Do Son
A new report from the Office of Inspector General (OIG) of the U.S. Environmental Protection Agency (EPA)...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
The Tenable Security Response Team has uncovered critical details about Volt Typhoon, a state-sponsored Advanced Persistent Threat...
A newly discovered vulnerability in Apache NiFi could inadvertently expose sensitive parameter values in debug logs, potentially...
In a detailed report, the BlackBerry Research and Intelligence Team has revealed a highly targeted cyber espionage...
A recent analysis by security researcher Kirill Boychenko at Socket has unveiled a sophisticated npm malware campaign...
Hunt researchers have discovered a novel deployment of XenoRAT, an open-source remote access tool (RAT), leveraging Excel...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding two critical vulnerabilities...
A newly discovered vulnerability in popular remote desktop software AnyDesk could allow attackers to uncover users’ IP...
Security researcher Jeff Kieschnick from LevelBlue uncovered the stealthy tactics of a Potentially Unwanted Application (PUA) masquerading...
A high-severity vulnerability has been discovered in Kubernetes, potentially allowing attackers to execute arbitrary commands outside of...
The U.S. Department of Justice announced charges against five individuals accused of orchestrating a sophisticated phishing scheme...
Versa Networks has issued a security advisory addressing a critical vulnerability (CVE-2024-42450) affecting its Versa Director software....
In a detailed report by Trend Micro, the emergence of a new LODEINFO malware campaign has been...
The Common Weakness Enumeration (CWE) Top 25 list for 2024 has been released, and it provides a...
Security researcher Snoolie K has published an in-depth analysis of a significant security flaw in WorkflowKit, which...
Recently, Palo Alto Networks has released an in-depth analysis of FrostyGoop, also known as BUSTLEBERM, a sophisticated...
CrowdStrike has revealed a new China-nexus state-sponsored adversary tracked as LIMINAL PANDA, which has been systematically targeting...
Veritas has released a security advisory regarding a critical remote code execution (RCE) vulnerability affecting multiple versions...
Aqua Nautilus security researchers have uncovered a novel attack vector where threat actors exploit misconfigured servers, particularly...
Ruckus APs running specific software versions are vulnerable to unauthenticated remote code execution attacks. Ruckus Networks has...