A recent report by ReversingLabs (RL) has uncovered malicious packages on the npm repository that employ sophisticated...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
A new report from Seqrite Labs details a malicious campaign employing SnakeKeylogger, an info-stealing malware known for...
A series of security vulnerabilities has been identified in Artifex Ghostscript, a widely used interpreter for PostScript...
A new report by Group-IB reveals the growing threat of “Classiscam” scams in Central Asia, exploiting the...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a security advisory alerting organizations to multiple...
A new cybersecurity report by CYFIRMA has uncovered a sophisticated cyberattack campaign targeting Indian users, allegedly orchestrated...
Mozilla releases urgent security patch for Windows users as researchers uncover another IPC vulnerability echoing a recently...
A recently disclosed vulnerability in Synology Mail Server could allow remote authenticated attackers to tamper with system...
Microsoft released the optional non-security update (KB5053657) to Windows 10 and 11 yesterday. These updates are typically...
Real-world incidents remind us that even cybersecurity experts are not immune to online deception. This time, the...
Vite, the blazing-fast frontend build tool that powers millions of modern web applications, has been found vulnerable...
Admins urged to patch immediately as CrushFTP discloses high-severity flaw impacting versions 10 and 11. A new...
Splunk, a widely used platform for searching, monitoring, and analyzing machine-generated data, has released a security advisory...
A critical zero-day vulnerability has been discovered in Synapse, an open-source Matrix homeserver implementation. This flaw is...
Exim, a widely used message transfer agent (MTA) for Unix systems, is facing a critical security vulnerability....
Two critical vulnerabilities in Sitecore’s anti-CSRF module have re-emerged as active threats, with proof-of-concept exploits in circulation...
A series of critical security vulnerabilities has been discovered in the Ingress-NGINX Controller for Kubernetes, posing a...
Multiple critical security vulnerabilities have been identified in the Frappe Framework, a full-stack web framework powering ERPNext...
A critical security vulnerability has been discovered in the “User Registration & Membership” WordPress plugin, a popular...
A critical security vulnerability has been identified in CryptoLib, a C-based software implementation of the CCSDS Space...
In the ever-evolving landscape of cyber threats, the macOS platform is not immune. A malware loader platform...
A new report by Resecurity details the rise and fall of the BlackLock Ransomware-as-a-Service (RaaS) operation, revealing...