A series of critical security vulnerabilities have been discovered in GLPI (Gestionnaire Libre de Parc Informatique), a...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
Elastic Security Labs has uncovered “PUMAKIT,” a sophisticated multi-stage malware targeting Linux systems. Initially discovered during routine...
Citrix has issued an advisory highlighting an increase in password spraying attacks aimed at NetScaler appliances worldwide....
A recently discovered vulnerability in the popular curl command line tool and library, tracked as CVE-2024-11053 and...
McAfee Labs has revealed the discovery of a new Android banking trojan targeting Indian users, exploiting the...
Oasis Security’s research team has unveiled a critical vulnerability in Microsoft Azure’s Multi-Factor Authentication (MFA) system, exposing...
A sophisticated malware strain dubbed “IOCONTROL” has emerged as a significant threat to industrial control systems (ICS)...
Kaspersky Labs has unveiled research on the return of “The Mask,” also known as Careto, a legendary...
Deep Instinct Security Researcher Eliran Nissan has uncovered a new and potent lateral movement technique, “DCOM Upload...
Over 15,000 Sites at Risk: Woffice WordPress Theme Vulnerabilities Could Lead to Full Site Takeovers
Over 15,000 Sites at Risk: Woffice WordPress Theme Vulnerabilities Could Lead to Full Site Takeovers
Patchstack has disclosed two critical vulnerabilities in the widely used Woffice WordPress theme, a premium intranet/extranet solution...
Akamai security researcher Tomer Peled has unveiled a novel attack technique exploiting Microsoft’s legacy UI Automation framework,...
The internet is one of the marvels of the century. It allows us to stay connected at...
Dell has released a critical security update to address multiple vulnerabilities impacting several of its enterprise products,...
A critical vulnerability in PDQ Deploy, a software deployment service used by system administrators, has been highlighted...
A significant increase in brute-force attacks targeting outdated and misconfigured Citrix NetScaler devices has been observed in...
A newly discovered vulnerability in Apache Superset, a popular open-source business intelligence platform, could allow attackers to...
Researchers at the Lookout Threat Lab have uncovered two sophisticated Android spyware families, BoneSpy and PlainGnome, attributed...
A serious vulnerability in the Hunk Companion plugin for WordPress, tracked as CVE-2024-11972 (CVSS 9.8), has been...
The Symantec Threat Hunter Team has uncovered a sophisticated cyber campaign targeting high-profile organizations in Southeast Asia....
Rapid7 Labs and its Managed Detection and Response (MDR) team uncovered a sophisticated modular Java-based Remote Access...
A federal court in St. Louis, Missouri, has indicted 14 nationals of the Democratic People’s Republic of...
A detailed report from Group-IB reveals a sophisticated global phishing campaign targeting employees across 30 companies in...