Do Son, Author at Daily CyberSecurity • Page 316 of 731

Windows CLFS Zero-Day Exploited to Deploy Ransomware CLFS zero-day Ransomware attack

Windows CLFS Zero-Day Exploited to Deploy Ransomware

Do Son April 9, 2025

Microsoft Threat Intelligence has disclosed active exploitation of a zero-day vulnerability in the Windows Common Log File...

Siemens Security Alert: Critical Vulnerabilities in SENTRON 7KT PAC1260 Data Manager Siemens RTLS, CVE-2025-40746 CVE-2024-22040 - SINEC Security Monitor Siemens Security Advisory SENTRON 7KT PAC1260

Siemens RTLS, CVE-2025-40746 CVE-2024-22040 - SINEC Security Monitor Siemens Security Advisory SENTRON 7KT PAC1260

Siemens Security Alert: Critical Vulnerabilities in SENTRON 7KT PAC1260 Data Manager

Do Son April 9, 2025

In a recent security advisory, Siemens ProductCERT has revealed multiple critical vulnerabilities affecting the SENTRON 7KT PAC1260...

Kibana Code Injection Vulnerability: Prototype Pollution Threat (CVE-2024-12556) CVE-2024-43707 Kibana vulnerability Prototype pollution CVE-2025-25014

CVE-2024-43707 Kibana vulnerability Prototype pollution CVE-2025-25014

Kibana Code Injection Vulnerability: Prototype Pollution Threat (CVE-2024-12556)

Do Son April 9, 2025

A newly disclosed vulnerability in Kibana, the popular open-source data visualization front-end for Elasticsearch, has been rated...

Neptune RAT: Advanced Malware Targets Windows with Destructive Capabilities Neptune RAT, Remote Access Trojan

Neptune RAT: Advanced Malware Targets Windows with Destructive Capabilities

Do Son April 9, 2025

CYFIRMA researchers have uncovered a new version of the Neptune RAT, a Remote Access Trojan (RAT) that...

Chrome Update Fixes High-Severity “Use After Free” Vulnerability Chrome update Security vulnerability

Chrome Update Fixes High-Severity “Use After Free” Vulnerability

Do Son April 9, 2025

The Chrome Stable channel has been updated to version 135.0.7049.84/.85 for Windows and Mac, and to 135.0.7049.84...

Rogue RDP: Abusing RDP for File Theft and Espionage GUI

Rogue RDP: Abusing RDP for File Theft and Espionage

Do Son April 9, 2025

A recent report by Google Threat Intelligence Group (GTIG) has shed light on a sophisticated phishing campaign...

Microsoft April 2025 Patch Tuesday: Critical Security Updates and Zero-Day Exploits Microsoft Patch Tuesday fixes disclosed zero day vulnerabilities Windows Wormable Exploit April 2026 Patch Tuesday Microsoft Patch Tuesday Zero-Day Vulnerabilities Microsoft, Patch Tuesday CVE-2025-55234 CVE-2024-43573 and CVE-2024-43572 Microsoft Patch Tuesday Security Vulnerabilities

Microsoft Patch Tuesday fixes disclosed zero day vulnerabilities Windows Wormable Exploit April 2026 Patch Tuesday Microsoft Patch Tuesday Zero-Day Vulnerabilities Microsoft, Patch Tuesday CVE-2025-55234 CVE-2024-43573 and CVE-2024-43572 Microsoft Patch Tuesday Security Vulnerabilities

Microsoft April 2025 Patch Tuesday: Critical Security Updates and Zero-Day Exploits

Do Son April 9, 2025

This April, Microsoft’s Patch Tuesday release addresses a significant number of vulnerabilities, highlighting the ever-present need for...

Inaba Denki Sangyo Wi-Fi AP Units Affected by Critical Vulnerabilities Vonets WiFi Bridge Inaba Denki Sangyo Wi-Fi vulnerability

Inaba Denki Sangyo Wi-Fi AP Units Affected by Critical Vulnerabilities

Do Son April 9, 2025

A recent security advisory from JPCERT/CC has highlighted multiple vulnerabilities in Inaba Denki Sangyo Co., Ltd.’s Wi-Fi...

