Critical Alert 1 Active Exploit Detected Today

CVE-2026-48907 — Widget Factory Joomla Content Editor Improper Access Control Vulnerability →

Powered by CVE Watchtower

×

Do Son

Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.

Meta’s New AI Tools Are Redefining the Metaverse Metaverse, AI Meta smart glasses

Metaverse, AI Meta smart glasses

Meta’s New AI Tools Are Redefining the Metaverse

Do Son September 18, 2025

At this year’s Connect conference, Meta once again reinforced its blueprint for the metaverse, unveiling a suite...

New iPhone Air Camera Flaw: What You Need to Know iOS 27 AirDrop speed, AirDrop transfer speed, AirDrop file transfer, AWDL protocol iPhone 17e rumors iPhone Air 2 Roadmap Apple Launch Cadence Shift iPhone Air sales collapse Apple iPhone Fold iPhone Air, thinnest iPhone camera flaw

iOS 27 AirDrop speed, AirDrop transfer speed, AirDrop file transfer, AWDL protocol iPhone 17e rumors iPhone Air 2 Roadmap Apple Launch Cadence Shift iPhone Air sales collapse Apple iPhone Fold iPhone Air, thinnest iPhone camera flaw

New iPhone Air Camera Flaw: What You Need to Know

Do Son September 18, 2025

Henry Casey, an editor at CNN, noticed a peculiar issue while photographing a concert: out of every...

The UK’s AI Revolution: NVIDIA’s £11 Billion Plan AI Infrastructure, NVIDIA

AI Infrastructure, NVIDIA

The UK’s AI Revolution: NVIDIA’s £11 Billion Plan

Do Son September 18, 2025

NVIDIA has announced a sweeping partnership with the UK government and a coalition of industry leaders to...

Three Bugs Degraded Claude’s Response Quality Anthropic Claude Lawsuit Claude Max limits, AI subscription lawsuit, Claude Pro vs Max Claude Mythos security audit Claude Identity Verification Anthropic DMCA GitHub takedown bugs Nuclear weapons Xcode, Claude AI Anthropic, Claude Sonnet 4 Claude AI, AI safety

Anthropic Claude Lawsuit Claude Max limits, AI subscription lawsuit, Claude Pro vs Max Claude Mythos security audit Claude Identity Verification Anthropic DMCA GitHub takedown bugs Nuclear weapons Xcode, Claude AI Anthropic, Claude Sonnet 4 Claude AI, AI safety

Three Bugs Degraded Claude’s Response Quality

Do Son September 18, 2025

Since early August 2025, users began reporting a noticeable decline in the response quality of Claude AI....

A Safer Chat: OpenAI Unveils ChatGPT for Teens GPT-OSS-SafeGuard, AI safety ChatGPT Memory Management, Paid Feature ChatGPT Teens ChatGPT, mental health

GPT-OSS-SafeGuard, AI safety ChatGPT Memory Management, Paid Feature ChatGPT Teens ChatGPT, mental health

A Safer Chat: OpenAI Unveils ChatGPT for Teens

Do Son September 18, 2025

OpenAI has announced that by the end of 2025 it will officially launch “ChatGPT for Teens”, a...

The MacBook is Getting a Touchscreen, But Not How You Think MacBook Touchscreen Apple OS Betas, Liquid Glass Design

MacBook Touchscreen Apple OS Betas, Liquid Glass Design

The MacBook is Getting a Touchscreen, But Not How You Think

Do Son September 18, 2025

Renowned analyst Ming-Chi Kuo has revealed that Apple is finally preparing to bring touchscreen technology to its...

Meta Unveils Ray-Ban Display: Smart Glasses with a Built-In Screen Meta Reality Labs restructuring, AI wearables pivot Meta Alan Dye Hire Apple Design Defection smart glasses, Ray-Ban Display

Meta Reality Labs restructuring, AI wearables pivot Meta Alan Dye Hire Apple Design Defection smart glasses, Ray-Ban Display

Meta Unveils Ray-Ban Display: Smart Glasses with a Built-In Screen

Do Son September 18, 2025

At Connect 2025, Meta officially unveiled its first smart glasses with a built-in display — the Ray-Ban...

