Do Son, Author at Daily CyberSecurity • Page 252 of 730

NimDoor: North Korean APT Uses Nim-Based Malware for Stealthy Web3 & Crypto Attacks on macOS! NimDoor, macOS Malware

NimDoor: North Korean APT Uses Nim-Based Malware for Stealthy Web3 & Crypto Attacks on macOS!

Do Son July 3, 2025

A new wave of North Korean cyberattacks is exploiting macOS systems in Web3 and cryptocurrency startups using...

dpkg-deb Flaw Opens Path to Disk Exhaustion Denial-of-Service on Debian Systems dpkg-deb, DoS Vulnerability

dpkg-deb Flaw Opens Path to Disk Exhaustion Denial-of-Service on Debian Systems

Do Son July 3, 2025

A newly disclosed vulnerability in dpkg-deb, the core utility responsible for handling Debian package archives, has raised...

Qwizzserial: Telegram-Driven Android SMS Stealer Infects 100,000 Devices Android Malware, Qwizzserial

Qwizzserial: Telegram-Driven Android SMS Stealer Infects 100,000 Devices

Do Son July 3, 2025

A newly uncovered Android malware family named Qwizzserial is wreaking havoc across Uzbekistan, stealing sensitive financial data...

Linux Servers Hijacked: Attackers Install Legitimate Proxy Software for Covert Operations Linux Proxy Malware, Legitimate Tool Abuse

Linux Servers Hijacked: Attackers Install Legitimate Proxy Software for Covert Operations

Do Son July 3, 2025

The AhnLab SEcurity intelligence Center (ASEC) has uncovered a series of attacks on poorly secured Linux servers,...

DCRat: Sophisticated RAT Delivered via Phishing Campaign Impersonating Government Entity axios Supply Chain Attack WAVESHAPER.V2 SnappyBee Malware Salt Typhoon Stately Taurus ScoringMathTea RAT, Lazarus Reflective DLL

axios Supply Chain Attack WAVESHAPER.V2 SnappyBee Malware Salt Typhoon Stately Taurus ScoringMathTea RAT, Lazarus Reflective DLL

DCRat: Sophisticated RAT Delivered via Phishing Campaign Impersonating Government Entity

Do Son July 3, 2025

In a recent threat intelligence report, the FortiMail Incident Response (IR) team exposed a new email campaign...

New macOS Crypto Stealer Targets Ledger Live Users, Mimics AMOS with Stealthy Tactics macOS Stealer, Crypto Malware

New macOS Crypto Stealer Targets Ledger Live Users, Mimics AMOS with Stealthy Tactics

Do Son July 3, 2025

macOS users—particularly cryptocurrency holders—are being warned about a new information stealer making the rounds in early 2025....

Qantas Data Breach: Millions Affected by Third-Party Contact Centre Cyber Incident Qantas Data Breach, Cyberattack

Qantas Data Breach: Millions Affected by Third-Party Contact Centre Cyber Incident

Do Son July 2, 2025

Qantas Airways, Australia’s flagship carrier, has confirmed a cybersecurity breach impacting customer data through a third-party contact...

Microsoft Hikes On-Premises Server & CAL Prices by Up to 20% Starting July Microsoft, pricing change Microsoft Server Pricing, On-Premises Price Hike Security Core Priority - Microsoft data centers

Microsoft, pricing change Microsoft Server Pricing, On-Premises Price Hike Security Core Priority - Microsoft data centers

Microsoft Hikes On-Premises Server & CAL Prices by Up to 20% Starting July

Do Son July 2, 2025

Microsoft has announced that, beginning in July 2025, it will implement price adjustments for its on-premises server...

Cloudflare Launches “Pay Per Crawl”: Websites Can Now Charge AI Crawlers for Content Cloudflare layoffs 2026 AI bot traffic surge Content Signals Policy, AI Content Usage Cloudflare, Certificate Misissuance Salesforce, supply chain attack DDoS attack, Cloudflare Perplexity AI, Web Scraping Pay Per Crawl Cloudflare abuse R2 outage HTTP Cloudflare Blocking

Cloudflare layoffs 2026 AI bot traffic surge Content Signals Policy, AI Content Usage Cloudflare, Certificate Misissuance Salesforce, supply chain attack DDoS attack, Cloudflare Perplexity AI, Web Scraping Pay Per Crawl Cloudflare abuse R2 outage HTTP Cloudflare Blocking

Cloudflare Launches “Pay Per Crawl”: Websites Can Now Charge AI Crawlers for Content

Do Son July 2, 2025

Cloudflare, the internet services provider, previously announced plans to introduce a new feature aimed at addressing the...

