Security researchers have uncovered GlassWASM malware, a stealthy threat hiding inside trojanized Visual Studio Code extensions. Socket’s...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
A transmitter with the highest advertised depth isn’t automatically the right choice for a difficult bore. Deep...
Poland’s national cyber team has sounded the alarm. A fresh UNC1151 Gmail phishing campaign is hunting credentials...
A two-year look at a shared ransomware ecosystem IBM X-Force has released long-term research into the Interlock...
Around one million WordPress sites just got an urgent reason to patch. A critical Avada Builder...
Genians Security Center recently confirmed the continued distribution of compiled Python-based malware. This threat targets Korean users...
Color-coding enthusiasts have a real reason to celebrate. Google is finally retiring Calendar’s long-standing limit of 11...
On the morning of June 19, a server anomaly within Claude Code erroneously obscured users’ weekly quotas....
Rebora Security Research recently uncovered severe Chrome extension vulnerabilities. These critical flaws impact two widely used AI...
Apple’s walled garden has another crack in it. Following the EU’s Digital Markets Act, Brazil has become...
F5 has issued out-of-band patches for two serious flaws in its NGINX web server. The critical NGINX...
Unauthenticated RCE hits iba industrial software A critical iba deserialization vulnerability could let remote attackers run arbitrary...
A one-line bug that survived 27 years Researchers at Argus have publicly disclosed an OpenBSD authentication bypass...
Critical bug exposes LiteLLM management routes A newly disclosed LiteLLM authentication bypass could let unauthenticated attackers...
Unauthenticated upload exposes Langflow servers A newly published Langflow file upload flaw lets anyone with network...
Rockwell Automation has disclosed two security advisories that reveal several Rockwell Automation vulnerabilities across its industrial product...
The cybersecurity landscape faces a critical threat today. CISA confirmed active exploitation of Splunk CVE-2026-20253. Consequently,...
Critical Node.js Security Updates Released Developers must quickly apply the newest Node.js security updates. The Node.js project...
A China-nexus threat group known as Velvet Ant hid inside one organization’s network for nearly a decade....
To imbue its AI assistant with more proactive, agentic capabilities, OpenAI recently announced a groundbreaking feature. They...
The artificial intelligence rivalry and technological warfare between the United States and China continue to escalate. This...
Industrial network gear is back in the spotlight. Moxa has disclosed two flaws in its NPort serial...