Do Son, Author at Daily CyberSecurity • Page 354 of 732

Malicious Cisco AnyConnect Ads Target Users with NetSupport RAT

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

Malicious Cisco AnyConnect Ads Target Users with NetSupport RAT

Do Son February 8, 2025

A new malvertising campaign is distributing a fake Cisco AnyConnect installer that delivers the NetSupport RAT Trojan....

Lazarus Group Lures Victims with Fake LinkedIn Job Offers, Warns Bitdefender North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

Lazarus Group Lures Victims with Fake LinkedIn Job Offers, Warns Bitdefender

Do Son February 7, 2025

Bitdefender Labs has uncovered an active cyber espionage campaign by the Lazarus Group, a North Korean state-sponsored...

9.1 IBM Security Verify Directory Vulnerable to Critical Security Flaw – CVE-2024-51450 (CVSS 9.1) IBM API Connect, CVE-2025-13915 IBM Privilege Escalation, CVE-2025-36356 IBM Power Systems - CVE-2024-45656 CVE-2024-49814 and CVE-2024-51450 CVE-2024-56346 and CVE-2024-56347 CVE-2025-1302

IBM API Connect, CVE-2025-13915 IBM Privilege Escalation, CVE-2025-36356 IBM Power Systems - CVE-2024-45656 CVE-2024-49814 and CVE-2024-51450 CVE-2024-56346 and CVE-2024-56347 CVE-2025-1302

9.1 IBM Security Verify Directory Vulnerable to Critical Security Flaw – CVE-2024-51450 (CVSS 9.1)

Do Son February 7, 2025

IBM has issued a security bulletin addressing two vulnerabilities in its Security Verify Directory Server Container that...

AsyncRAT Rises Again: Malware Abuses Legitimate Services for Stealthy Delivery AsyncRAT Delivery

AsyncRAT Rises Again: Malware Abuses Legitimate Services for Stealthy Delivery

Do Son February 7, 2025

Forcepoint X-Labs exposes a new campaign utilizing Python, TryCloudflare, and Dropbox to spread the notorious AsyncRAT. The...

8.6 CVE-2025-0994: Critical Vulnerability in Trimble Cityworks Exploited in the Wild

Do Son February 7, 2025

Trimble, a leading provider of industrial technology solutions, has issued an urgent cybersecurity advisory regarding a critical...

Arm Drops NUVIA Lawsuit Against Qualcomm CVE-2023-4211 - Arm Lawsuit

Arm Drops NUVIA Lawsuit Against Qualcomm

Do Son February 7, 2025

During Qualcomm’s recent announcement of its financial results for the first quarter of fiscal year 2025, CEO...

9.8 CVE-2024-21413 (CVSS 9.8): Critical Outlook Flaw Under Active Attack, PoC Available CVE-2024-21413 exploit

9.8 CVE-2024-21413 (CVSS 9.8): Critical Outlook Flaw Under Active Attack, PoC Available

Do Son February 7, 2025

A critical vulnerability in Microsoft Outlook, tracked as CVE-2024-21413, is being actively exploited in the wild, posing...

Google’s SynthID Now in Magic Editor: AI Image Detection SynthID Magic Editor

Google’s SynthID Now in Magic Editor: AI Image Detection

Do Son February 7, 2025

Google has announced the integration of its digital watermarking technology, SynthID, into its photo editing tool, Magic...

MMS “VidSpam”: A New Bitcoin Scam Using Old Tech Crypto Drain Conspiracy, Malicious MobileConfig phone phishing Cryptocurrency Phishing

MMS “VidSpam”: A New Bitcoin Scam Using Old Tech

Do Son February 7, 2025

Cybersecurity researchers at Proofpoint have discovered a resurgence of an old technology being used in a new...

8.1 NETGEAR Patches Critical Security Vulnerabilities in WiFi Routers (CVE-2025-25246) and Access Points CVE-2022-48196 NETGEAR Security Vulnerabilities

CVE-2022-48196 NETGEAR Security Vulnerabilities

8.1 NETGEAR Patches Critical Security Vulnerabilities in WiFi Routers (CVE-2025-25246) and Access Points

Do Son February 6, 2025

NETGEAR has recently issued security advisories addressing critical vulnerabilities in several of its WiFi router and access...

