Security teams are being urged to move quickly following the disclosure of a critical Remote Code Execution...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
In a major security overhaul, pgAdmin, the world’s most popular open-source administration platform for PostgreSQL, has released...
In a critical discovery for Kubernetes-based database environments, researchers have unveiled a severe privilege escalation and Remote...
Exploited in the Wild: Critical OWA Spoofing Flaw (CVE-2026-42897) Hits On-Premises Exchange Servers
Exploited in the Wild: Critical OWA Spoofing Flaw (CVE-2026-42897) Hits On-Premises Exchange Servers
Microsoft has issued an urgent warning for organizations running on-premises email infrastructure. A newly disclosed vulnerability in...
Google has unleashed a major security update for the Chrome Stable channel, addressing a staggering 79 security...
Cisco Talos has issued a high-priority warning regarding the active, in-the-wild exploitation of several critical vulnerabilities targeting...
The web infrastructure world received a major wake-up call today as nginx-1.30.1 was released to address a...
Palo Alto Networks has released a series of important security updates addressing multiple vulnerabilities across its PAN-OS...
This week, Google unveiled the Googlebook laptop series, a collaborative venture with various OEMs. This hardware lineage...
Update Alert: Windows 11 KB5089549 Triggers Widespread Network Degradation and Installation Failures
Update Alert: Windows 11 KB5089549 Triggers Widespread Network Degradation and Installation Failures
This week, Microsoft disseminated the routine cumulative update KB5089549 for Windows 11 version 25H2. Consistent with several...
The threat intelligence team at CYFIRMA has uncovered a sophisticated multi-stage intrusion campaign. Attackers are currently leveraging...
In a significant security disclosure, JPCERT/CC has issued an advisory regarding a critical stack-based buffer overflow vulnerability...
In a major discovery for the WordPress ecosystem, PRISM, Wordfence Threat Intelligence’s autonomous vulnerability research platform, has...
In a significant revelation for the hardware security world, AMD has identified a vulnerability targeting its Zen...
In a major move to secure its DevOps platform, GitLab has released important security versions for both...
Ivanti has issued an urgent security update for its Xtraction platform to address a critical vulnerability. Carrying...
Time-series data is the backbone of countless modern applications, from financial tickers to IoT monitoring. However, a...
The open-source firewall community is on high alert today after critical security vulnerabilities in OPNsense were dragged...
In a critical security alert for the PHP community, Nils Adermann, Co-Creator of Composer, has issued an...
Security researcher Zhenpeng (Leo) Lin of depthfirst has unveiled a critical, 18-year-old vulnerability lurking within NGINX. The...
The Linux security landscape has been rocked by the public disclosure of Fragnesia, a universal local privilege...
One of the most common sources of confusion among defense contractors preparing for CMMC certification is also...