iProov, a global leader in biometric identity verification, has unveiled a highly organized dark web operation designed...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
The European Space Agency (ESA) merchandise store fell victim to a cyberattack in which malicious actors implanted...
Cybersecurity researchers at Fortinet have uncovered two malicious packages slithering within the Python Package Index (PyPI), ready...
Developers have discovered that Google appears to be planning the integration of the Gemini Live system into...
A critical-severity security flaw has been uncovered in Apache Traffic Control, a popular open-source platform used to...
Multiple critical security vulnerabilities have been discovered in Gogs, a popular open-source self-hosted Git service. These vulnerabilities,...
Renowned for cyber espionage activities targeting critical sectors in the Middle East, OilRig, also known as APT34...
A recent study reveals a novel attack that compromises the security of Wi-Fi Protected Access 3 (WPA3)...
Researchers Jonathan Beierle and Logan Goins have uncovered a novel offensive tactic leveraging Microsoft’s Windows Defender Application...
Northwave Cyber Security has identified a sophisticated backdoor, LITTLELAMB.WOOLTEA, targeting Palo Alto Networks firewalls. The backdoor was...
The notorious cyber-espionage group Cloud Atlas, active since 2014, has been observed leveraging a new arsenal in...
A newly disclosed vulnerability, CVE-2024-23945, with a CVSS score of 8.7, has been identified in Apache Hive...
The Federal Bureau of Investigation (FBI), Department of Defense Cyber Crime Center (DC3), and Japan’s National Police...
Matt Mullenweg, WordPress co-founder and Automattic CEO, has pulled the plug on several key services for free...
Security researcher Alex Birnberg with SSD Secure Disclosure published the technical details and a proof-of-concept (PoC) exploit...
The popular web-based system administration tool, Webmin, has been found to harbor a critical security vulnerability (CVE-2024-12828)...
A severe command injection vulnerability (CVE-2024-56334) has been identified in the widely used Node.js system information package,...
CrushFTP, a popular file transfer server known for its robust features and user-friendly interface, has issued an...
Adobe has released urgent security updates to address a critical vulnerability in ColdFusion versions 2023 and 2021....
Radware’s latest report unveils the emergence of the Holy League—a hacktivist formed in July 2024. This group...
TRAC Labs recently unveiled a new phishing kit, named WikiKit, which is targeting industries across automotive, manufacturing,...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has raised the alarm on a critical security flaw...