Malware

NVIDIA: “No Backdoors, No Kill Switches,” Rejecting Calls for Government Hardware Controls NVIDIA GPU Security CUDA-Q Vulnerability NVIDIA Apex Vulnerability AI Infrastructure Security NVIDIA Cumulus Linux CVE-2025-33179 NVIDIA Arm divestment NVIDIA DGX Spark, CVE-2025-33187 NVIDIA Isaac-GROOT, Code Injection Megatron-LM Vulnerability, AI Code Injection NVIDIA China NVIDIA GPUs, Hardware Kill Switches NVIDIA Megatron-LM, LLM Vulnerabilities NVIDIA Base Command Manager - CVE-2024-0138

NVIDIA GPU Security CUDA-Q Vulnerability NVIDIA Apex Vulnerability AI Infrastructure Security NVIDIA Cumulus Linux CVE-2025-33179 NVIDIA Arm divestment NVIDIA DGX Spark, CVE-2025-33187 NVIDIA Isaac-GROOT, Code Injection Megatron-LM Vulnerability, AI Code Injection NVIDIA China NVIDIA GPUs, Hardware Kill Switches NVIDIA Megatron-LM, LLM Vulnerabilities NVIDIA Base Command Manager - CVE-2024-0138

NVIDIA: “No Backdoors, No Kill Switches,” Rejecting Calls for Government Hardware Controls

Do Son August 7, 2025

As the global reliance on high-performance computing deepens, NVIDIA GPUs have become the invisible engines powering everything...

BYOVD Attack: A New AV Killer Exploits a Legitimate Driver to Neutralize Defenses for MedusaLocker Ransomware AV Killer, BYOVD Attack

AV Killer, BYOVD Attack

BYOVD Attack: A New AV Killer Exploits a Legitimate Driver to Neutralize Defenses for MedusaLocker Ransomware

Do Son August 7, 2025

A recent incident response operation in Brazil has revealed a stealthy and destructive threat abusing the trusted...

The WhatsApp Kill Switch: New npm Packages Use Developer’s Phone Number to Wipe Systems

WhatsApp antitrust API probe India SIM-Binding Mandate Messaging App KYC WhatsApp DMA Interoperability BirdyChat Haiket Denmark Social Media Ban CVE-2025-55177 WhatsApp vulnerability, zero-click flaw npm Malware, System Wipe WhatsApp Windows App, WebView2 Downgrade WhatsApp Ban, US House NSO WhatsApp, Pegasus Spyware WhatsApp iPad iPadOS app

The WhatsApp Kill Switch: New npm Packages Use Developer’s Phone Number to Wipe Systems

Do Son August 7, 2025

Socket’s Threat Research Team has uncovered two malicious npm packages—naya-flore and nvlore-hsc—designed to target developers building WhatsApp...

Cryptocurrency Scams: How Fake Binance Ads Steal Your Data Malware, Cryptocurrency

Malware, Cryptocurrency

Cryptocurrency Scams: How Fake Binance Ads Steal Your Data

Do Son August 7, 2025

AhnLab Security Intelligence Center (ASEC) has uncovered a sophisticated multi-stage malware campaign that targets cryptocurrency users through...

The Candiru Files: New Infrastructure Exposes Stealthy Surveillance Clusters in Hungary, Saudi Arabia, and Indonesia Candiru Spyware, DevilsTongue

Candiru Spyware, DevilsTongue

The Candiru Files: New Infrastructure Exposes Stealthy Surveillance Clusters in Hungary, Saudi Arabia, and Indonesia

Do Son August 7, 2025

In a reminder of the persistent threat posed by commercial spyware vendors, Insikt Group has uncovered new...