Kimsuky Group Leverages RDP Wrapper for Persistent Cyber Espionage North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

Kimsuky Group Leverages RDP Wrapper for Persistent Cyber Espionage

Do Son February 6, 2025

The notorious North Korean APT group Kimsuky has continued its cyber espionage operations, leveraging spear-phishing attacks and...

9.8 CVE-2024-9643 & CVE-2024-9644: Authentication Bypass in Four-Faith F3x36 Routers Puts Networks at Risk

Do Son February 6, 2025

Two newly discovered security vulnerabilities—CVE-2024-9643 and CVE-2024-9644—affecting the Four-Faith F3x36 router (firmware v2.0.0) could allow remote attackers...

Apache James Mail Server Hit by Double Denial-of-Service Vulnerabilities CVE-2024-45626 and CVE-2024-37358

Apache James Mail Server Hit by Double Denial-of-Service Vulnerabilities

Do Son February 6, 2025

The Apache James (Java Apache Mail Enterprise Server) mail server, a widely used open-source solution, has been...

BADBOX Botnet: Pre-installed Malware Targets Android Devices Android BADBOX Botnet

BADBOX Botnet: Pre-installed Malware Targets Android Devices

Do Son February 6, 2025

A new and insidious botnet dubbed BADBOX is infecting hundreds of thousands of Android devices, with the...

HPE Aruba Networking Issues Security Updates for ClearPass Policy Manager CVE-2024-26305 _ CVE-2025-23058 Aruba 5G Core Open Redirect

HPE Aruba Networking Issues Security Updates for ClearPass Policy Manager

Do Son February 6, 2025

HPE Aruba Networking has released security updates to address multiple vulnerabilities in its ClearPass Policy Manager (CPPM)...

Cyberespionage Targets Aviation: ICAO and ACAO Breached

Do Son February 6, 2025

The aviation industry is facing a growing cyber threat, with recent attacks targeting the International Civil Aviation...

9.7 Vitest Vulnerability Exposes Developers to Remote Code Execution – CVE-2025-24964 (CVSS 9.7)

Do Son February 6, 2025

A critical security vulnerability (CVE-2025-24964) has been discovered in Vitest, a popular unit testing framework, which could...

Threat Actors Continue to Exploit Legitimate RMM Tool ScreenConnect KongTuke Microsoft Teams Phishing ModeloRAT Initial Access Broker CVE-2024-38193 - Lazarus Group Threat Actors ScreenConnect

KongTuke Microsoft Teams Phishing ModeloRAT Initial Access Broker CVE-2024-38193 - Lazarus Group Threat Actors ScreenConnect

Threat Actors Continue to Exploit Legitimate RMM Tool ScreenConnect

Do Son February 6, 2025

A recent report from Silent Push reveals that threat actors are still leveraging ScreenConnect, a legitimate remote...

ValleyRAT Returns: Silver Fox APT Deploys New Delivery Techniques for Multi-Stage Attacks DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

ValleyRAT Returns: Silver Fox APT Deploys New Delivery Techniques for Multi-Stage Attacks

Do Son February 6, 2025

Morphisec Threat Labs has uncovered a sophisticated multi-stage malware campaign attributed to the Silver Fox APT, leveraging...

GreenSpot APT Phishes 163.com Users with Spoofed Domains Oracle EBS Zero-Day, GRACEFUL SPIDER Cracked Software, Supply Chain Attack Black Basta - NOVA stealer

Oracle EBS Zero-Day, GRACEFUL SPIDER Cracked Software, Supply Chain Attack Black Basta - NOVA stealer

GreenSpot APT Phishes 163.com Users with Spoofed Domains

Do Son February 6, 2025

A recent report from Threat Hunting Platform – Hunt.io has exposed an ongoing phishing campaign orchestrated by...