At a glance: Actor/Group: TAG-182 threat cluster (suspected Iran-nexus) Activity Type: Cyber surveillance and malware distribution Targets/Victims:...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
In March 2026, HiAnime abruptly announced its closure and issued a farewell statement. This platform was arguably...
TL;DR The PHP team fixed two flaws, including a PHP remote DoS that can crash a whole...
IBM discovered three security flaws affecting WebSphere Application Server versions 9.0 and 8.5. These IBM WebSphere vulnerabilities...
Welcome to the latest weekly threat intelligence briefing. Our cyber defense team processed 1,939 new vulnerabilities between...
The FreeBSD Project published multiple FreeBSD security advisories today. These warnings expose critical flaws in OpenZFS, libalias,...
TL;DR Synacktiv publicly disclosed a Kerberos reflection bypass tracked as CVE-2026-26128. The flaw lets a domain user...
TL;DR The OWASP ModSecurity team patched two ModSecurity vulnerabilities in version 3.0.16. Both let attackers slip payloads...
At a glance Actor TeamPCP Activity type Software supply chain compromise Targets Enterprise developers, security tools Scale...
IBM security researchers discovered six severe Langflow OSS vulnerabilities. These flaws allow attackers to execute arbitrary code,...
TL;DR CISA published an advisory for five DCMTK vulnerabilities on 30 June 2026. The DICOM toolkit powers...
Sony recently announced that it will cease production of physical game discs for new releases starting in...
Following the restoration of Claude Fable 5, Anthropic reset the weekly quotas for all premium subscribers, permitting...
For a considerable epoch, Google Chrome has routinely concealed extension icons by defaulting them into a collapsed...
Claude Fable 5 is back online. Developers using Claude Code can access the model through their existing...
At a glance Actor Suspected North Korean Lazarus-linked group (attribution by TTP similarity) Activity npm supply chain...
Unsigned software installers are distributing a dangerous new malware strain that quietly intercepts digital currency transactions. Security...
Yesterday, reports emerged that kernel.org had deleted all hosted kernel files. Every archived and current kernel package...
After nearly a decade of legal battles, the EU’s antitrust case against Google has finally reached its...
At a glance Malware family Glitch SPY (Android RAT and builder platform) Threat actor Unattributed; operator unidentified...
Security analysts recently discovered the ToddyCat APT Umbrij tool. It hijacks corporate Gmail accounts without triggering standard...
TL;DR CVE-2026-48282, a critical CVSS 10 ColdFusion arbitrary code execution vulnerability, is under active attack. Hackers are...