Do Son, Author at Daily CyberSecurity • Page 299 of 730

Critical UAF Vulnerability Discovered in Ladybird Browser Engine (CVE-2025-47154) Ladybird, use-after-free

Critical UAF Vulnerability Discovered in Ladybird Browser Engine (CVE-2025-47154)

Do Son May 2, 2025

The Ladybird browser engine, a relatively new entrant originating from the SerenityOS project, has been found to...

CVE-2025-46619: LFI Vulnerability Affects Multiple Versions of Couchbase Server for Windows Couchbase Server, Local File Inclusion

CVE-2025-46619: LFI Vulnerability Affects Multiple Versions of Couchbase Server for Windows

Do Son May 2, 2025

Couchbase Server, a widely-used NoSQL document database engineered for high-performance, interactive applications, disclosed a serious security flaw....

SonicWall Issues Patch for SSRF Vulnerability in SMA1000 Appliances SonicWall, SSRF vulnerability

SonicWall Issues Patch for SSRF Vulnerability in SMA1000 Appliances

Do Son May 2, 2025

SonicWall’s Product Security Incident Response Team (PSIRT) has issued an important update for its SMA1000 series appliances...

Malicious Python Packages Exploited Gmail as Covert Command-and-Control Channels Python malware, Gmail C2

Malicious Python Packages Exploited Gmail as Covert Command-and-Control Channels

Do Son May 2, 2025

In a detailed technical report, Socket’s Threat Research Team uncovered seven malicious Python packages published to the...

Intrinsec Links Eye Pyramid C2 to Ransomware Networks in New Infrastructure Mapping Report Eye Pyramid, Ransomware Infrastructure

Intrinsec Links Eye Pyramid C2 to Ransomware Networks in New Infrastructure Mapping Report

Do Son May 2, 2025

In a comprehensive new report, cybersecurity firm Intrinsec has detailed how infrastructure used by RansomHub and the...

Bitdefender Exposes Sophisticated Subscription-Based Mystery Box Scams mystery box scam, subscription scam

Bitdefender Exposes Sophisticated Subscription-Based Mystery Box Scams

Do Son May 2, 2025

Bitdefender researchers have uncovered a sprawling web of subscription-based scams that blend professional-looking websites, social media manipulation,...

NVIDIA Fixes High-Severity Vulnerability in TensorRT-LLM TensorRT-LLM, NVIDIA vulnerability

NVIDIA Fixes High-Severity Vulnerability in TensorRT-LLM

Do Son May 2, 2025

NVIDIA has released a security update for its TensorRT-LLM Framework, addressing a high-severity vulnerability that could expose...

Amazon Launches Nova Premier AI Model with 1 Million Token Context Amazon AI, Carbon Footprint Nova Sonic, speech AI Amazon Nova

Amazon Launches Nova Premier AI Model with 1 Million Token Context

Do Son May 1, 2025

At the re:Invent 2024 conference last year, Amazon unveiled its proprietary Nova series of generative artificial intelligence...

Google Invests in Electrician Training to Power AI’s Energy Demands Gemini Code Assist Android free electrician training, AI energy demand

Google Invests in Electrician Training to Power AI’s Energy Demands

Do Son May 1, 2025

Google has announced funding support for the electrical training ALLIANCE (etA) — a joint initiative of the...

Samsung MagicInfo9 Vulnerability CVE-2026-25202 Galaxy S26 benchmarks Samsung HBM4 NVIDIA certification Samsung Bixby Perplexity integration, One UI 8.5 AI assistant Samsung Taylor 2nm mass production, TSMC 2nm capacity constraint 2026 Samsung SATA SSD Discontinuation, SSD Market Shift Samsung SATA SSD Discontinuation, M.2 Market Shift Samsung Foundry 4nm Yield Tsavorite OPU Chip Order Samsung Project Moohan, Android XR Samsung OpenAI Partnership, AI Infrastructure Samsung Exynos 2600, 2nm GAA Tesla AI Chips, Samsung Foundry Deal Samsung Foldables, Galaxy Unpacked 2025 Samsung AI, Perplexity AI Samsung data breach Q990D firmware US tariffs

US Tariffs and AI Export Controls Worry Samsung Despite Record Revenue

Do Son May 1, 2025

During its recent earnings conference, Samsung noted that ongoing uncertainty surrounding U.S. tariff policies, coupled with increasingly...

