After years of operating in near-total obscurity, the cyber-espionage group XDSpy has resurfaced in a sophisticated campaign...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
Following the Trump administration’s initial decision in early April to grant TikTok’s U.S. operations an additional 75-day...
A high-severity vulnerability has been uncovered in the pure-Python backend of Google’s Protocol Buffers (protobuf), potentially allowing...
D-Link has issued an official advisory warning users of its legacy DIR-632 router that two critical vulnerabilities...
Broadcom has officially unveiled VMware Cloud Foundation (VCF) 9.0, marking a significant stride in advancing its modern...
An increasing number of devices are now beginning to support the Wi-Fi 7 standard, yet its adoption...
After Microsoft integrated OneDrive cloud storage into Windows 10 and 11, a significant number of users were...
The decentralized social networking platform Mastodon has recently issued an email to its users, notifying them of...
The Mozilla Foundation is currently piloting an AI-powered search engine within the Firefox browser, selecting Perplexity AI...
Microsoft recently released a new study titled “2025 Work Trend Index Annual Report,” in which it issues...
In a detailed investigation published by FortiGuard Labs, a persistent and highly coordinated malware campaign has been...
Two high-severity vulnerabilities have been disclosed in widely used Ubiquiti software components—UCRM Client Signup Plugin and the...
The Qualys Threat Research Unit (TRU) has unveiled two interconnected privilege escalation vulnerabilities—CVE-2025-6018 and CVE-2025-6019—that can allow...
Unit 42 has uncovered two newly evolved variants of the KimJongRAT malware, one using traditional PE (Portable...
Businesses worldwide are grappling with cyberattacks that are becoming increasingly sophisticated and financially devastating. Reactive measures are...
A dangerous Linux privilege escalation vulnerability, CVE-2023-0386, has officially entered the CISA Known Exploited Vulnerabilities (KEV) Catalog...
The Cloud Software Group has issued a security bulletin addressing two critical vulnerabilities in NetScaler ADC (formerly...
Veeam, a global leader in data protection and disaster recovery solutions, has issued a critical security update...
Google has rolled out an important security update for the Stable Channel of Chrome, bringing the version...
German industrial automation manufacturer WAGO GmbH & Co. KG has released critical security updates for its WAGO...
The North Korean threat actor Kimsuky has been spotted deploying yet another advanced phishing campaign—this time leveraging...
As the adoption of generative AI accelerates across industries, enterprises are simultaneously raising their expectations for the...