SonicWall Security Incident: Exposed Backups Could Put Your Firewall at Risk SonicWall Zero-Day, SMA1000 Exploit Chain SonicWall, firewall configuration CVE-2024-29010 & CVE-2024-29011 SonicWall NetExtender VPN Vulnerability

SonicWall Zero-Day, SMA1000 Exploit Chain SonicWall, firewall configuration CVE-2024-29010 & CVE-2024-29011 SonicWall NetExtender VPN Vulnerability

SonicWall Security Incident: Exposed Backups Could Put Your Firewall at Risk

Do Son September 18, 2025

SonicWall, a leading provider of network security solutions, has disclosed a recent security incident involving the exposure...

Jenkins Patches High-Severity Vulnerabilities, Including a DoS Flaw Jenkins security advisory 2026, CVE-2026-53435, CVE-2026-53436 Jenkins Plugin RCE CI/CD Security Advisory Jenkins Vulnerability CVE-2026-33001 Jenkins CLI DoS, Coverage Plugin XSS Jenkins SAML Hijacking, Plaintext Secrets CVE-2023-43495 - Jenkins Vulnerability

Jenkins security advisory 2026, CVE-2026-53435, CVE-2026-53436 Jenkins Plugin RCE CI/CD Security Advisory Jenkins Vulnerability CVE-2026-33001 Jenkins CLI DoS, Coverage Plugin XSS Jenkins SAML Hijacking, Plaintext Secrets CVE-2023-43495 - Jenkins Vulnerability

Jenkins Patches High-Severity Vulnerabilities, Including a DoS Flaw

Do Son September 18, 2025

Jenkins, one of the most widely used open-source automation servers, has released a new security advisory addressing...

Hacktivists Launch Coordinated Attacks on India’s Infrastructure hacktivist attacks

hacktivist attacks

Hacktivists Launch Coordinated Attacks on India’s Infrastructure

Do Son September 18, 2025

India’s digital infrastructure has become a high-value battleground for hacktivists. A new analysis from CYFIRMA highlights how...

Chrome Emergency Update: Zero-Day (CVE-2025-10585) in V8 Exploited in the Wild Chrome security update exploit in the wild Chrome Zero-Day CVE-2026-3909 Chrome Zero-Day PoC CVE-2026-2441 Chrome Zero-Day CVE-2026-2441 Chrome Zero-Day, Active Exploitation CVE-2025-10585 Chrome vulnerability, zero-day exploit CVE-2025-6558 Chrome Zero-Day, V8 Vulnerability Chrome Zero-Day, Security Update

Chrome security update exploit in the wild Chrome Zero-Day CVE-2026-3909 Chrome Zero-Day PoC CVE-2026-2441 Chrome Zero-Day CVE-2026-2441 Chrome Zero-Day, Active Exploitation CVE-2025-10585 Chrome vulnerability, zero-day exploit CVE-2025-6558 Chrome Zero-Day, V8 Vulnerability Chrome Zero-Day, Security Update

Chrome Emergency Update: Zero-Day (CVE-2025-10585) in V8 Exploited in the Wild

Do Son September 18, 2025

Google has released a Stable Channel update to version 140.0.7339.185/.186 for Windows and Mac, and 140.0.7339.185 for...

Critical Vulnerabilities Discovered in Planet Technology Industrial Cellular Gateways CVE-2025-9971 CVE-2025-9972 PLANET Technology - CVE-2024-8456

CVE-2025-9971 CVE-2025-9972 PLANET Technology - CVE-2024-8456

Critical Vulnerabilities Discovered in Planet Technology Industrial Cellular Gateways

Do Son September 18, 2025

The Taiwan Computer Emergency Response Team / Coordination Center (TWCERT/CC) has issued a security advisory warning of...

