News Archives • Page 100 of 631 • Daily CyberSecurity

CVE-2025-67732: Dify Patch Fixes High-Severity Plaintext API Key Exposure Dify API Key Exposure, LLM Security Dify Information Disclosure, LLM Security

Dify API Key Exposure, LLM Security Dify Information Disclosure, LLM Security

CVE-2025-67732: Dify Patch Fixes High-Severity Plaintext API Key Exposure

Ddos January 7, 2026

Dify, the popular open-source platform used by developers to build Large Language Model (LLM) applications and RAG...

n8n Sandbox Escape: How CVE-2025-68668 Turns Workflows into Weapons n8n Vulnerability CVE-2025-68668

n8n Sandbox Escape: How CVE-2025-68668 Turns Workflows into Weapons

Ddos January 6, 2026

A critical vulnerability in the popular workflow automation platform n8n has been dissected in a new analysis...

The Robotics Revolution: NVIDIA Unveils Physical AI and the Jetson T4000 at CES 2026 NemoClaw Prompt Injection AI Sandbox Security NVIDIA Physical AI CES 2026, Jetson T4000 robotics hardware NVIDIA AI Security, Isaac Lab RCE NVIDIA Driver RCE, CVE-2025-23309 NVIDIA Triton, AI Server Vulnerabilities CVE-2023-31029 & CVE-2023-31024 - CVE‑2024-0112

NemoClaw Prompt Injection AI Sandbox Security NVIDIA Physical AI CES 2026, Jetson T4000 robotics hardware NVIDIA AI Security, Isaac Lab RCE NVIDIA Driver RCE, CVE-2025-23309 NVIDIA Triton, AI Server Vulnerabilities CVE-2023-31029 & CVE-2023-31024 - CVE‑2024-0112

The Robotics Revolution: NVIDIA Unveils Physical AI and the Jetson T4000 at CES 2026

Ddos January 6, 2026

At CES 2026 this year, NVIDIA shifted its focus decisively from the digital realm of generative AI...

The Rubin Era: NVIDIA’s Next-Gen AI Factory Chips Enter Mass Production NVIDIA Rubin GPU mass production, Vera CPU Olympus cores

The Rubin Era: NVIDIA’s Next-Gen AI Factory Chips Enter Mass Production

Ddos January 6, 2026

Following the Blackwell architecture, NVIDIA formally announced at CES 2026 that its next-generation AI computing platform, codenamed...

The Reasoning Car: NVIDIA Launches Alpamayo to Give AI Vehicles Human Logic NVIDIA Alpamayo open source AI, Mercedes-Benz CLA NVIDIA DRIVE AV

The Reasoning Car: NVIDIA Launches Alpamayo to Give AI Vehicles Human Logic

Ddos January 6, 2026

At CES 2026 this year, NVIDIA once again demonstrated its technological prowess in the autonomous driving arena,...

The Desk-Side Revolution: NVIDIA’s DGX Spark Update Delivers 2.5× AI Speed Boost NVIDIA DGX Spark CES 2026, RTX 5090 AI collaboration

The Desk-Side Revolution: NVIDIA’s DGX Spark Update Delivers 2.5× AI Speed Boost

Ddos January 6, 2026

As downloads of open-source AI models and frameworks are expected to surge explosively in 2026, NVIDIA announced...

The Open Door: Critical 9.8 Severity Flaw in Harvester Lets Hackers Hijack New Servers Harvester HCI, CVE-2025-62877

The Open Door: Critical 9.8 Severity Flaw in Harvester Lets Hackers Hijack New Servers

Ddos January 6, 2026

Harvester, the open-source hyperconverged infrastructure (HCI) solution built on Kubernetes, has hit a critical bug. A new...

CVE-2025-68428: Critical Flaw in jsPDF Library Allows Server-Side File Theft

Ddos January 6, 2026

A critical vulnerability has been discovered in jsPDF, one of the most popular JavaScript libraries for generating...

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

Aiohttp Patches Seven Vulnerabilities Including High-Severity DoS Risks

Ddos January 6, 2026

Maintainers of aiohttp, the popular asynchronous HTTP client/server framework for Python, have released a sweeping security update...

Apache SIS Patch Blocks XML Attack That Leaks Server Files Apache SIS, CVE-2025-68280

Apache SIS Patch Blocks XML Attack That Leaks Server Files

Ddos January 6, 2026

The Apache Software Foundation has issued a security advisory for the Apache Spatial Information System (SIS), a...

