News Archives • Page 236 of 632 • Daily CyberSecurity

LapDogs: China-Nexus Threat Actors Deploy Covert ORB Network on 1,000+ SOHO Devices Globally LapDogs, China-Nexus ORB

LapDogs: China-Nexus Threat Actors Deploy Covert ORB Network on 1,000+ SOHO Devices Globally

Ddos June 25, 2025

In a new report, SecurityScorecard’s STRIKE threat intelligence team has exposed a covert espionage campaign dubbed “LapDogs”,...

Behind the Commit: CVSS 10.0 Bug Lets Attackers Hijack Gogs Servers Gogs RCE, XSS Vulnerability

Behind the Commit: CVSS 10.0 Bug Lets Attackers Hijack Gogs Servers

Ddos June 24, 2025

The open-source Git service Gogs, known for its simplicity and ease of deployment, disclosures two severe security...

Critical Linksys Router Flaw (CVE-2025-34037, CVSS 10.0) Actively Exploited by TheMoon Worm Linksys Router, TheMoon Worm

Critical Linksys Router Flaw (CVE-2025-34037, CVSS 10.0) Actively Exploited by TheMoon Worm

Ddos June 24, 2025

A critical vulnerability in multiple Linksys E-Series routers is being actively exploited in the wild by a...

Google Donates A2A Protocol to Linux Foundation: Paving the Way for Open AI Agent Interoperability Google A2A Protocol, Linux Foundation

Google Donates A2A Protocol to Linux Foundation: Paving the Way for Open AI Agent Interoperability

Ddos June 24, 2025

In April, Google introduced the A2A (Agent2Agent) protocol for AI agents, and it has since garnered support...

C Windows SecureBoot folder KB5089549 Windows 11 BSOD Microsoft Windows, Rust programming WINS Service Deprecation Windows Server DNS Migration Windows Driver Standard OEM Kernel Privileges Windows Agentic OS Task Manager Bug, Windows 11 Performance Windows 11, Microsoft, WinRE, Update Bug, Tech Support Windows 11 OOBE, Microsoft Account Mandatory Windows 11, SSD failures Windows 11 Recovery, Black Screen of Death Windows 11 Update Issue, KB5062324 Windows 11, Indicator Bar

Windows 11 Gets New UI Customization: Reposition System Indicator Bar to Top-Center or Top-Left

Ddos June 24, 2025

In the latest releases of Windows 11—Build 26200.5661 (Dev Channel) and Build 26120.4452 (Beta Channel)—Microsoft has introduced...

Intel GPU Performance Hit by Security Mitigations: Ubuntu Weighs Disabling Them for 20% Boost Intel EU Antitrust Fine, Naked Restrictions Intel Layoff Data Theft Jinfeng Luo Intel leadership change Intel SoftBank Intel Foundry, Semiconductor Market Intel Arrow Lake Refresh, Copilot+ PC Intel GPU Performance, Security Mitigations Mitigation Downfall Vulnerability

Intel EU Antitrust Fine, Naked Restrictions Intel Layoff Data Theft Jinfeng Luo Intel leadership change Intel SoftBank Intel Foundry, Semiconductor Market Intel Arrow Lake Refresh, Copilot+ PC Intel GPU Performance, Security Mitigations Mitigation Downfall Vulnerability

Intel GPU Performance Hit by Security Mitigations: Ubuntu Weighs Disabling Them for 20% Boost

Ddos June 24, 2025

Years ago, Intel processors were found to be vulnerable to the Spectre and Meltdown flaws—architectural design flaws...

India SIM-Binding Mandate Messaging App KYC WhatsApp DMA Interoperability BirdyChat Haiket Denmark Social Media Ban CVE-2025-55177 WhatsApp vulnerability, zero-click flaw npm Malware, System Wipe WhatsApp Windows App, WebView2 Downgrade WhatsApp Ban, US House NSO WhatsApp, Pegasus Spyware WhatsApp iPad iPadOS app

US House Bans WhatsApp on Government Devices Over Security & Transparency Concerns

Ddos June 24, 2025

According to a report by Axios, the Chief Administrative Office (CAO) of the U.S. House of Representatives...

iOS 26 Recovery Assistant Unveiled: Wirelessly Restore Your iPhone with Another Apple Device Apple Russia payment suspension iOS 26.3 Proximity Pairing, Apple DMA compliance 2026 Tap to Pay, Apple Pay Wireless charging Always-On Display, iOS 26 iOS 26, EU App APIs Rare Earths, Apple Supply Chain

Apple Russia payment suspension iOS 26.3 Proximity Pairing, Apple DMA compliance 2026 Tap to Pay, Apple Pay Wireless charging Always-On Display, iOS 26 iOS 26, EU App APIs Rare Earths, Apple Supply Chain

iOS 26 Recovery Assistant Unveiled: Wirelessly Restore Your iPhone with Another Apple Device

Ddos June 24, 2025

In iOS 26 Beta 1, Apple introduced a new feature called Recovery Assistant. In the recently released...

