Do Son, Author at Daily CyberSecurity • Page 355 of 732

ValleyRAT Returns: Silver Fox APT Deploys New Delivery Techniques for Multi-Stage Attacks DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

ValleyRAT Returns: Silver Fox APT Deploys New Delivery Techniques for Multi-Stage Attacks

Do Son February 6, 2025

Morphisec Threat Labs has uncovered a sophisticated multi-stage malware campaign attributed to the Silver Fox APT, leveraging...

GreenSpot APT Phishes 163.com Users with Spoofed Domains Oracle EBS Zero-Day, GRACEFUL SPIDER Cracked Software, Supply Chain Attack Black Basta - NOVA stealer

Oracle EBS Zero-Day, GRACEFUL SPIDER Cracked Software, Supply Chain Attack Black Basta - NOVA stealer

GreenSpot APT Phishes 163.com Users with Spoofed Domains

Do Son February 6, 2025

A recent report from Threat Hunting Platform – Hunt.io has exposed an ongoing phishing campaign orchestrated by...

Windows 10 ESU Program: A Lifeline for Holdouts, But at What Cost? Windows 10 MSMQ Bug, KB5071546 Write Permissions Windows 10 Lawsuit Windows 10 ESU, Free Security Updates Windows 10 ESU program

Windows 10 MSMQ Bug, KB5071546 Write Permissions Windows 10 Lawsuit Windows 10 ESU, Free Security Updates Windows 10 ESU program

Windows 10 ESU Program: A Lifeline for Holdouts, But at What Cost?

Do Son February 6, 2025

If you’re a die-hard Windows 10 user dreading the impending end-of-support deadline, fear not! Microsoft has unveiled...

Gemini 2.0 Unleashed: Pro, Flash-Lite, & More Google Gemini, audio files Gemini AI, Google AI Google Gemini 2.0 Flash Thinking iOS

Gemini 2.0 Unleashed: Pro, Flash-Lite, & More

Do Son February 6, 2025

Google DeepMind’s Chief Technology Officer, Koray Kavukcuoglu, has officially announced the full-scale launch of the Gemini 2.0...

Arch Linux on WSL 2: Microsoft Confirms Official Support Arch Linux WSL2

Arch Linux on WSL 2: Microsoft Confirms Official Support

Do Son February 5, 2025

The popular open-source operating system Arch Linux has recently entered into a collaboration with Microsoft, following discussions...

9.9 CVE-2025-20124 (CVSS 9.9) & CVE-2025-20125 (CVSS 9.1): Cisco Patches Critical Flaws in Identity Services Engine CVE-2025-20124 CVE-2025-20125

9.9 CVE-2025-20124 (CVSS 9.9) & CVE-2025-20125 (CVSS 9.1): Cisco Patches Critical Flaws in Identity Services Engine

Do Son February 5, 2025

Cisco has issued a security advisory addressing two critical vulnerabilities in its Identity Services Engine (ISE), a...

5.3 F5 Warns of TLS Session Resumption Vulnerability in NGINX (CVE-2025-23419) NGINX JavaScript Module Vulnerability CVE-2026-8711 NGINX 1.30.1 Security Update CVE-2026-42945 RCE NGINX Vulnerability CVE-2026-1642 NGINX Github - CVE-2025-23419

NGINX JavaScript Module Vulnerability CVE-2026-8711 NGINX 1.30.1 Security Update CVE-2026-42945 RCE NGINX Vulnerability CVE-2026-1642 NGINX Github - CVE-2025-23419

5.3 F5 Warns of TLS Session Resumption Vulnerability in NGINX (CVE-2025-23419)

Do Son February 5, 2025

F5 has issued a security advisory warning of a vulnerability in NGINX, a popular web server software....

9.9 XE Group Exploits Zero-Day Vulnerabilities in VeraCore – CVE-2024-57968 & CVE-2025-25181 Winos 4.0 Malware Silver Fox APT RapperBot BVIEC cyberattack - CNC group DAMASCENED PEACOCK, malware analysis

Winos 4.0 Malware Silver Fox APT RapperBot BVIEC cyberattack - CNC group DAMASCENED PEACOCK, malware analysis

9.9 XE Group Exploits Zero-Day Vulnerabilities in VeraCore – CVE-2024-57968 & CVE-2025-25181

Do Son February 5, 2025

Cybersecurity researchers from Intezer and Solis Security have uncovered a dramatic shift in tactics by XE Group,...

Malicious Go Package Exploits Caching for Stealthy Persistence

Do Son February 5, 2025

Socket researchers have discovered a malicious typosquatting package in the Go ecosystem that exploits the Go Module...