CVE-2025-66518: High-Severity Flaw in Apache Kyuubi Exposes Local Server Files Apache Kyuubi, CVE-2025-66518

CVE-2025-66518: High-Severity Flaw in Apache Kyuubi Exposes Local Server Files

Ddos January 6, 2026

Apache Kyuubi, the distributed gateway designed to provide secure, serverless SQL access to massive data lakes, has...

Attacking from Within: How Adobe ColdFusion Admins Can Weaponize Remote Shares ColdFusion Archive (CAR), UNC Path Exploitation

Attacking from Within: How Adobe ColdFusion Admins Can Weaponize Remote Shares

Ddos January 6, 2026

Adobe has issued critical updates for its ColdFusion platform after security researcher Brian Reilly uncovered a clever...

MediaTek Kicks Off 2026 with Major Security Overhaul for Mobile Chipsets MediaTek Modem Vulnerabilities, January 2026 Security Bulletin MediaTek Vulnerabilities, Chipset Security CVE-2024-20103 & CVE-2024-20100 - CVE-2024-20154 - February 2025 Product Security Bulletin

MediaTek Kicks Off 2026 with Major Security Overhaul for Mobile Chipsets

Ddos January 6, 2026

MediaTek has kicked off the new year with a critical security bulletin, releasing patches for a slew...

macOS Developers in the Crosshairs: GlassWorm’s Wave 4 Exploits VS Code to Trojanize Hardware Wallets GlassWorm Wave 4, macOS Supply Chain Attack

GlassWorm Wave 4, macOS Supply Chain Attack

macOS Developers in the Crosshairs: GlassWorm’s Wave 4 Exploits VS Code to Trojanize Hardware Wallets

Ddos January 6, 2026

The resilient “GlassWorm” threat actor, known for embedding malicious code into Visual Studio Code extensions, has returned...

Researcher Details Stack Buffer Overflow Flaw in Net-SNMP snmptrapd with PoC Net-SNMP, CVE-2025-68615

Researcher Details Stack Buffer Overflow Flaw in Net-SNMP snmptrapd with PoC

Ddos January 6, 2026

A critical vulnerability in the widely used Net-SNMP suite has been uncovered, exposing a dangerous logic flaw...

New TCC Bypass (CVE-2025-43530) Exposes macOS to Unchecked Automation macOS TCC Bypass, CVE-2025-43530

New TCC Bypass (CVE-2025-43530) Exposes macOS to Unchecked Automation

Ddos January 6, 2026

Apple’s privacy fortress, the Transparency, Consent, and Control (TCC) framework, has been breached once again. Security researcher...

Microsoft Developer Account Suspension Microsoft Web Activation Portal Driver Signing Account Suspension Windows 11 Smart App Control Windows 11 SE end of support, Microsoft education hardware pivot Microsoft Product Activation Portal 2025, Windows telephone activation discontinued Windows Update Naming, Microsoft Update Microsoft earnings, OpenAI valuation VBScript deprecation Microsoft Pakistan, Office Closure Microsoft job cuts Microsoft Own AI Models

The Chromebook Killer Fails: Microsoft to Kill Windows 11 SE in 2026

Ddos January 6, 2026

Microsoft has now confirmed that support for Windows 11 SE will be discontinued at the end of...

Riot Games Login Outage Traced to Expired SSL Certificate Riot Games, Certificate Expiration

Riot Games Login Outage Traced to Expired SSL Certificate

Ddos January 5, 2026

The well-known game developer Riot Games recently suffered another widespread service disruption after failing to renew an...

Fragged Files: Critical Zero-Day Hits Quake III Arena Engines via Directory Traversal Quake III Arena, Zero-Day Vulnerability

Fragged Files: Critical Zero-Day Hits Quake III Arena Engines via Directory Traversal

Ddos January 5, 2026

The Quake III Arena engine, a cornerstone of FPS history open-sourced by id Software, has been hit...

Pinterest AI layoffs 2026, Pinterest workforce reduction 15% OpenAI Pinterest acquisition 2026, multimodal AI training data Pinterest Assistant, AI Search, Visual Discovery

The Scrapbook Strategy: Why OpenAI is Betting $17 Billion on Pinterest

Ddos January 5, 2026

As 2026 begins, rumors of consolidation in the AI market show no sign of abating. According to...

Critical Alert 1 Active Exploit Detected Today