Do Son, Author at Daily CyberSecurity • Page 345 of 731

Apple’s Spyware Detection: Only 50% Effective? Pegasus spyware sample

Apple’s Spyware Detection: Only 50% Effective?

Do Son February 21, 2025

The Pegasus spyware, developed by Israeli commercial surveillance firm NSO Group, remains one of the most formidable...

ChatGPT Hits 400 Million Weekly Users ChatGPT active user

ChatGPT Hits 400 Million Weekly Users

Do Son February 21, 2025

In December, 2024, OpenAI revealed that ChatGPT’s weekly active users had surpassed 300 million. This marks a...

Apple C2 Modem: Next-Gen 5G in the Works? Apple C2 modem Apple Product Roadmap, iPhone 17

Apple C2 Modem: Next-Gen 5G in the Works?

Do Son February 21, 2025

Apple has recently unveiled the iPhone 16e, marking the debut of its first proprietary 5G modem chip,...

Amazon Appstore on Android to Shut Down in 2025: What It Means for Users and Developers Amazon Appstore Android

Amazon Appstore on Android to Shut Down in 2025: What It Means for Users and Developers

Do Son February 20, 2025

The Amazon Appstore, introduced by Amazon as an alternative to the Google Play Store, serves as a...

8.6 Google Releases PoC for CVE-2025-0110 Command Injection in PAN-OS Firewalls CVE-2024-5921 - CVE-2025-0103 CVE-2025-0110 PoC

8.6 Google Releases PoC for CVE-2025-0110 Command Injection in PAN-OS Firewalls

Do Son February 20, 2025

A Google researcher has disclosed details and a proof-of-concept (PoC) exploit for a vulnerability (CVE-2025-0110) in Palo...

9.0 CVE-2025-23115 & CVE-2025-23116: Hackers Can Hijack Ubiquiti UniFi Protect Cameras

Do Son February 20, 2025

Ubiquiti, a leading provider of networking equipment, has issued a critical security advisory concerning multiple vulnerabilities discovered...

7.1 CVE-2025-0111 & CVE-2025-23209: Palo Alto Firewalls and Craft CMS Under Active Attack Ivanti EPMM Vulnerability CVE-2026-1340 CISA KEV Catalog CVE-2026-21385 CISA KEV Update CVE-2008-0015 CISA KEV, Array Networks Command Injection CVE-2025-0111 & CVE-2025-23209 CISA, Known Exploited Vulnerabilities

Ivanti EPMM Vulnerability CVE-2026-1340 CISA KEV Catalog CVE-2026-21385 CISA KEV Update CVE-2008-0015 CISA KEV, Array Networks Command Injection CVE-2025-0111 & CVE-2025-23209 CISA, Known Exploited Vulnerabilities

7.1 CVE-2025-0111 & CVE-2025-23209: Palo Alto Firewalls and Craft CMS Under Active Attack

Do Son February 20, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two critical security vulnerabilities to its Known...

China’s Cybersecurity Firms Reveal Alleged NSA (Equation Group) Tactics in University Hack APT-C-40 - Equation Group

China’s Cybersecurity Firms Reveal Alleged NSA (Equation Group) Tactics in University Hack

Do Son February 20, 2025

A newly surfaced Chinese cybersecurity report claims to provide a detailed look into NSA (Equation Group) tactics,...

9.9 CVE-2024-39327 (CVSS 9.9): Critical IDPKI Flaw Could Allow Illegitimate Certificate Issuance Ollama Heap Leak CVE-2026-5757 Anritsu Vulnerability Authentication Bypass Gootloader Malware Malformed ZIP Evasion Blender Malware, StealC V2 Lectora, XSS CVE-2025-9125 HFS RCE, Template Injection Arch Linux Malware, CHAOS RAT CVE-2024-56404 - CVE-2024-39327 CVE-2025-2538

Ollama Heap Leak CVE-2026-5757 Anritsu Vulnerability Authentication Bypass Gootloader Malware Malformed ZIP Evasion Blender Malware, StealC V2 Lectora, XSS CVE-2025-9125 HFS RCE, Template Injection Arch Linux Malware, CHAOS RAT CVE-2024-56404 - CVE-2024-39327 CVE-2025-2538

9.9 CVE-2024-39327 (CVSS 9.9): Critical IDPKI Flaw Could Allow Illegitimate Certificate Issuance

Do Son February 20, 2025

Eviden, an Atos business, has released a security bulletin addressing multiple vulnerabilities discovered in IDPKI, its Identity...

