In a concerning development for AI infrastructure security, XLab has uncovered an active exploitation campaign targeting ComfyUI—a...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
Google has officially unveiled a new voice-interactive search feature called Search Live within its iOS and Android...
As more online service platforms adopt Passkey technology, Meta has finally followed suit, announcing the introduction of...
Earlier, Google released a preview version of Gemini 2.5 Pro to developers, encouraging them to explore its...
Since the autumn of 2024, Intel has been undergoing waves of layoffs, and the trend shows no...
If your laptop is equipped with an NPU unit, you can take advantage of the newly introduced...
During his keynote speech at the Cannes Lions International Festival of Creativity, YouTube CEO Neal Mohan announced...
Earlier disassemblies of Android 16’s SIM Manager revealed that Google has been laying the groundwork for enabling...
Two newly disclosed vulnerabilities in the Versa Director SD-WAN orchestration platform could allow authenticated attackers to execute...
A newly disclosed critical vulnerability in Versa Director, a centralized network and security management platform, may allow...
Cisco’s ClamAV, one of the most widely used open-source antivirus engines, has released versions 1.4.3 and 1.0.9...
Security researchers at Wordfence have uncovered a vulnerability in the popular AI Engine plugin for WordPress, which...
Cisco has disclosed a vulnerability in its Meraki MX and Z Series devices, affecting the Cisco AnyConnect...
Two newly disclosed vulnerabilities in Apache Traffic Server (ATS)—a core component of many cloud and content delivery...
A security vulnerability was found in Linux PAM (Pluggable Authentication Modules). Tracked as CVE-2025-6020, the flaw affects...
Trend Micro researchers have uncovered a stealthy new attack method that fuses misconfigured Docker remote APIs with...
Threat actors are ramping up attacks on poorly managed MySQL servers, particularly those running in Windows environments,...
A Server-Side Request Forgery (SSRF) vulnerability has been discovered in the @opennextjs/cloudflare package, potentially allowing unauthenticated users...
Elastic Security Labs has revealed a highly sophisticated multi-stage attack chain exploiting a social engineering method dubbed...
The ransomware threat landscape is undergoing dramatic upheaval. As legacy groups like RansomHub, LockBit, Everest, and BlackLock...
A critical vulnerability has been disclosed in KAON’s KCM3100 Wi-Fi gateway devices that could allow attackers to...
A fresh wave of targeted cyberattacks is sweeping across Europe, leveraging invoice-themed phishing emails and weaponizing legitimate...