Atlassian has released a security update addressing CVE-2024-21678 (CVSS 8.5), a high-severity stored cross-site scripting (XSS) vulnerability...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
Creates, a popular online retailer of hair styling tools, has suffered a significant data breach that exposed...
A serious vulnerability jeopardizes the security of WordPress websites using the popular RSS Aggregator by the Feedzy...
Open-source code is the backbone of modern software, but it’s becoming a prime target for cybercriminals. ReversingLabs...
A recent discovery by Sonar’s Vulnerability Research Team has exposed a major security issue within the popular...
The RansomHouse ransomware group exemplifies the sophisticated, profitable, and adaptable nature of modern cyber extortion campaigns. Emerging...
VMware has released an urgent security advisory regarding two critical vulnerabilities within its now-deprecated Enhanced Authentication Plug-in...
The Lazarus Group, a skilled North Korean state-sponsored hacking collective, continues to aggressively target entities in the...
In a chilling development, ConnectWise issued a critical security advisory on February 19, 2024, exposing two gaping...
A recently disclosed vulnerability in Spring Security (CVE-2024-22234, CVSS 7.4) could lead to unauthorized access within affected...
Recent disclosures have highlighted multiple security vulnerabilities within the Apache DolphinScheduler workflow scheduling platform. These vulnerabilities demand...
Since September 2023, security researchers from Cisco Talos have observed a sharp increase in malicious emails designed...
Check Point’s in-depth threat analysis illuminates the ongoing operations of the advanced persistent threat (APT) group Earth...
The cybersecurity landscape has a new and potent threat to consider: AsukaStealer. This Malware-as-a-Service (MaaS), identified by...
Zyxel’s recent security advisory spotlights multiple vulnerabilities present in select firewall and access point models. Failure to...
PostgreSQL databases are a popular choice for developers, but a recently discovered vulnerability (CVE-2024-1597, CVSS 10) highlights...
Autodesk AutoCAD, a widely used CAD software across engineering, architecture, and manufacturing industries, has been found to...
A flaw (CVE-2024-0646, CVSS 7.8) discovered in the Linux Kernel Transport Layer Security (kTLS) could have been...
The notorious ransomware Lockbit has been targeted by an international coalition of law enforcement agencies. Currently, both...
Recently, Intel disclosed a total of 34 security vulnerabilities, encompassing 32 software issues and 2 firmware issues....
A significant security vulnerability (CVE-2024-22030) has been identified in Rancher, the popular Kubernetes management platform, and its...
A proof-of-concept (PoC) was disclosed for a severe design flaw (CVE-2023-50387) in Domain Name System Security Extensions...