Zuckerberg: AI to Handle Majority of Meta’s Code in 1-1.5 Years Meta AI, Zuckerberg

Zuckerberg: AI to Handle Majority of Meta’s Code in 1-1.5 Years

Do Son May 1, 2025

In a conversation with Microsoft CEO Satya Nadella, Mark Zuckerberg expressed his ambition to delegate more than...

SonicWall Confirms Active Exploitation of SMA 100 Vulnerabilities – Urges Immediate Patching SonicWall, SMA 100 vulnerabilities

SonicWall Confirms Active Exploitation of SMA 100 Vulnerabilities – Urges Immediate Patching

Do Son May 1, 2025

On April 29, 2025, SonicWall issued an urgent update to two previously disclosed vulnerabilities affecting its SMA...

CVE-2024-10442 (CVSS 10): Zero-Click RCE in Synology DiskStation, PoC Publishes Synology vulnerability CVE-2024-10442 PoC

CVE-2024-10442 (CVSS 10): Zero-Click RCE in Synology DiskStation, PoC Publishes

Do Son May 1, 2025

A critical remote code execution (RCE) vulnerability has been disclosed in Synology’s DiskStation DS1823xs+, a popular NAS...

CVE-2025-29906: Finit’s Bundled Getty Flaw Allows Authentication Bypass on Linux Systems Finit vulnerability, authentication bypass

CVE-2025-29906: Finit’s Bundled Getty Flaw Allows Authentication Bypass on Linux Systems

Do Son May 1, 2025

A serious security vulnerability has been discovered in Finit, a lightweight and fast init system for Linux,...

APT28 Cyber Espionage Campaign Targets French Institutions Since 2021 APT28, Cyber Espionage

APT28 Cyber Espionage Campaign Targets French Institutions Since 2021

Do Son May 1, 2025

The French National Cybersecurity Agency (ANSSI) has released a detailed report exposing a sustained and strategic cyber-espionage...

CVE-2025-32444 (CVSS 10): Critical RCE Flaw in vLLM’s Mooncake Integration Exposes AI Infrastructure vLLM Vulnerability CVE-2026-22778 vLLM Memory Corruption, AI Inference RCE CVE-2025-29783 CVE-2025-32444 vLLM vulnerability vLLM, Remote Code Execution

vLLM Vulnerability CVE-2026-22778 vLLM Memory Corruption, AI Inference RCE CVE-2025-29783 CVE-2025-32444 vLLM vulnerability vLLM, Remote Code Execution

CVE-2025-32444 (CVSS 10): Critical RCE Flaw in vLLM’s Mooncake Integration Exposes AI Infrastructure

Do Son May 1, 2025

A critical security vulnerability has been disclosed in vLLM, a popular open-source library used for high-performance inference...

CAPTCHA to Command: Trustwave Uncovers Stealthy NodeJS Backdoor Campaign Fake captcha page

CAPTCHA to Command: Trustwave Uncovers Stealthy NodeJS Backdoor Campaign

Do Son May 1, 2025

Trustwave SpiderLabs has uncovered an evolving cyber threat that leverages deceptive CAPTCHA verifications to infect users with...

Gremlin Stealer Malware Targets Browsers, Crypto Wallets, and VPNs in Telegram-Based Campaign Gremlin Stealer, info-stealer malware

Gremlin Stealer Malware Targets Browsers, Crypto Wallets, and VPNs in Telegram-Based Campaign

Do Son May 1, 2025

Researchers at Palo Alto Networks’ Unit 42 have unveiled a new, actively developed malware strain dubbed Gremlin...

Outlaw Botnet Exploits Weak SSH to Hijack Linux Systems for Crypto Mining Outlaw botnet, Linux crypto mining

Outlaw Botnet Exploits Weak SSH to Hijack Linux Systems for Crypto Mining

Do Son May 1, 2025

While high-profile ransomware and state-backed APT groups often dominate headlines, it’s crucial not to overlook quieter yet...

Sophisticated Attacks Employ Cobalt Strike, DLL Sideloading, and Evolving Tactics

Do Son May 1, 2025

In a sophisticated campaign that spanned multiple regions and techniques, Sophos researchers uncovered a cluster of targeted...