News Archives • Page 298 of 633 • Daily CyberSecurity

Warning: Discord’s API Exploited for Malicious Takeover Discord RAT

Warning: Discord’s API Exploited for Malicious Takeover

Ddos March 31, 2025

A new report from CYFIRMA reveals that cybercriminals are increasingly exploiting Discord, the popular communication and gaming...

Ubuntu Security Alert: Three Ways to Bypass User Namespace Restrictions Ubuntu 26.10 Stonking Stingray Ubuntu Security Alert: Three Ways to Bypass User Namespace Restrictions

Ubuntu Security Alert: Three Ways to Bypass User Namespace Restrictions

Ddos March 31, 2025

Qualys Threat Research Unit (TRU) has recently disclosed three security bypasses in Ubuntu’s unprivileged user namespace restrictions....

Russian Intelligence Impersonates CIA in Phishing Attacks

Ddos March 31, 2025

Silent Push Threat Analysts uncover a multi-cluster phishing operation leveraging fake CIA and anti-Putin group websites to...

Python-Powered Triton RAT Exfiltrates Data via Telegram and Evades Analysis

Ddos March 31, 2025

Cado Security Labs has identified a Python-based Remote Access Tool (RAT) named Triton RAT. This open-source RAT...

GPU-Powered Evasion: Unpacking the Sophisticated CoffeeLoader Malware KTLVdoor backdoor - CoffeeLoader Malware

GPU-Powered Evasion: Unpacking the Sophisticated CoffeeLoader Malware

Ddos March 31, 2025

Zscaler ThreatLabz has recently uncovered a new and sophisticated malware family named CoffeeLoader, which emerged around September...

Lucid: The Rising Threat of Phishing-as-a-Service Lucid PhAAS platform XinXin

Lucid: The Rising Threat of Phishing-as-a-Service

Ddos March 30, 2025

In the ever-evolving landscape of cyber threats, Phishing-as-a-Service (PhAAS) platforms have emerged as a significant concern, enabling...

CVE-2025-2294 Targets WordPress Plugin with 90,000+ Active Installs

Ddos March 30, 2025

A severe security vulnerability has been identified in the Kubio AI Page Builder plugin for WordPress, posing...

PJobRAT’s Evolution: New Campaign Steals Data from Android Screenshots from the interface of the malicious SaangalLite app

PJobRAT’s Evolution: New Campaign Steals Data from Android

Ddos March 30, 2025

In 2021, PJobRAT, an Android Remote Access Trojan (RAT), was identified targeting Indian military personnel by disguising...

Minimalist BSOD: Windows 11 Changes Crash Screen Design Windows BOSD

Minimalist BSOD: Windows 11 Changes Crash Screen Design

Ddos March 29, 2025

In the latest Windows 11 Insider Preview build 26120.3653 (KB5053658) , Microsoft has revised the design of...

Google Changes Android: What It Means for Developers Android Zero-Click RCE CVE-2026-0073 Android sideloading CVE-2024-43096, CVE-2024-43770, CVE-2024-43771, CVE-2024-49747 and, CVE-2024-49748

Android Zero-Click RCE CVE-2026-0073 Android sideloading CVE-2024-43096, CVE-2024-43770, CVE-2024-43771, CVE-2024-49747 and, CVE-2024-49748

Google Changes Android: What It Means for Developers

Ddos March 29, 2025

In contrast to its previous dual-track development approach—relying both on the Android Open Source Project (AOSP) and...

Microsoft’s “Startup Boost”: Faster Office, Higher Memory Use Microsoft Office Startup Boost Office 2016 update KB5002700

Microsoft’s “Startup Boost”: Faster Office, Higher Memory Use

Ddos March 29, 2025

In a recent technical briefing aimed at IT professionals, Microsoft announced the introduction of a new background...

CISA Warns of RESURGE Malware: Exploiting Ivanti Vulnerability NTLM Vulnerabilities, CVE-2024-43451 CVE-2024-37361 - RESURGE Malware

CISA Warns of RESURGE Malware: Exploiting Ivanti Vulnerability

Ddos March 29, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has released a Malware Analysis Report (MAR) detailing a newly...

