News Archives • Page 24 of 651 • Daily CyberSecurity

Android Carrier Billing Fraud Campaign Exposed by zLabs

Do Son May 26, 2026

Security experts recently discovered a massive mobile cyberattack targeting smartphone users globally. Specifically, a massive Android carrier...

New Tampered Chef Malware Campaigns Discovered in Productivity Software

Do Son May 26, 2026

Cybersecurity researchers have uncovered a massive global operation that distributes trojanized software to unsuspecting corporate networks. Specifically,...

New Operation Dragon Whistle Phishing Campaign Targets Universities

Do Son May 26, 2026

Security researchers have discovered a highly sophisticated cyber threat targeting academic institutions. Specifically, Seqrite Labs recently uncovered...

Critical Dell Container Storage Modules Vulnerability Exposes Infrastructure

Do Son May 26, 2026

Dell has issued an urgent security update to address a maximum severity flaw in its cloud storage...

Apache CXF Framework Patches Three Severe Security Flaws Apache CXF vulnerabilities, JNDI injection flaws, CVE-2026-50634, CVE-2026-50633, CVE-2026-50628 Apache CXF vulnerabilities

Apache CXF vulnerabilities, JNDI injection flaws, CVE-2026-50634, CVE-2026-50633, CVE-2026-50628 Apache CXF vulnerabilities

Apache CXF Framework Patches Three Severe Security Flaws

Do Son May 26, 2026

The Apache Software Foundation recently released critical updates for its popular web services framework. These updates address...

Critical Memcached SASL Vulnerability Fixed in Version 1.6.42

Do Son May 26, 2026

Memcached functions as a high-performance, multithreaded, event-based key/value cache store designed for distributed systems. Recently, the development...

Important Security Flaw Patched in Apache ECharts Library Apache ECharts XSS vulnerability

Important Security Flaw Patched in Apache ECharts Library

Do Son May 26, 2026

Apache ECharts is a free, powerful JavaScript charting and visualization library that developers use globally. Recently, security...

New 7-Zip Heap Buffer Overflow Disclosed with Public PoC 7-Zip heap buffer overflow CVE-2025-0411 7-Zip path traversal

New 7-Zip Heap Buffer Overflow Disclosed with Public PoC

Do Son May 26, 2026

Security researchers have uncovered a critical security flaw in the popular file archiver 7-Zip. Specifically, this 7-Zip...

The Zero-Day Dispatch: Weekly Threat Intelligence Briefing (May 18 – May 24, 2026)

Do Son May 25, 2026

Welcome to your weekly threat intelligence briefing. Between May 18 and May 24, 2026, security teams faced...

Knowledge Deliver RCE vulnerability FortiClient EMS Vulnerability CVE-2026-35616 Cisco SD-WAN Vulnerability CVE-2026-20122 PCPcat, Next.js RCE Salesloft breach, Salesforce CRM WIREFIRE web shell

New Knowledge Deliver RCE Vulnerability Exploited in the Wild

Do Son May 25, 2026

In late 2025, Mandiant responded to a major security incident involving a compromised web server. Specifically, the...

Poisoned Code: Stealthy Malicious Go Module Backdoor Discovered in Long-Running Typosquat

Do Son May 25, 2026

Open-source software repositories remain a top target for modern cybercriminals. Recently, Socket’s Threat Research Team uncovered a...

Disrupted: How the “Trapdoor” Ad Fraud Ring Weaponized 455 Android Apps for 659 Million Daily Fake Bids Trapdoor Ad Fraud Pipeline HUMAN Satori Malware Disruption

Trapdoor Ad Fraud Pipeline HUMAN Satori Malware Disruption

Disrupted: How the “Trapdoor” Ad Fraud Ring Weaponized 455 Android Apps for 659 Million Daily Fake Bids

Do Son May 25, 2026

The Satori Threat Intelligence and Research Team at HUMAN has successfully disrupted a massive ad fraud and...

Microsoft Dismantles “Fox Tempest” Code-Signing Network Fueling Global Ransomware Fox Tempest Takedown Malware Signing as a Service

Microsoft Dismantles “Fox Tempest” Code-Signing Network Fueling Global Ransomware

Do Son May 25, 2026

Microsoft’s Digital Crimes Unit (DCU) has delivered a massive blow to the cybercrime underground. In May 2026,...

In-Memory Financial Theft: Inside Banana RAT’s Operator-Driven Attacks on Brazilian Banks Banana RAT Banking Trojan SHADOW-WATER-063 MaaS

In-Memory Financial Theft: Inside Banana RAT’s Operator-Driven Attacks on Brazilian Banks

Do Son May 25, 2026

A sophisticated, highly focused banking trojan is actively undermining the security controls of financial institutions across South...

NLnet Labs Issues Urgent Security Release for Unbound Resolver Unbound DNSSEC validation vulnerability

NLnet Labs Issues Urgent Security Release for Unbound Resolver

Do Son May 25, 2026

NLnet Labs has released a major security update for its popular Unbound DNS resolver software. The release...

Critical Unauthenticated RCE Flaw Threatens Kopia Backup Servers Kopia SSH ProxyCommand injection

Critical Unauthenticated RCE Flaw Threatens Kopia Backup Servers

Do Son May 25, 2026

Kopia serves as a popular open-source backup and restore tool for secure data snapshots. However, security researchers...

Critical TYPO3 Extension Exploit: Content Element Selector Flaw (CVE-2026-46725) Triggers Unauthenticated RCE TYPO3 Extension Vulnerability CVE-2026-46725 RCE

TYPO3 Extension Vulnerability CVE-2026-46725 RCE

Critical TYPO3 Extension Exploit: Content Element Selector Flaw (CVE-2026-46725) Triggers Unauthenticated RCE

Do Son May 25, 2026

The TYPO3 project has announced a critical security vulnerability affecting a popular third-party extension. The advisory, tagged...

Over-the-Air Root Risk: Seven Critical FreeBSD Security Advisories Fix Wi-Fi RCE and Kernel Flaws FreeBSD Wi-Fi RCE Vulnerability CVE-2026-45255 Patch FreeBSD dhclient Root Exploit CVE-2026-42511 FreeBSD Vulnerability - CVE-2024-7589 FreeBSD Jail Escape CVE-2025-15576

Over-the-Air Root Risk: Seven Critical FreeBSD Security Advisories Fix Wi-Fi RCE and Kernel Flaws

Do Son May 25, 2026

The FreeBSD Project has issued a sweeping set of seven security advisories resolving highly critical vulnerabilities nested...

NGINX Fixes Critical Poolslip Flaw Allowing Remote Code Execution NGINX heap buffer overflow vulnerability NGINX Vulnerability Buffer Overflow CVE-2024-24989, CVE-2024-24990 NGINX ACME

NGINX heap buffer overflow vulnerability NGINX Vulnerability Buffer Overflow CVE-2024-24989, CVE-2024-24990 NGINX ACME

NGINX Fixes Critical Poolslip Flaw Allowing Remote Code Execution

Do Son May 25, 2026

F5 has published an urgent security advisory regarding a severe flaw in NGINX Plus and NGINX Open...

ConnectWise Patches Severe Code Execution Flaw in Automate

Do Son May 24, 2026

ConnectWise recently disclosed a critical security flaw affecting its remote monitoring software. Specifically, this ConnectWise Automate vulnerability...

Critical Alert 2 Active Exploits Detected Today