News Archives • Page 202 of 632 • Daily CyberSecurity

The Candiru Files: New Infrastructure Exposes Stealthy Surveillance Clusters in Hungary, Saudi Arabia, and Indonesia Candiru Spyware, DevilsTongue

The Candiru Files: New Infrastructure Exposes Stealthy Surveillance Clusters in Hungary, Saudi Arabia, and Indonesia

Ddos August 7, 2025

In a reminder of the persistent threat posed by commercial spyware vendors, Insikt Group has uncovered new...

CERT-UA Exposes UAC-0099: New Backdoor Toolkit Targets Ukraine’s Defense with Phishing & Stealthy Malware UAC-0099, Ukraine Cyberattack

CERT-UA Exposes UAC-0099: New Backdoor Toolkit Targets Ukraine’s Defense with Phishing & Stealthy Malware

Ddos August 7, 2025

In a concerning escalation of cyber aggression, Ukraine’s National Cyber Security Incidents Response Team (CERT-UA) has uncovered...

The AK47 Project: New Report Ties Storm-2603 to LockBit and Warlock Ransomware, SharePoint Exploits

Ddos August 7, 2025

In a revelation, Unit 42 has exposed a financially motivated cyber threat actor cluster, dubbed CL-CRI-1040, with...

VirtualBox VM Escape: Integer Overflow Flaw Allows Full Host Takeover, PoC Published VirtualBox Escape, Integer Overflow

VirtualBox VM Escape: Integer Overflow Flaw Allows Full Host Takeover, PoC Published

Ddos August 6, 2025

Security researcher Juan Jose Lopez Jaimez published the technical details and proof-of-concept exploit code for a vulnerability...

Elon Musk Finally Open Sources Grok 2, Rekindling Rivalry with OpenAI’s New Open-Weight Models Musk $134B OpenAI lawsuit, xAI Grok deepfake cease and desist xAI Series E $20 billion funding, Grok 5 NVIDIA supercomputer trade secret theft, xAI lawsuit Grok 2, Open Source AI Grok AI, xAI Investment xAI, MacroHard

Musk $134B OpenAI lawsuit, xAI Grok deepfake cease and desist xAI Series E $20 billion funding, Grok 5 NVIDIA supercomputer trade secret theft, xAI lawsuit Grok 2, Open Source AI Grok AI, xAI Investment xAI, MacroHard

Elon Musk Finally Open Sources Grok 2, Rekindling Rivalry with OpenAI’s New Open-Weight Models

Ddos August 6, 2025

Recently, OpenAI announced the open-sourcing of the GPT-OSS-20B and GPT-OSS-120B models—large language models specifically trained for open-source...

JetBrains Unveils Kineto: A New No-Code Platform to Turn Ideas Into Apps in 20 Minutes JetBrains Kineto, No-Code Platform

JetBrains Unveils Kineto: A New No-Code Platform to Turn Ideas Into Apps in 20 Minutes

Ddos August 6, 2025

JetBrains, the renowned developer of programming tools, has recently unveiled a new no-code platform called Kineto, which...

GPU Legend Raja Koduri Launches Oxmiq Labs: A New RISC-V Challenge to NVIDIA’s CUDA Raja Koduri, Oxmiq Labs

GPU Legend Raja Koduri Launches Oxmiq Labs: A New RISC-V Challenge to NVIDIA’s CUDA

Ddos August 6, 2025

Former architect at AMD and Apple, and a key figure behind several breakthroughs in graphics technologies, the...

SanDisk Unveils World’s Largest SSD: The 256TB UltraQLC Drive Built for the AI Era SanDisk, price increase SanDisk SSD, AI Storage

SanDisk Unveils World’s Largest SSD: The 256TB UltraQLC Drive Built for the AI Era

Ddos August 6, 2025

SanDisk has officially unveiled its groundbreaking UltraQLC technology platform, along with a new enterprise-grade NVMe SSD boasting...