CERT-UA Exposes UAC-0099: New Backdoor Toolkit Targets Ukraine’s Defense with Phishing & Stealthy Malware UAC-0099, Ukraine Cyberattack

UAC-0099, Ukraine Cyberattack

CERT-UA Exposes UAC-0099: New Backdoor Toolkit Targets Ukraine’s Defense with Phishing & Stealthy Malware

Do Son August 7, 2025

In a concerning escalation of cyber aggression, Ukraine’s National Cyber Security Incidents Response Team (CERT-UA) has uncovered...

New Android Malware Impersonates Indian Banks to Steal Data & Secretly Mine Monero Android Malware, Cryptojacking

Android Malware, Cryptojacking

New Android Malware Impersonates Indian Banks to Steal Data & Secretly Mine Monero

Do Son August 5, 2025

The McAfee Mobile Research Team has uncovered a sophisticated Android malware campaign that poses a dual threat...

PlayPraetor: New Android RAT Infects 11,000+ Devices with Real-Time On-Device Fraud Android RAT, PlayPraetor

Android RAT, PlayPraetor

PlayPraetor: New Android RAT Infects 11,000+ Devices with Real-Time On-Device Fraud

Do Son August 5, 2025

A large-scale cyber fraud campaign is sweeping across continents, exploiting Android devices. Security researchers at Cleafy have...

New PXA Stealer Campaign Hits 62 Countries with Stealthy DLL Sideloading and Telegram Exfiltration PXA Stealer, Infostealer

PXA Stealer, Infostealer

New PXA Stealer Campaign Hits 62 Countries with Stealthy DLL Sideloading and Telegram Exfiltration

Do Son August 5, 2025

A new report by SentinelLABS and Beazley Security unveils an expansive and rapidly evolving infostealer operation powered...

The Evolution of Evasion: Raspberry Robin Malware Upgrades with New Encryption & UAC Bypass Exploit Raspberry Robin, Malware Evasion

Raspberry Robin, Malware Evasion

The Evolution of Evasion: Raspberry Robin Malware Upgrades with New Encryption & UAC Bypass Exploit

Do Son August 5, 2025

ThreatLabz has released a fresh technical update on Raspberry Robin, the elusive USB-propagated malware also known as...

APT37 Escalates Cyber-Espionage on South Korea: New RoKRAT Backdoor Uses Stealthy LNK Files & Steganography APT37, RoKRAT Malware

APT37, RoKRAT Malware

APT37 Escalates Cyber-Espionage on South Korea: New RoKRAT Backdoor Uses Stealthy LNK Files & Steganography

Do Son August 4, 2025

The North Korea-linked threat actor APT37, known for its persistent cyberespionage campaigns in South Korea and beyond,...

Interlock Ransomware Strikes: eSentire Exposes Multi-Stage Payload and ClickFix Social Engineering Interlock Ransomware, ClickFix Technique

Interlock Ransomware, ClickFix Technique

Interlock Ransomware Strikes: eSentire Exposes Multi-Stage Payload and ClickFix Social Engineering

Do Son August 2, 2025

The eSentire Threat Response Unit (TRU) exposed a detailed and technically sophisticated ransomware campaign orchestrated by the...

FunkSec Ransomware Decryptor Released Free: Victims Can Now Recover Files After Group Goes Dormant FunkSec Decryptor, Ransomware Recovery

FunkSec Decryptor, Ransomware Recovery

FunkSec Ransomware Decryptor Released Free: Victims Can Now Recover Files After Group Goes Dormant

Do Son August 1, 2025

The cybersecurity firm Gen Digital—formerly known as Symantec and Norton—has recently submitted the decryption key and tool...

GOLD BLADE Unleashes RedLoader with Novel Attack Chain: LNK Files + WebDAV + DLL Sideloading Evades Detection RedLoader, DLL Sideloading

RedLoader, DLL Sideloading

GOLD BLADE Unleashes RedLoader with Novel Attack Chain: LNK Files + WebDAV + DLL Sideloading Evades Detection

Do Son July 31, 2025

Sophos analysts have uncovered a newly combined infection technique used by the GOLD BLADE cybercriminal group to...

