News Archives • Page 287 of 632 • Daily CyberSecurity

Beware Fake PDF Converters: A Social Engineering Threat

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

Beware Fake PDF Converters: A Social Engineering Threat

Ddos April 16, 2025

In today’s digital age, online file converters have become indispensable tools for streamlining daily workflows. However, a...

Critical RCE Vulnerability Affects HylaFAX and AvantFAX CVE-2024-52335 HylaFAX, AvantFAX vulnerability

Critical RCE Vulnerability Affects HylaFAX and AvantFAX

Ddos April 16, 2025

A recent security advisory from iFAX Solutions has revealed a critical vulnerability affecting the HylaFAX Enterprise Web...

BPFDoor Backdoor Used in Asia, Middle East Cyberespionage IARPA Research Security Data Abyss Report Telecom threat, Secret Service cybersecurity news - Cyber Espionage Campaign

IARPA Research Security Data Abyss Report Telecom threat, Secret Service cybersecurity news - Cyber Espionage Campaign

BPFDoor Backdoor Used in Asia, Middle East Cyberespionage

Ddos April 16, 2025

A recent report by Trend Micro has uncovered a stealthy, state-sponsored backdoor called BPFDoor, which has been...

BRICKSTORM Backdoor Targets European Industries BRICKSTORM, Cyber Espionage

BRICKSTORM Backdoor Targets European Industries

Ddos April 16, 2025

In a recent technical expose, NVISO sheds light on BRICKSTORM, a stealthy espionage backdoor attributed to the...

Apple Spring Event 2026 Apple Intel 14A iPhone 2028, Intel Foundry Apple Silicon iPhone 18 glass cloth shortage, Nittobo T-glass Apple crisis Apple UK App Store lawsuit appeal, Apple tax £1.5bn damages Apple AI Leadership Shakeup Giannandrea Subramanya Touchscreen MacBook Pro Apple 2026 Roadmap Apple Smart Home, Desktop Robot Apple H3 Chip, AirPods Camera Apple chips, on-device AI Apple AI, retail chatbot MacBook, Affordable Foldable iPhone, Apple Strategy Apple COO, Leadership Transition DOJ Lawsuit Apple EU Policy, App Store Fees CVE-2024-23222 Apple French antitrust fine

Apple Enhances AI with Differential Privacy and Synthetic Data

Ddos April 15, 2025

Apple recently released a research report detailing how it plans to leverage differential privacy data to enhance...

Japan Files Antitrust Lawsuit Against Google Over Android Practices DOJ Google Chrome appeal Google Search robots.txt indexing, missing robots.txt SEO impact Google DOJ Antitrust Ad-Tech Monopoly Google Antitrust, Japan Fair Trade Commission Google AI Overviews, publisher data control

DOJ Google Chrome appeal Google Search robots.txt indexing, missing robots.txt SEO impact Google DOJ Antitrust Ad-Tech Monopoly Google Antitrust, Japan Fair Trade Commission Google AI Overviews, publisher data control

Japan Files Antitrust Lawsuit Against Google Over Android Practices

Ddos April 15, 2025

Today, the Japan Fair Trade Commission (JFTC) filed a lawsuit against Google under the Antimonopoly Act, alleging...

ResolverRAT: New RAT Employs Advanced Evasion Techniques Lotus Wiper Digital Sabotage G_Wagon Malware NPM Supply Chain Attack IMAPLoader malware ResolverRAT Malware Evasion

Lotus Wiper Digital Sabotage G_Wagon Malware NPM Supply Chain Attack IMAPLoader malware ResolverRAT Malware Evasion

ResolverRAT: New RAT Employs Advanced Evasion Techniques

Ddos April 15, 2025

A new remote access trojan (RAT) has emerged, and it’s armed with advanced techniques to evade detection....

Android to Auto-Reboot After 72 Hours of Inactivity Android Spyware, SpyMax RAT CVE-2024-0039 Android Auto-Reboot Google Play Services

Android to Auto-Reboot After 72 Hours of Inactivity

Ddos April 15, 2025

Previously, Apple introduced an automatic reboot feature to iPhones via iOS security updates—a security mechanism designed to...

Google Ends Security Updates for Android 12 CVE-2023-21085 Android 12 Security Updates

Google Ends Security Updates for Android 12

Ddos April 15, 2025

In 2021, Google introduced Android 12, a version that once held a market share of approximately 12.43%...

Android 15 Requires Minimum 32GB Storage Excessive Wake Lock Android Battery Warning LianSpy spyware - CVE-2024-50302 Android 15 Storage Requirement

Excessive Wake Lock Android Battery Warning LianSpy spyware - CVE-2024-50302 Android 15 Storage Requirement

Android 15 Requires Minimum 32GB Storage

Ddos April 15, 2025

Google recently announced that starting with Android 15, the minimum required device storage will be raised to...