VMware Sues Siemens: Unlicensed Software Use Alleged VMware Lawsuit Siemens

VMware Sues Siemens: Unlicensed Software Use Alleged

Ddos March 29, 2025

Broadcom’s virtualization software subsidiary, VMware, has recently filed a lawsuit in the U.S. District Court of Delaware...

Weaver E-cology RCE CVE-2026-22679 CVE-2026-20127 Cisco SD-WAN Exploitation AI-Driven Cyberattack ARXON Malware React Server Components Vulnerability CVE-2025-55182 FortiWeb Auth Bypass, Unauthenticated Admin Takeover RayInitiator Bootkit, LINE VIPER CVE-2025-59689 Department of the Treasury cybersecurity - CVE-2025-0108 PoC CVE-2025-31103 Dior Data Breach SK Telecom data breach, long-term intrusion

CVE-2025-31103: Zero-Day Vulnerability Discovered in a-blog cms, Act Now to Protect Your Web Server

Ddos March 28, 2025

A critical security vulnerability has been discovered in a-blog cms, a web content management system developed by...

Critical Vulnerability Discovered in Apache Pinot: Authentication Bypass Exposes Systems to Severe Risk CVE-2024-56325 Apache Pinot vulnerability

CVE-2024-56325 Apache Pinot vulnerability

Critical Vulnerability Discovered in Apache Pinot: Authentication Bypass Exposes Systems to Severe Risk

Ddos March 28, 2025

Apache Pinot, a high-throughput, low-latency OLAP datastore originally developed at LinkedIn, is designed to provide real-time analytics...

Chrome 148 lazy loading Chrome for Linux ARM64 Chrome 145 Update Chrome Security Fixes Chrome Security Update CVE-2026-1220 Chrome 144 Security Update CVE-2026-0899 Chrome Memory Safety, WebGPU UAF Chrome V8 Type Confusion, Google Updater Flaw Chrome V8 Flaw, CVE-2025-13042 Chrome V8, Type Confusion, Chrome 142 Update Chrome V8 Flaw, CVE-2025-12036 Chrome 141, WebGPU Overflow Google Chrome preloading Chrome, V8 vulnerability CVE-2025-9132 Chrome Security Update, Use-After-Free Chrome V8, Type Confusion Chrome Telemetry, Windows 10 EOL Microsoft Family Safety, Chrome Blocking Chrome Security Update, High-Severity Google Chrome, Antitrust CVE-2024-10487 and CVE-2024-10488 Google Chrome Root Program Chrome Update, CVE-2025-3619 Chrome Acquisition, Perplexity.ai

Securing the Web: Chrome’s Push for a More Robust PKI

Ddos March 28, 2025

The internet’s backbone relies on secure connections, and at the heart of this security lies the Public...

CVE-2025-30353: Directus Vulnerability Exposes Sensitive Data in Webhook Trigger Flows CVE-2024-27295

CVE-2025-30353: Directus Vulnerability Exposes Sensitive Data in Webhook Trigger Flows

Ddos March 28, 2025

A security vulnerability has been identified in Directus, a real-time API and App dashboard used for managing...

Malware on npm “Patches” Local Packages with Reverse Shell npm reverse shell

Malware on npm “Patches” Local Packages with Reverse Shell

Ddos March 28, 2025

A recent report by ReversingLabs (RL) has uncovered malicious packages on the npm repository that employ sophisticated...

SnakeKeylogger: Stealthy Malware Targets Credentials in Sophisticated Attacks

Ddos March 28, 2025

A new report from Seqrite Labs details a malicious campaign employing SnakeKeylogger, an info-stealing malware known for...

Ghostscript Nightmare: Critical Severity Vulnerabilities Put Users at Risk CVE-2023-36664 CVE-2025-27832, CVE-2025-27831, CVE-2025-27836, and CVE-2025-27837

CVE-2023-36664 CVE-2025-27832, CVE-2025-27831, CVE-2025-27836, and CVE-2025-27837

Ghostscript Nightmare: Critical Severity Vulnerabilities Put Users at Risk

Ddos March 28, 2025

A series of security vulnerabilities has been identified in Artifex Ghostscript, a widely used interpreter for PostScript...

Critical Alert 1 Active Exploit Detected Today