SentinelLabs and ClearSky Cyber Security have been tracking an intensive influence operation spreading propaganda and disinformation since...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
Research from Lab52 has uncovered a recent Turla campaign exhibiting novel tactics and a customized variant of...
A critical unauthenticated SQL Injection vulnerability was found in Ultimate Member, a popular WordPress plugin boasting over...
Sophos X-Ops has spotlighted a concerning trend in the exploitation of vulnerabilities within ConnectWise ScreenConnect installations, a...
In an era where digital transactions are ubiquitous, the significance of safeguarding these interactions cannot be overstated....
A high-severity vulnerability, designated CVE-2024-26582, has been discovered within the Transport Layer Security (TLS) subsystem of the...
A patched vulnerability within Apple’s Shortcuts automation framework presents a substantial risk to macOS and iOS devices....
VOLTZITE, a threat group known for persistent targeting of global critical infrastructure sectors, continues to refine its...
The notorious 8220 Gang has resurfaced, targeting cloud infrastructure in a campaign demonstrating significant advancements in their...
Researchers at Talos and CERT.NGO have pulled back the curtain on new malicious components deployed by the...
A recent investigation by Trustwave SpiderLabs’ Email Security team has uncovered a sophisticated Phishing-as-a-Service (PaaS) platform known...
Security researchers have recently disclosed three vulnerabilities affecting Apache Answer versions up to 1.2.1. These vulnerabilities could...
Security experts at the AhnLab Security Intelligence Center (ASEC) have recently uncovered a malware distribution campaign targeting...
Security researchers at Aqua Nautilus have uncovered a sophisticated campaign exploiting misconfigurations and vulnerabilities in Apache Hadoop...
Developers using the Fiber Go web framework should immediately address a critical vulnerability in the CORS middleware....
Carpet-bombing DDoS attacks are a growing concern for network operators. Their ability to circumvent traditional defenses and...
A critical security vulnerability has been exposed in Progress Kemp LoadMaster, leaving your network infrastructure at grave...
OpenVPN has released version 2.6.9 for Windows, Mac, and Linux, addressing a severe privilege escalation vulnerability (CVE-2023-7235)....
In September 2023, the infamous Russian-linked cyber-espionage group APT29 flexed its muscle again, this time targeting embassies...
In alarming news from February 2024, ConnectWise, a prevalent provider of remote desktop software, disclosed severe security...
ESET researchers have meticulously dissected a complex, ongoing influence operation named ‘Operation Texonto.’ This campaign, exhibiting strong...
The Spring Framework, a cornerstone of countless enterprise Java applications, recently revealed a significant vulnerability (CVE-2024-22243). This...