BitoPro Crypto Heist: North Korea’s Lazarus Group Steals $11.5M via Phished Employee BitoPro Hack, Lazarus Group

BitoPro Crypto Heist: North Korea’s Lazarus Group Steals $11.5M via Phished Employee

Ddos June 24, 2025

In May 2025, the Taiwanese cryptocurrency exchange BitoPro fell victim to a cyberattack, resulting in the loss...

Xbox App Beta Unites Game Libraries: Launch All Your PC Games from One Hub Xbox App, Unified Game Library

Xbox App Beta Unites Game Libraries: Launch All Your PC Games from One Hub

Ddos June 24, 2025

Following the recent announcement of its collaboration with ASUS to develop the ROG Xbox Ally series of...

Xbox x Meta Quest 3S Confirmed: Co-Branded VR Headset Launching Today Meta Quest Xbox VR, Co-branded VR

Xbox x Meta Quest 3S Confirmed: Co-Branded VR Headset Launching Today

Ddos June 24, 2025

Previously, Meta announced the open-sourcing of its virtual reality headset operating system—renamed Meta Horizon OS—alongside a partnership...

CVE-2025-6218: WinRAR Directory Traversal Bug Opens the Door to Remote Code Execution WinRAR RCE, Directory Traversal

CVE-2025-6218: WinRAR Directory Traversal Bug Opens the Door to Remote Code Execution

Ddos June 24, 2025

A newly disclosed vulnerability in RARLAB’s WinRAR, the long-standing compression utility for Windows, has exposed millions of...

Critical Key Derivation Flaws in pbkdf2 Affect Millions of JavaScript Projects, PoC Available pbkdf2 npm, Cryptographic Flaws

Critical Key Derivation Flaws in pbkdf2 Affect Millions of JavaScript Projects, PoC Available

Ddos June 24, 2025

Two high-impact security advisories have been released for the pbkdf2 npm package—an essential utility in the JavaScript...

PoC Released for Notepad++ Flaw Enables Privilege Escalation to NT AUTHORITY\SYSTEM Notepad++ privilege escalation

PoC Released for Notepad++ Flaw Enables Privilege Escalation to NT AUTHORITY\SYSTEM

Ddos June 24, 2025

A new vulnerability, tracked as CVE-2025-49144, has been discovered in Notepad++ version 8.8.1 that allows local privilege...

Critical Convoy Flaw (CVE-2025-52562, CVSS 10.0): Unauthenticated Remote Code Execution on KVM Servers! Convoy RCE, Unauthenticated

Critical Convoy Flaw (CVE-2025-52562, CVSS 10.0): Unauthenticated Remote Code Execution on KVM Servers!

Ddos June 24, 2025

A newly disclosed vulnerability in Convoy, a modern KVM server management panel built for hosting providers, has...

From Bypass to Root: Mandiant Red Team Exploits CVE-2025-2171 and CVE-2025-2172 in Aviatrix Cloud Controller

Ddos June 24, 2025

Mandiant successfully breached a fully patched instance of the Aviatrix Controller—a central component in Software-Defined Networking (SDN)...

No Patch, Full Exploit: CVSS 9.9 RCE & IDOR Flaws in InnoShop eCommerce Platform InnoShop vulnerabilities

No Patch, Full Exploit: CVSS 9.9 RCE & IDOR Flaws in InnoShop eCommerce Platform

Ddos June 24, 2025

Security researcher TheHiker disclosured three serious vulnerabilities in InnoShop, an open-source eCommerce system built on Laravel 12....

EvilConwi: Hackers Abuse Signed ConnectWise Installers to Launch Stealth Remote Access Attacks

Ddos June 24, 2025

Threat actors have begun weaponizing legitimately signed ConnectWise ScreenConnect installers, hijacking the trust of signed software to...

SHOE RACK Malware: NCSC Uncovers Stealthy Reverse SSH & DoH Post-Exploitation Tool Targeting FortiGate Firewalls SHOE RACK Malware, Reverse SSH

SHOE RACK Malware: NCSC Uncovers Stealthy Reverse SSH & DoH Post-Exploitation Tool Targeting FortiGate Firewalls

Ddos June 24, 2025

A new malware tool dubbed SHOE RACK has come under the microscope of the UK’s National Cyber...

Cyber Fattah Breach: Pro-Iranian Hackers Leak Saudi Games Athlete Data in Targeted Info Op Saudi Games, Cyber Fattah

Cyber Fattah Breach: Pro-Iranian Hackers Leak Saudi Games Athlete Data in Targeted Info Op

Ddos June 24, 2025

In a bold escalation of cyber-enabled information warfare, pro-Iranian hacking group Cyber Fattah has claimed responsibility for...