OpenAI to Replace GPT-4.5 with GPT-4.1 in Developer API OpenAI Major Outage - Time Bandit GPT-4.5 Phase-Out

OpenAI to Replace GPT-4.5 with GPT-4.1 in Developer API

Ddos April 15, 2025

OpenAI has announced its intention to gradually phase out access to the recently unveiled GPT-4.5 model from...

Samsung Halts One UI 7 Rollout Due to Lockscreen Issues Samsung zero-day Samsung Galaxy S25 Edge, Sales Performance Samsung Account, Inactive Accounts One UI 7 Samsung Update

Samsung zero-day Samsung Galaxy S25 Edge, Sales Performance Samsung Account, Inactive Accounts One UI 7 Samsung Update

Samsung Halts One UI 7 Rollout Due to Lockscreen Issues

Ddos April 15, 2025

One UI 7, based on Android 15, represents one of Samsung’s most significant updates in recent years....

Meta to Use EU User Data for AI Training, Offers Opt-Out Messenger Desktop EOL, Web Redirect Meta Political Ads, EU Regulation Meta EU Fine, DMA Compliance Meta AI, PlayAI Acquisition bypass AI security Meta AI EU Data Privacy

Messenger Desktop EOL, Web Redirect Meta Political Ads, EU Regulation Meta EU Fine, DMA Compliance Meta AI, PlayAI Acquisition bypass AI security Meta AI EU Data Privacy

Meta to Use EU User Data for AI Training, Offers Opt-Out

Ddos April 15, 2025

Meta has announced plans to utilize data collected from European Union users to train its artificial intelligence...

PyPI Swiftly Patches Privilege Escalation Flaw in Organizations Feature Project Quarantine PyPI Security Privilege Escalation

PyPI Swiftly Patches Privilege Escalation Flaw in Organizations Feature

Ddos April 15, 2025

On April 14, 2025, the Python Package Index (PyPI) team swiftly addressed a security concern involving persisting...

CrushFTP Hit by SSRF and Directory Traversal Vulnerabilities (CVE-2025-32102 & CVE-2025-32103) CVE-2024-53552 CrushFTP vulnerability, SSRF

CrushFTP Hit by SSRF and Directory Traversal Vulnerabilities (CVE-2025-32102 & CVE-2025-32103)

Ddos April 15, 2025

CrushFTP, a popular file transfer server, is facing increased scrutiny following the discovery of two significant security...

Browser Wallet Flaws Allow Silent Crypto Drains Without User Interaction browser wallet vulnerability, crypto drain

Browser Wallet Flaws Allow Silent Crypto Drains Without User Interaction

Ddos April 15, 2025

A recent report by Coinspect has revealed critical vulnerabilities in popular browser wallets, raising significant concerns about...

CVE-2025-24859 (CVSSv4 10): Apache Roller Flaw Exposes Blogs to Unauthorized Access Apache Roller vulnerability CVE-2025-24859

CVE-2025-24859 (CVSSv4 10): Apache Roller Flaw Exposes Blogs to Unauthorized Access

Ddos April 15, 2025

A security vulnerability has been identified in Apache Roller, a Java-based blog server, that could allow unauthorized...

Vulnerabilities in Solar Power Systems Threaten Power Grids Solar power systems, cybersecurity vulnerabilities

Vulnerabilities in Solar Power Systems Threaten Power Grids

Ddos April 15, 2025

A new report by Forescout reveals critical vulnerabilities in solar power systems that could be exploited to...

DarkHotel APT Group’s Evolving Attack Techniques DarkHotel, APT group

DarkHotel APT Group’s Evolving Attack Techniques

Ddos April 15, 2025

A recent investigation by the Knownsec 404 Advanced Threat Intelligence Team has uncovered a new wave of...

China-Nexus APT Exploits Ivanti Connect Secure VPN in Global Cyber Espionage Campaign BeyondTrust Vulnerability CVE-2026-1731 UPBIT $369M Hack CVE-2024-55591 Ivanti VPN vulnerability, cyber espionage

BeyondTrust Vulnerability CVE-2026-1731 UPBIT $369M Hack CVE-2024-55591 Ivanti VPN vulnerability, cyber espionage

China-Nexus APT Exploits Ivanti Connect Secure VPN in Global Cyber Espionage Campaign

Ddos April 15, 2025

A recent report by TeamT5 has uncovered a widespread cyber espionage campaign targeting Ivanti Connect Secure VPN...

Critical Alert 1 Active Exploit Detected Today