brazilian banking malware Astaroth has evolved again, this time turning one of the world’s most...

Pig Butchering-as-a-Service: How “Penguin” Industrialized Global Fraud Pig Butchering-as-a-Service (PBaaS) Crypto Fraud Economy

Pig Butchering-as-a-Service (PBaaS) Crypto Fraud Economy

Pig Butchering-as-a-Service: How “Penguin” Industrialized Global Fraud

Do Son January 12, 2026

The world of “pig butchering” scams has evolved from chaotic boiler rooms into a streamlined, automated service...