TL;DR A new ProFTPD ACL bypass, CVE-2026-35025, scores 8.6 on CVSS. It lets a logged-in FTP user...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
TL;DR Plone patched three critical flaws across two add-on packages. The worst is a Plone RCE vulnerability...
TL;DR Adobe shipped fixes for 11 Adobe ColdFusion vulnerabilities on 30 June 2026. Six earn a perfect...
TL;DR Cloud Software Group patched six NetScaler vulnerabilities in NetScaler ADC and NetScaler Gateway. Three rate CVSS...
TL;DR NLnet Labs recently released version 4.14.3 of the Name Server Daemon (NSD) to patch four severe...
TL;DR NVIDIA patched several severe vulnerabilities across its AI platforms. The most critical flaw is a 9.8...
At a glance Malware Family: INC Ransomware Threat Actor: Unknown INC affiliate (Suspected) Targets: APAC manufacturing, Japanese...
New Model Demands Extra Steps Recently, rumors grew that Anthropic will launch its Claude Fable 5 model...
If you often use the Gemini app to generate images, Google’s latest update will make AI-created pictures...
At a glance Actor: Unknown threat actor Activity type: Phishing and multi-stage intrusion Targets: Hospitality and hotel...
At a glance Malware Family: STOCKSTAY Threat Actor: Turla (Confirmed: Center 16 of Russia’s FSB) Targets: Ukrainian...
At a glance Actor or Group: CL-STA-1062 (suspected Chinese-speaking actors) Activity Type: Cyber espionage and network infiltration...
As generative AI gradually evolves toward “agentic AI” — systems that can carry out tasks on their...
Recently, the AI-driven coding tool Cursor launched an iOS beta version. Fundamentally, this mobile application solves a...
India’s Tata Group suffered a hacker attack earlier. Its subsidiary, Tata Electronics, assembles products for Apple, so...
To strengthen user privacy further, WhatsApp — Meta’s messaging app — has announced that it will formally...
TL;DR WSO2 patched seven vulnerabilities across its API platform, including WSO2 API Manager, in June 2026. The...
TL;DR Synology fixed three vulnerabilities in Synology MailPlus Server, the email package for its NAS devices. The...
On 29 June 2026, CISA added CVE-2026-48558 to its Known Exploited Vulnerabilities catalog. The flaw is a...
TL;DR Developers patched six high-severity wolfSSL security vulnerabilities in the embedded SSL library. These flaws include an...
TL;DR Four critical security flaws currently impact all versions of the EVoke Systems Charging Station Management System....
Whether you are an admin, an MSP for a business unit, or an individual – migrating user...