Vidar Stealer Hides in Legitimate BGInfo Tool Vidar Stealer, malware, BGInfo

Vidar Stealer Hides in Legitimate BGInfo Tool

Do Son April 9, 2025

Vidar Stealer, a notorious information-stealing malware that first emerged in 2018, continues to pose a significant threat...

SourceForge Used to Distribute ClipBanker Trojan and Cryptocurrency Miner

Do Son April 9, 2025

For many developers, SourceForge has long been a cornerstone of open-source collaboration — a trusted hub to...

Grandoreiro Trojan Resurges in Phishing Attacks Grandoreiro, banking trojan, phishing

Grandoreiro Trojan Resurges in Phishing Attacks

Do Son April 9, 2025

Cybercriminals are actively distributing the Grandoreiro banking trojan through large-scale phishing campaigns, primarily targeting banking users in...

Apache mod_auth_openidc Vulnerability Exposes Protected Content mod_auth_openidc, Apache security

Apache mod_auth_openidc Vulnerability Exposes Protected Content

Do Son April 9, 2025

In a recently published security advisory, OpenIDC has revealed a vulnerability in mod_auth_openidc, the widely used OpenID...

Malicious VSCode Extensions Caught Mining Crypto with XMRig VSCode extensions, cryptomining

Malicious VSCode Extensions Caught Mining Crypto with XMRig

Do Son April 9, 2025

Visual Studio Code, Microsoft’s open-source and freely available code editor, offers a marketplace for a vast array...

Fortinet: Critical Unverified Password Change Flaw in FortiSwitch Fortinet Vulnerability CVE-2024-48887

Fortinet: Critical Unverified Password Change Flaw in FortiSwitch

Do Son April 8, 2025

Fortinet has released a security advisory addressing a critical vulnerability in FortiSwitch products. The vulnerability, identified as...

Europol Operation Dismantles Major Euro Counterfeiting Ring Euro Counterfeiting Europol

Europol Operation Dismantles Major Euro Counterfeiting Ring

Do Son April 8, 2025

A large-scale, multi-national operation supported by Europol has led to the arrest of several members of a...

Siemens Industrial Edge: Critical Authentication Flaw (CVE-2024-54092) Siemens Edge Vulnerability CVE-2025-40805 CVE-2024-32741 - CVE-2025-27494 Siemens, Industrial Edge, CVE-2024-54092

Siemens Edge Vulnerability CVE-2025-40805 CVE-2024-32741 - CVE-2025-27494 Siemens, Industrial Edge, CVE-2024-54092

Siemens Industrial Edge: Critical Authentication Flaw (CVE-2024-54092)

Do Son April 8, 2025

Siemens has issued security advisories SSA-634640 and SSA-819629 to address a weak authentication vulnerability affecting its Industrial...

Oracle Data Breach: Authenticity Confirmed Despite Denial Oracle breach, data breach, cloud security

Oracle Data Breach: Authenticity Confirmed Despite Denial

Do Son April 8, 2025

At the end of March, a hacker claimed to have breached Oracle’s cloud infrastructure, allegedly exfiltrating approximately...

SAP April 2025 Patch Day: Critical Code Injection Risks SAP security, code injection, security patch

SAP April 2025 Patch Day: Critical Code Injection Risks

Do Son April 8, 2025

The SAP Security Patch Day on April 8, 2025, brought a wave of critical security updates, with...

Google AI Search: Gemini Expands to Search Labs Google AI, Search Labs

Google AI Search: Gemini Expands to Search Labs

Do Son April 8, 2025

Previously available exclusively to U.S.-based users subscribed to the Google One AI Premium plan, Google’s “AI Mode”...

Google Patches 23-Year-Old Chrome Vulnerability That Leaked Browsing History Chrome, Antitrust Browser Security, Local Network Access CVE-2022-3075 history-sniffing vulnerability

Chrome, Antitrust Browser Security, Local Network Access CVE-2022-3075 history-sniffing vulnerability

Google Patches 23-Year-Old Chrome Vulnerability That Leaked Browsing History

Do Son April 8, 2025

Although Chrome itself has not yet reached its 23rd anniversary, the history of web browsers stretches much...