NOVABLIGHT: New NodeJS Infostealer-as-a-Service Unmasked, Fueled by Fake Games & Disguised as “Educational” NOVABLIGHT, Infostealer MaaS

NOVABLIGHT, Infostealer MaaS

NOVABLIGHT: New NodeJS Infostealer-as-a-Service Unmasked, Fueled by Fake Games & Disguised as “Educational”

Do Son July 31, 2025

Elastic Security Labs has exposed the inner workings of NOVABLIGHT, a highly modular, NodeJS-based Malware-as-a-Service (MaaS) information...

Gunra Ransomware Expands to Linux: New Variant Unleashes 100-Thread Encryption & Stealthy Tactics Gunra Ransomware, Linux Ransomware

Gunra Ransomware, Linux Ransomware

Gunra Ransomware Expands to Linux: New Variant Unleashes 100-Thread Encryption & Stealthy Tactics

Do Son July 30, 2025

Trend Micro has issued a spotlight on the evolving Gunra ransomware, which has extended its reach to...

0bj3ctivityStealer: Stealthy Info-Stealer Uses Steganography & PowerShell to Evade Detection Obj

Obj

0bj3ctivityStealer: Stealthy Info-Stealer Uses Steganography & PowerShell to Evade Detection

Do Son July 30, 2025

A recent analysis from the Trellix Advanced Research Center (ARC) has unveiled a sophisticated and stealthy info-stealer...

Raven Stealer: New MaaS Infostealer Plunders Data via Reflective Process Hollowing & Telegram Exfil Raven Stealer, MaaS Infostealer

Raven Stealer, MaaS Infostealer

Raven Stealer: New MaaS Infostealer Plunders Data via Reflective Process Hollowing & Telegram Exfil

Do Son July 30, 2025

A recent in-depth analysis from Cyfirma has shed light on the alarming capabilities of Raven Stealer, a...

RedHook Android Banking Trojan Targets Vietnamese Users with Advanced Phishing & Full Device Takeover Android Banking Trojan, RedHook Malware

Android Banking Trojan, RedHook Malware

RedHook Android Banking Trojan Targets Vietnamese Users with Advanced Phishing & Full Device Takeover

Do Son July 29, 2025

In a revelation by Cyble Research and Intelligence Labs (CRIL), a powerful new Android banking trojan dubbed...

XWorm 6.0: New Variant Uses AMSI Bypass & Critical Process Trick to Evade Detection and Crash Systems

XWorm 6.0: New Variant Uses AMSI Bypass & Critical Process Trick to Evade Detection and Crash Systems

Do Son July 29, 2025

According to the latest report from Netskope Threat Labs, a new version of the XWorm malware—XWorm 6.0—has...

🚨

Receive alerts for vulnerabilities being exploited in the wild.

⚡

Get notified instantly when a Proof of Concept (PoC) exploit is published.

🔍

Access critical info on vulnerabilities even when marked as "RESERVED".

🧠

Insights powered by decades of expertise and global intelligence sources.

🎯

Customize alerts with up to 10 keywords for your specific tech stack.

📊

Export the raw CVE database for SIEM integration and reporting.

CVE-2026-42208
LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. From version...
CVE-2018-1273CVSS 9.8
Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a...
CVE-2026-20230CVSS 8.6
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified...
CVE-2026-12569
A critical remote code execution (RCE) vulnerability has been reported in PTC Windchill PDMlink and PTC FlexPLM. The...
CVE-2026-28496CVSS 9.4
FOSSBilling is a free, open-source billing and client management system. Versions prior to 0.8.0 have a Server-Side Template...
CVE-2026-21509CVSS 7.8
Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a...
CVE-2026-34908CVSS 10.0
A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi...
CVE-2026-34909CVSS 10.0
A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS...
CVE-2026-34910CVSS 10.0
A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi...
CVE-2025-67038CVSS 9.8
An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The HTTP RPC module executes a shell command to write...