9.8 Zyxel Routers Under Attack: Default Credentials (CVE-2025-0890) and Code Injection (CVE-2024-40891), No Patch!

Do Son February 5, 2025

Security researchers at VulnCheck have identified critical vulnerabilities in Zyxel Customer Premises Equipment (CPE), leaving countless users...

Kubernetes Policy Enforcement at Risk: OPA Gatekeeper Bypass Exposes Security Flaws Ingress-Nginx Vulnerability Kubernetes RCE Vulnerability CVE-2025-9708 Kubernetes Security, Image Builder Vulnerability CVE-2024-10220 - OPA Gatekeeper Bypass

Ingress-Nginx Vulnerability Kubernetes RCE Vulnerability CVE-2025-9708 Kubernetes Security, Image Builder Vulnerability CVE-2024-10220 - OPA Gatekeeper Bypass

Kubernetes Policy Enforcement at Risk: OPA Gatekeeper Bypass Exposes Security Flaws

Do Son February 5, 2025

A recent report from Aqua Security has uncovered significant security risks in Kubernetes policy enforcement, particularly in...

7.2 Google Security Team Uncovers AMD Microcode Vulnerability (CVE-2024-56161) AMD Microcode Vulnerability - CVE-2024-56161

7.2 Google Security Team Uncovers AMD Microcode Vulnerability (CVE-2024-56161)

Do Son February 5, 2025

A recent disclosure from the Google Security Team has revealed a high-severity vulnerability in AMD Zen-based CPUs...

$50 for Your Data: NOVA Stealer Sold as Malware-as-a-Service Oracle EBS Zero-Day, GRACEFUL SPIDER Cracked Software, Supply Chain Attack Black Basta - NOVA stealer

$50 for Your Data: NOVA Stealer Sold as Malware-as-a-Service

Do Son February 5, 2025

The BI.ZONE Threat Intelligence team has reported a significant ongoing campaign distributing the NOVA stealer, a new...

Security Flaws Discovered in Apache Cassandra: Unauthorized Access, Privilege Escalation, and JMX Credential Theft

Do Son February 5, 2025

The popular open-source NoSQL database, Apache Cassandra, is facing a barrage of critical vulnerabilities, potentially exposing sensitive...

SmartApeSG Campaign Uncovered: A Deep Dive into NetSupport RAT Distribution and Suspected Threat Actor Connections CRussian Market, "Fly" (Flyded) hange Healthcare Cyberattack - CVE-2024-50603 Exploit

CRussian Market, "Fly" (Flyded) hange Healthcare Cyberattack - CVE-2024-50603 Exploit

SmartApeSG Campaign Uncovered: A Deep Dive into NetSupport RAT Distribution and Suspected Threat Actor Connections

Do Son February 5, 2025

A recent investigation by Team Cymru has revealed an intricate web of malicious infrastructure linking the SmartApeSG...

North Korean-Linked Malware ‘FlexibleFerret’ Expands macOS Attack Surface North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean-Linked Malware ‘FlexibleFerret’ Expands macOS Attack Surface

Do Son February 5, 2025

Cybersecurity researchers at SentinelOne have uncovered new macOS malware variants attributed to North Korean threat actors, expanding...

9.3 Symantec PAM Patches Critical Security Flaw – CVE-2025-24503 (CVSSv4 9.3)

Do Son February 5, 2025

Symantec has released version 4.2.1 of its Privileged Access Manager (PAM) to address multiple security vulnerabilities, including...

SparkCat Malware: Sneaky Crypto Stealer Found in Google Play and App Store Apps

Do Son February 5, 2025

Kaspersky Labs researchers have uncovered a new malware campaign dubbed “SparkCat” that uses optical character recognition (OCR)...

Windows Secure Lock Screen Clock Lag Windows 11 KB5079391 error Windows 11 Kernel Driver Trust Microslop Windows 11 Windows 11 modem driver removal 2026, CVE-2025-24052 Agere driver exploit Windows 11 Password Icon Bug Lock Screen Glitch Windows 11 26H1 ARM Snapdragon X2 Windows 11 Reboot-Free, Insider Build Windows Update Error, 0x80070103 File Explorer, NTLM leak Windows bug, WinRE Windows Update, UAC prompts Secure Boot Certificate, Windows Security Windows 11 22H2 Installation security updates Windows UEFI CA 2023 Windows 11 25H2

Microsoft Releases PowerShell Script for UEFI Certificate Update

Do Son February 5, 2025

Although support for Windows 8 has long since ended, Windows 11 still retains UEFI digital certificates issued...

Meta Unveils “Frontier AI Framework” to Address High-Risk AI

Do Son February 5, 2025

Meta recently unveiled a white paper titled “Frontier AI Framework,” which defines two categories of high-risk AI...