Apple Sues Ex-Vision Pro Engineer Di Liu: Accused of Stealing Secrets & Joining Competitor Snap Apple Background Security CVE-2026-20643 Apple Background Security Improvement Apple Backdoor Apple Lawsuit, Data Exfiltration CVE-2024-44131 - CVE-2025-24118 PoC

Apple Background Security CVE-2026-20643 Apple Background Security Improvement Apple Backdoor Apple Lawsuit, Data Exfiltration CVE-2024-44131 - CVE-2025-24118 PoC

Apple Sues Ex-Vision Pro Engineer Di Liu: Accused of Stealing Secrets & Joining Competitor Snap

Do Son July 2, 2025

As development on the successor to the Vision Pro continues apace, Apple has recently filed a lawsuit...

C Windows SecureBoot folder KB5089549 Windows 11 BSOD Microsoft Windows, Rust programming WINS Service Deprecation Windows Server DNS Migration Windows Driver Standard OEM Kernel Privileges Windows Agentic OS Task Manager Bug, Windows 11 Performance Windows 11, Microsoft, WinRE, Update Bug, Tech Support Windows 11 OOBE, Microsoft Account Mandatory Windows 11, SSD failures Windows 11 Recovery, Black Screen of Death Windows 11 Update Issue, KB5062324 Windows 11, Indicator Bar

Windows User Count Controversy: Microsoft Silently “Corrects” User Base to 1.4 Billion After Implied 400M Drop

Do Son July 2, 2025

Last week, a Microsoft executive noted in a newly published blog post that Windows is currently in...

Google Hit with $314M Verdict: Jury Rules Android Secretly Used Cellular Data for Tracking Google Lawsuit, Android Data Privacy Android September Security

Google Lawsuit, Android Data Privacy Android September Security

Google Hit with $314M Verdict: Jury Rules Android Secretly Used Cellular Data for Tracking

Do Son July 2, 2025

Google previously reserved a setting within the Android operating system that allowed necessary system data to be...

Google’s New “Offerwall” Tool Helps Publishers Monetize Content Amidst AI Search Impact Google Offerwall, Publisher Monetization

Google’s New “Offerwall” Tool Helps Publishers Monetize Content Amidst AI Search Impact

Do Son July 2, 2025

As Google’s AI-driven search features—such as AI Overviews and AI Mode—are increasingly adopted and begin to siphon...

Cloudflare Unveils AI Crawler Leaderboard: ByteDance Ranks Last AI Crawlers, Cloudflare Leaderboard

Cloudflare Unveils AI Crawler Leaderboard: ByteDance Ranks Last

Do Son July 2, 2025

Cloudflare, the global internet services provider, has recently introduced an AI Crawler Leaderboard—a dynamic red-and-black list designed...

CVSS 10 RCE in Wing FTP Server (CVE-2025-47812) Allows Full Server Takeover, PoC Releases Wing FTP Server, Remote Code Execution

CVSS 10 RCE in Wing FTP Server (CVE-2025-47812) Allows Full Server Takeover, PoC Releases

Do Son July 2, 2025

A critical remote code execution (RCE) vulnerability has been discovered in Wing FTP Server, a popular cross-platform...

CVE-2025-6463: Unauthenticated Arbitrary File Deletion in Forminator Plugin Exposes Over 600,000 WordPress Sites to Remote Takeover WordPress Plugin, Arbitrary File Deletion

WordPress Plugin, Arbitrary File Deletion

CVE-2025-6463: Unauthenticated Arbitrary File Deletion in Forminator Plugin Exposes Over 600,000 WordPress Sites to Remote Takeover

Do Son July 2, 2025

A newly disclosed high-severity vulnerability in the popular Forminator plugin threatens the security of hundreds of thousands...

Chinese Student Jailed for Smishing: Operated Covert “SMS Blaster” in Car for Mass Phishing Smishing, SMS Blaster

Chinese Student Jailed for Smishing: Operated Covert “SMS Blaster” in Car for Mass Phishing

Do Son July 2, 2025

A Chinese student has been sentenced to over a year in prison by Inner London Crown Court...

ANSSI Exposes “Houken”: China-Linked Threat Actor Exploiting Ivanti CSA Zero-Days & Deploying Linux Rootkits Houken, Ivanti CSA Zero-Day

ANSSI Exposes “Houken”: China-Linked Threat Actor Exploiting Ivanti CSA Zero-Days & Deploying Linux Rootkits

Do Son July 2, 2025

The French cybersecurity agency ANSSI has exposed a sophisticated threat actor dubbed Houken. First observed exploiting zero-day...

OFAC Sanctions Russian “Bulletproof Host” Aeza Group: Linked to Ransomware, Infostealers & Darknet OFAC Sanctions, Aeza Group

OFAC Sanctions Russian “Bulletproof Host” Aeza Group: Linked to Ransomware, Infostealers & Darknet

Do Son July 2, 2025

The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) has officially sanctioned Aeza Group,...

DOJ Dismantles North Korean IT Job Scam: Stolen Identities & Laundering Funded DPRK Weapons Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

DOJ Dismantles North Korean IT Job Scam: Stolen Identities & Laundering Funded DPRK Weapons

Do Son July 2, 2025

In a sweeping series of law enforcement actions, the U.S. Department of Justice (DOJ) has exposed and...