Anthropic Unveils Claude Opus 4.1: The New Flagship Model for Coding and Agentic Tasks Claude Code Security Claude Opus 4.1, AI Model Update Anthropic OpenAI, API Access Revocation Claude AI, Rate Limits Claude Memory, AI Personalization Claude 4 whistleblowing, AI ethical risks

Claude Code Security Claude Opus 4.1, AI Model Update Anthropic OpenAI, API Access Revocation Claude AI, Rate Limits Claude Memory, AI Personalization Claude 4 whistleblowing, AI ethical risks

Anthropic Unveils Claude Opus 4.1: The New Flagship Model for Coding and Agentic Tasks

Ddos August 6, 2025

Leading artificial intelligence startup Anthropic has recently unveiled the Claude 4.1 series—an enhanced iteration of its Claude...

OpenAI Returns to Its Roots: First Open-Weight Language Models Released Since GPT-2

Ddos August 6, 2025

OpenAI has recently unveiled two new large language models—gpt-oss-120b and gpt-oss-20b—developed under an open-weight framework. This marks...

Genie 3 Unleashed: DeepMind’s AI World Evolves with Real-Time Scene Control Genie 3, Promptable World Events

Genie 3 Unleashed: DeepMind’s AI World Evolves with Real-Time Scene Control

Ddos August 6, 2025

Following the unveiling of Genie 2 late last year—a groundbreaking AI model by Google DeepMind capable of...

CISA Adds Three D-Link Flaws to KEV Catalog: EOL IP Cameras Under Active Exploitation CISA KEV, D-Link Vulnerabilities

CISA Adds Three D-Link Flaws to KEV Catalog: EOL IP Cameras Under Active Exploitation

Ddos August 6, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning for organizations and government entities:...

Critical RCE Flaw (CVE-2025-54594) in React Native Bottom Tabs’ GitHub Actions Exposed Secrets GitHub Actions Vulnerability, React Native Bottom Tabs

GitHub Actions Vulnerability, React Native Bottom Tabs

Critical RCE Flaw (CVE-2025-54594) in React Native Bottom Tabs’ GitHub Actions Exposed Secrets

Ddos August 6, 2025

A critical vulnerability—CVE-2025-54594 (CVSS 9.1)—has been identified in the React Native Bottom Tabs project, exposing the repository...

From Bing Search to Ransomware in <44 Hours: Bumblebee Loader Deploys Destructive Akira Ransomware via SEO Poisoning Bumblebee Malware, Akira Ransomware

From Bing Search to Ransomware in <44 Hours: Bumblebee Loader Deploys Destructive Akira Ransomware via SEO Poisoning

Ddos August 6, 2025

In a reminder that even a Google or Bing search can be the first step in a...

Mustang Panda Backdoor Exposed: New ToneShell Malware Masquerades as Chrome to Spy on Gov’t & Military Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mustang Panda Backdoor Exposed: New ToneShell Malware Masquerades as Chrome to Spy on Gov’t & Military

Ddos August 6, 2025

A new threat analysis by Kyaw Pyiyt Htet, a CREST-certified Threat Intelligence Analyst, has revealed the inner...

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

Adobe AEM Forms Patch: Critical Flaws (CVE-2025-54253, CVSS 10.0) Allow RCE & Arbitrary File Read, Public PoCs Available

Ddos August 6, 2025

Adobe has released urgent patches for two critical vulnerabilities affecting Adobe Experience Manager (AEM) Forms on JEE,...

The Fake Crypto Bot Scam: How Smart Contracts & AI Videos Are Stealing Millions on YouTube Crypto Scam, Executive Fraud business email compromise scam

Crypto Scam, Executive Fraud business email compromise scam

The Fake Crypto Bot Scam: How Smart Contracts & AI Videos Are Stealing Millions on YouTube

Ddos August 6, 2025

SentinelLABS has detailed a coordinated wave of cryptocurrency scams weaponizing malicious smart contracts promoted as arbitrage trading...

Critical HFS 2.x Flaw (CVE-2024-23692) Actively Exploited: Legacy File Server Becomes a Ransomware Backdoor Ollama Heap Leak CVE-2026-5757 Anritsu Vulnerability Authentication Bypass Gootloader Malware Malformed ZIP Evasion Blender Malware, StealC V2 Lectora, XSS CVE-2025-9125 HFS RCE, Template Injection Arch Linux Malware, CHAOS RAT CVE-2024-56404 - CVE-2024-39327 CVE-2025-2538