ACRStealer Malware Exploits Google Docs as Command-and-Control Infrastructure ACRStealer Infostealer malware

ACRStealer Malware Exploits Google Docs as Command-and-Control Infrastructure

Do Son February 20, 2025

Cybersecurity researchers at AhnLab Security Intelligence Center (ASEC) have identified a new surge in ACRStealer, a stealthy...

7.5 Fluent Bit Vulnerabilities (CVE-2024-50608 & CVE-2024-50609) Could Disrupt Millions of Enterprise Systems CVE-2024-50609 & CVE-2024-50608

7.5 Fluent Bit Vulnerabilities (CVE-2024-50608 & CVE-2024-50609) Could Disrupt Millions of Enterprise Systems

Do Son February 20, 2025

Cybersecurity researchers at Ebryx have identified two vulnerabilities in Fluent Bit, a widely used open-source log processor...

TA2726 & TA2727: Hackers Deploy Fake Updates to Spread Malware TA2726 and TA2727 & FrigidStealer malware

TA2726 & TA2727: Hackers Deploy Fake Updates to Spread Malware

Do Son February 20, 2025

Cybersecurity researchers at Proofpoint have identified two new cybercriminal threat actors, TA2726 and TA2727, actively exploiting fake...

Updated ShadowPad Malware Facilitates Ransomware Deployment in Global Attacks CVE-2024-1212 Vulnerability

Updated ShadowPad Malware Facilitates Ransomware Deployment in Global Attacks

Do Son February 20, 2025

A new report from Trend Micro has revealed that ShadowPad, a modular malware with deep ties to...

JavaScript-Based Malware Exploits Steganography for Covert Data Theft Stealer malware

JavaScript-Based Malware Exploits Steganography for Covert Data Theft

Do Son February 20, 2025

Cybersecurity firm CYFIRMA has uncovered a highly sophisticated malware campaign leveraging JavaScript to establish covert communication with...

Secure Boot Bypass: U-Boot Vulnerabilities Expose Embedded Devices U-Boot vulnerability - CVE-2024-57254

Secure Boot Bypass: U-Boot Vulnerabilities Expose Embedded Devices

Do Son February 20, 2025

U-Boot, a popular bootloader used in a wide range of embedded devices, has received a crucial update...

REF7707: Espionage Campaign Targets South America and Southeast Asia DPRK IT Workers, APT38 Crypto Forfeiture

REF7707: Espionage Campaign Targets South America and Southeast Asia

Do Son February 20, 2025

Elastic Security Labs has recently uncovered an expansive cyber espionage campaign, codenamed REF7707, that spans across South...

File Forensics: Uncovering Hidden Evidence with Computer Forensics Software monitor-1307227_1280

File Forensics: Uncovering Hidden Evidence with Computer Forensics Software

Do Son February 20, 2025

In today’s digital age, where data is both a valuable asset and a potential liability, the field...

8.2 Zero-Day Security Flaw in Microsoft Power Pages (CVE-2025-24989) Exposes Users to Privilege Escalation

Do Son February 20, 2025

Microsoft has addressed a zero-day vulnerability (CVE-2025-24989) in its Power Pages platform that could allow unauthorized attackers...

Microsoft’s Quantum Breakthrough: Majorana 1 and the Future of Computing

Do Son February 20, 2025

Microsoft has announced the launch of its first quantum processor, Majorana 1, which is built upon an...

7.8 CVE-2025-21420: Windows Disk Cleanup Tool Flaw Exploited to Gain SYSTEM Privileges, PoC Released

Do Son February 19, 2025

A vulnerability in the Windows Disk Cleanup Tool (cleanmgr.exe) has been patched by Microsoft as part of...