News Archives • Page 3 of 650 • Daily CyberSecurity

AryStinger Malware Attacks Routers via CVE-2013-3307 AryStinger malware infection chain exploiting CVE-2013-3307

AryStinger Malware Attacks Routers via CVE-2013-3307

Do Son June 23, 2026

Security researchers at QiAnXin XLab discovered over 4,300 legacy routers infected globally. They named this new threat...

Cloud DNS Takeover Powers Thai Gambling Campaign hacking

Cloud DNS Takeover Powers Thai Gambling Campaign

Do Son June 23, 2026

At a Glance Actor: Suspected single Chinese operator Activity Type: Cloud DNS takeover, SEO poisoning Targets: 163...

Android developer verification timeline showing the September 30 2026 sideloading enforcement and 24-hour advanced flow

Android Developer Verification: Google Reveals the Full Timeline

Do Son June 23, 2026

Google announced its Android developer verification program in 2025. The plan requires a valid developer signature, even...

Tata Electronics Data Breach Exposes Apple and Tesla Files Tata Electronics data breach leaking Apple and Tesla component design and specification files on a dark web site

Tata Electronics data breach leaking Apple and Tesla component design and specification files on a dark web site

Tata Electronics Data Breach Exposes Apple and Tesla Files

Do Son June 23, 2026

India’s Tata Group has confirmed to Reuters that it recently suffered a cyberattack. Hackers claim they stole...

Apple AirPort Utility deprecated notice on legacy wireless routers AFP protocol macOS 27, SMB3 protocol, Apple Filing Protocol, file sharing protocol Apple WWDC 2026 announcements

Apple AirPort Utility Deprecated in iOS 27 & macOS 27

Do Son June 23, 2026

Apple appears to be systematically dismantling its legacy ecosystem. Following the termination of Time Capsule backup protocol...

iOS 27 Developer Beta 2 Adds Write with Siri and RCS Replies iOS 27 Developer Beta 2 new features including Write with Siri keyboard button and RCS inline replies

iOS 27 Developer Beta 2 new features including Write with Siri keyboard button and RCS inline replies

iOS 27 Developer Beta 2 Adds Write with Siri and RCS Replies

Do Son June 23, 2026

Apple has released iOS 27 Developer Beta 2 to developers. Users eager to try new features can...

Resolving the Codex SSD Wear Issue Codex v0.142.0 update addressing the SSD wear issue and SQLite logging optimizations

Resolving the Codex SSD Wear Issue

Do Son June 23, 2026

The Codex desktop and CLI versions continuously wrote low-level logs to the local database. Consequently, this high-frequency...

Tinyproxy Request Smuggling Flaws Expose Networks Tinyproxy request smuggling diagram showing CVE-2026-54388 vulnerabilities

Tinyproxy Request Smuggling Flaws Expose Networks

Do Son June 23, 2026

TL;DR Three critical Tinyproxy request smuggling vulnerabilities threaten network security. These flaws allow attackers to inject arbitrary...

libssh2 vulnerability CVE-2026-55200 enabling remote code execution via out-of-bounds write

Critical libssh2 Vulnerability CVE-2026-55200 Enables Remote Code Execution

Do Son June 23, 2026

TL;DR A serious libssh2 vulnerability now puts SSH clients at risk. Researchers track it as CVE-2026-55200,...

MariaDB server vulnerabilities diagram showing shell command execution risks

MariaDB Server Vulnerabilities Allow CVSS 10 Attacks

Do Son June 23, 2026

TL;DR Three serious MariaDB server vulnerabilities threaten database environments. The most severe flaw carries a maximum CVSS...

