Anthropic recently suffered a complete network blackout under a stringent United States government ban. Fortunately, their formidable...
Do Son
Do Son is the Founder and Editor of SecurityOnline.info. Working in cybersecurity since 2013, he reports on vulnerabilities, malware, and emerging threats, providing timely analysis to help organizations and individuals stay ahead of evolving risks.
TL;DR Researchers publicly disclosed a libssh2 vulnerability tracked as CVE-2026-58050. The flaw lets a malicious SSH server...
TL;DR Security experts disclosed a high-severity flaw (CVE-2026-11940) in Python. A critical CPython tarfile vulnerability allows directory...
At a Glance Actor or Group: Unnamed digital piracy networks Activity Type: Copyright infringement Targets or Victims:...
At a Glance Actor / group UNC5792 (linked to FSB Border Guards); UNC4221 (Russian military) Activity Phishing...
At a glance Malware Family: Backdoor.Mistic Threat Actor: Suspected Woodgnat (aka KongTuke) Target or Victims: Insurance, education,...
At least 39 rival malware families appear on a kill list used by a new Langflow cryptominer...
At a glance Actor: Unknown threat actor Activity Type: Privilege escalation and zero-day exploitation Targets: Service provider...
In a maneuver reminiscent of Mozilla Firefox’s legacy support strategy, Microsoft recently, and somewhat quietly, updated its...
At a glance Actor: Suspected Chinese-speaking threat actor (low confidence) Activity Type: Malware distribution and silent RMM...
At a glance Actor: Suspected cybercriminal networks (e.g., “Supplier Carl” and “Homborg Online Handel”) Activity Type: Fake...
TL;DR A critical FOSSBilling template injection flaw, CVE-2026-28496, carries a CVSS score of 9.4. Attackers can read...
At a Glance Malware family OXLOADER (loader) delivering CASTLESTEALER (.NET infostealer) Threat actor Unnamed; suspected Russian-speaking and...
At a Glance Malware family Remcos RAT (final payload), via a multi-stage .NET loader chain Threat actor...
TL;DR The Python Software Foundation fixed a python.org authentication bypass on February 24, 2026. The flaw sat...
The ubiquitous open-source utility curl, currently installed on over 30 billion devices worldwide, officially launched its v8.21.0...
Since yesterday, numerous netizens have posted on X claiming to spot Fable 5 within the Claude interface;...
Apple briefly took its online store offline last night, then restored access soon after. The main goal...
TL;DR The CISA KEV Catalog gained two new entries on June 25, 2026. Both additions cite evidence...
TL;DR Gogs patched three critical remote code execution flaws in version 0.14.3. Each Gogs RCE vulnerability scores...
TL;DR Google shipped a Chrome security update on June 10, 2026. The release moves the Stable channel...
TL;DR JFrog researchers discovered a critical heap out-of-bounds write in the FFmpeg MagicYUV decoder. The flaw is...