Microsoft Dismantles RaccoonO365 Phishing Service

RaccoonO365 Phishing

Microsoft Dismantles RaccoonO365 Phishing Service

Do Son September 18, 2025

Microsoft’s Digital Crimes Unit (DCU) has dismantled the infrastructure behind RaccoonO365, one of the fastest-growing phishing kit...

The Silent Spy: How Chinese Hackers are Exploiting U.S.-China Policy Chinese espionage groups APT35 Phishing, Stormshield CTI

Chinese espionage groups APT35 Phishing, Stormshield CTI

The Silent Spy: How Chinese Hackers are Exploiting U.S.-China Policy

Do Son September 18, 2025

State-aligned Chinese threat actor TA415 (also tracked as APT41, Brass Typhoon, Wicked Panda) has launched a series...

FileFix: A New Attack Hides Malware in Plain Sight FBI email system hack

FBI email system hack

FileFix: A New Attack Hides Malware in Plain Sight

Do Son September 18, 2025

Researchers from Acronis’ Threat Research Unit (TRU) have uncovered a rare in-the-wild FileFix campaign, marking the first...

Raven Stealer: A Stealthy New Threat in the Malware Ecosystem Raven Stealer, Malware

Raven Stealer, Malware

Raven Stealer: A Stealthy New Threat in the Malware Ecosystem

Do Son September 18, 2025

Raven Stealer, a new entrant in the commodity malware ecosystem, is emerging as a stealthy yet powerful...

Phoenix (CVE-2025-6202): A New Rowhammer Attack Bypasses DDR5 Protections

Phoenix (CVE-2025-6202)

Phoenix (CVE-2025-6202): A New Rowhammer Attack Bypasses DDR5 Protections

Do Son September 18, 2025

Researchers from ETH Zurich have unveiled Phoenix, a new Rowhammer attack that successfully bypasses in-DRAM mitigations in...

From Simple Bug to RCE: A Flaw (CVE-2025-21692) in the Linux Kernel, PoC Published Linux Kernel vulnerability CVE-2025-21692

Linux Kernel vulnerability CVE-2025-21692

From Simple Bug to RCE: A Flaw (CVE-2025-21692) in the Linux Kernel, PoC Published

Do Son September 18, 2025

Security researcher Volticks has published a deep technical writeup on CVE-2025-21692, a vulnerability in the Linux kernel’s...

CVE-2025-9242: Critical WatchGuard Flaw Allows Remote Code Execution WatchGuard Agent Privilege Escalation CVE-2026-6787 WatchGuard Vulnerability CVE-2026-1498 WatchGuard Firebox VPN Flaws, Command Injection WatchGuard Vulnerability CVE-2024-6592 and CVE-2024-6593

WatchGuard Agent Privilege Escalation CVE-2026-6787 WatchGuard Vulnerability CVE-2026-1498 WatchGuard Firebox VPN Flaws, Command Injection WatchGuard Vulnerability CVE-2024-6592 and CVE-2024-6593

CVE-2025-9242: Critical WatchGuard Flaw Allows Remote Code Execution

Do Son September 17, 2025

WatchGuard has issued a security advisory addressing a critical vulnerability in its Fireware OS, tracked as CVE-2025-9242...

YouTube Unveils AI-Powered Creator Tools to Revolutionize Content Creation YouTube deepfake YouTube AI YouTube Premium YouTube Ad Blockers, Fake Buffering Google Lens, YouTube Shorts

YouTube deepfake YouTube AI YouTube Premium YouTube Ad Blockers, Fake Buffering Google Lens, YouTube Shorts

YouTube Unveils AI-Powered Creator Tools to Revolutionize Content Creation

Do Son September 17, 2025

At a creator-focused launch event, YouTube officially unveiled a suite of new features, most of them closely...