Mitel Patches 12 Critical MiCollab Vulnerabilities Rated Up to CVSS 10.0 Mitel MiCollab vulnerabilities MISA-2026-0005 command injection flaws rated CVSS 10.0

Mitel MiCollab vulnerabilities MISA-2026-0005 command injection flaws rated CVSS 10.0

Mitel Patches 12 Critical MiCollab Vulnerabilities Rated Up to CVSS 10.0

Do Son June 23, 2026

TL;DR Mitel disclosed 12 security flaws in MiCollab and the MiVoice Business Solution Virtual Instance (MiVB SVI)....

vendor-signed UEFI applications Secure Boot bypass via BYOVD attack and UEFI DBX revocation

Vendor-Signed UEFI Applications Allow Secure Boot Bypass

Do Son June 23, 2026

TL;DR CERT/CC disclosed a Secure Boot bypass that affects many vendor-signed UEFI applications. ESET researcher Martin Smolar...

HAProxy Vulnerabilities Expose Reverse-Proxy Servers HAProxy vulnerabilities diagram showing reverse-proxy security risks

HAProxy Vulnerabilities Expose Reverse-Proxy Servers

Do Son June 23, 2026

TL;DR Two critical flaws affect the HAProxy software. First, an integer overflow bug allows response smuggling....

FBI Warns of Traffic Distribution Systems in Cyber Attacks Diagram showing how cyber criminals use traffic distribution systems to redirect users to malicious websites.

Diagram showing how cyber criminals use traffic distribution systems to redirect users to malicious websites.

FBI Warns of Traffic Distribution Systems in Cyber Attacks

Do Son June 22, 2026

At a Glance Actor or Group: Unidentified cyber criminals Activity Type: Malicious website redirection and malware distribution...

Google Uncovers UNC6508 Cyber Espionage Campaign Diagram showing UNC6508 cyber espionage attack flow and INFINITERED malware.

Google Uncovers UNC6508 Cyber Espionage Campaign

Do Son June 22, 2026

At a Glance Actor: UNC6508 (suspected PRC-nexus threat actor) Activity Type: Cyber espionage, bespoke malware deployment, data...

QNAP Patches QuMagie Flaws Exposing Private Media Files QNAP QuMagie vulnerabilities allowing unauthenticated information disclosure of media files in QSA-26-35

QNAP QuMagie vulnerabilities allowing unauthenticated information disclosure of media files in QSA-26-35

QNAP Patches QuMagie Flaws Exposing Private Media Files

Do Son June 22, 2026

TL;DR QNAP has patched four QNAP QuMagie vulnerabilities, three of which need no login at all....

Malicious Steam Wallpapers Spread Malware to Gamers Malicious Steam wallpapers targeting the Wallpaper Engine app

Malicious Steam Wallpapers Spread Malware to Gamers

Do Son June 22, 2026

At a Glance Malware Family: Various (DarkKomet, infostealers, crypto miners) Threat Actor: Suspected multiple independent hacking groups...

Apache Doris SQL Injection Vulnerability CVE-2025-66336 Apache Doris SQL injection diagram showing CVE-2025-66336 metadata query path bypass

Apache Doris SQL Injection Vulnerability CVE-2025-66336

Do Son June 22, 2026

TL;DR Apache Doris version 0.6.1 patches a severe security flaw in its MCP Server. Specifically, an Apache...

Microsoft Edge Google Account Login Coming Soon

Microsoft Edge Google account login interface and synchronization settings Browser Choice Alliance letter Microsoft Edge cleartext credentials memory dump Microsoft Edge auto-startup Microsoft Edge Collections sunset, export Edge Collections CSV Edge IE Mode Zero-Day, Chakra Exploit Windows Search, Microsoft Edge AI video translation, Edge browser Microsoft Editor, Edge Edge Developer tools Windows 10 ESU, Microsoft Edge Microsoft Edge, FCP Optimization CVE-2023-36735 Edge, AI Search

Microsoft Edge Google Account Login Coming Soon

Do Son June 22, 2026

Currently, the Microsoft Edge browser exclusively supports Microsoft accounts for authentication. Following a successful sign-in, the browser...

SHEETCREEP Malware Abuses Google Sheets API for Command-and-Control security-de

SHEETCREEP Malware Abuses Google Sheets API for Command-and-Control

Do Son June 22, 2026

At a glance Malware family SHEETCREEP (SHEET#CREEP), C# .NET RAT Threat actor APT36 / Transparent Tribe (suspected,...

Critical Alert 2 Active Exploits Detected Today