News Archives • Page 302 of 633 • Daily CyberSecurity

Gmail Search Gets Smart: AI-Powered Results to Find Emails Faster

Gmail AI Training Google Privacy Policy Gmail search results

Gmail Search Gets Smart: AI-Powered Results to Find Emails Faster

Ddos March 24, 2025

By default, Gmail’s search function ranks results chronologically, allowing users to locate past emails based on their...

Urgent: Patch Your Next.js for Authorization Bypass (CVE-2025-29927) CVE-2024-56332 - CVE-2025-29927 Next.js, Cache Poisoning

Urgent: Patch Your Next.js for Authorization Bypass (CVE-2025-29927)

Ddos March 24, 2025

Next.js, the popular React framework empowering developers to build full-stack web applications with speed and efficiency, has...

Inside Hunters International Group: How a Retailer Became the Latest Ransomware Victim Attack Flow Diagram

Inside Hunters International Group: How a Retailer Became the Latest Ransomware Victim

Ddos March 24, 2025

In the dynamic realm of cybercrime, ransomware groups continuously evolve their tactics, techniques, and procedures (TTPs) to...

Critical Vulnerability Discovered in Popular WordPress Security Plugin WP Ghost CVE-2025-26909

Critical Vulnerability Discovered in Popular WordPress Security Plugin WP Ghost

Ddos March 24, 2025

A high-severity security vulnerability has been identified in the popular WordPress plugin, WP Ghost. With over 200,000...

CVE-2025-29922: Critical Flaw in kcp Lets Attackers Manipulate Any Workspace

Ddos March 24, 2025

A high-severity vulnerability has been identified in the kcp project, a Kubernetes-like control plane designed for multi-tenant...

Unmasking ALTDOS, DESORDEN, GHOSTR, and Omid16B: The Saga of a Cybercriminal

Ddos March 24, 2025

In a four-year pursuit that spanned multiple aliases and continents, law enforcement has finally apprehended a notorious...

Don’t Click! Fake Chat Used in Meta Business Account Phishing Layoff Phishing Scam Remcos RAT Malware Aruba Phishing, Phishing-as-a-Service PyPI, phishing CVE-2024-25608 PyPI Phishing, Credential Theft

Layoff Phishing Scam Remcos RAT Malware Aruba Phishing, Phishing-as-a-Service PyPI, phishing CVE-2024-25608 PyPI Phishing, Credential Theft

Don’t Click! Fake Chat Used in Meta Business Account Phishing

Ddos March 24, 2025

“What if you received an email stating, ‘YOUR ADS ARE TEMPORARILY SUSPENDED’? The urgency of the email...

Critical Remote Code Execution Vulnerability in vLLM via Mooncake Integration vLLM Vulnerability CVE-2026-22778 vLLM Memory Corruption, AI Inference RCE CVE-2025-29783 CVE-2025-32444 vLLM vulnerability vLLM, Remote Code Execution

vLLM Vulnerability CVE-2026-22778 vLLM Memory Corruption, AI Inference RCE CVE-2025-29783 CVE-2025-32444 vLLM vulnerability vLLM, Remote Code Execution

Critical Remote Code Execution Vulnerability in vLLM via Mooncake Integration

Ddos March 24, 2025

vLLM, a popular library for Large Language Model (LLM) inference and serving, has recently addressed a critical...

AMOS Stealer Reloaded: Inside a Fully Undetected macOS Data Heist

Ddos March 24, 2025

macOS users, beware. A new, fully undetected (FUD) version of the AMOS Stealer is out in the...

Nuxt Users Beware: CVE-2025-27415 Opens the Door to Cache Poisoning Attacks

Ddos March 24, 2025

A newly discovered vulnerability in the popular Nuxt framework could allow attackers to poison CDN caches and...

ABYSSWORKER: The EDR-Killing Driver Lurking in the Shadows Fortinet EMS - CVE-2023-48788 Medusa Ransomware TTPs

ABYSSWORKER: The EDR-Killing Driver Lurking in the Shadows

Ddos March 24, 2025

Elastic Security Labs has been closely monitoring a financially motivated campaign leveraging MEDUSA ransomware, delivered through a...

Fake Cloudflare Verification Prompts Deliver LummaStealer Trojan Through Infected WordPress Sites

Ddos March 23, 2025

A widespread malware campaign is abusing fake Cloudflare verification prompts to trick users into running malicious PowerShell...

CVE-2025-27888: Apache Druid Flaw Opens Door to SSRF and XSS Risks in Real-Time Analytics Platforms

Ddos March 23, 2025

Apache has disclosed a critical security vulnerability in Apache Druid, a real-time analytics database widely used for...

CVE-2025-1758: Critical Buffer Overflow in Kemp LoadMaster Opens Door to Remote Code Execution CVE-2024-7763 - CVE-2024-8785 exploit CVE-2025-1758

CVE-2025-1758: Critical Buffer Overflow in Kemp LoadMaster Opens Door to Remote Code Execution

Ddos March 23, 2025

A high-severity vulnerability has been identified in Progress Software’s Kemp LoadMaster, a popular application delivery controller (ADC)...

Telegram Passkey SMS Login Replacement Telegram Zero-Click Vulnerability

Operation Zero Offers Millions for Telegram Zero-Click Exploits

Ddos March 23, 2025

The Russian vulnerability broker, Operation Zero, is a company specializing in the acquisition and sale of security...

Europol Cracks Down on €6.7M Hearing Aid Fraud Scheme Exploiting French Healthcare

Ddos March 22, 2025

In a high-impact cross-border operation, Europol has dismantled a criminal network responsible for a massive €6.7 million...

RansomHub Deploys Custom Backdoor ‘Betruger’ in Targeted Ransomware Attacks RansomHub ransomware gang - Betruger backdoor

RansomHub Deploys Custom Backdoor ‘Betruger’ in Targeted Ransomware Attacks

Ddos March 22, 2025

A new report from Symantec Threat Hunter Team reveals that at least one affiliate of the RansomHub...

Critical Security Flaw in ArcGIS Enterprise Exposes Admin Accounts to Remote Takeover Ollama Heap Leak CVE-2026-5757 Anritsu Vulnerability Authentication Bypass Gootloader Malware Malformed ZIP Evasion Blender Malware, StealC V2 Lectora, XSS CVE-2025-9125 HFS RCE, Template Injection Arch Linux Malware, CHAOS RAT CVE-2024-56404 - CVE-2024-39327 CVE-2025-2538

Ollama Heap Leak CVE-2026-5757 Anritsu Vulnerability Authentication Bypass Gootloader Malware Malformed ZIP Evasion Blender Malware, StealC V2 Lectora, XSS CVE-2025-9125 HFS RCE, Template Injection Arch Linux Malware, CHAOS RAT CVE-2024-56404 - CVE-2024-39327 CVE-2025-2538

Critical Security Flaw in ArcGIS Enterprise Exposes Admin Accounts to Remote Takeover

Ddos March 22, 2025

Esri has disclosed a critical vulnerability in its ArcGIS Enterprise platform that could allow attackers to hijack...

Dragon RaaS: Pro-Russian Hacktivist Group Walks the Razor’s Edge Between Cybercrime and Propaganda Dragon Team ransom note

Dragon RaaS: Pro-Russian Hacktivist Group Walks the Razor’s Edge Between Cybercrime and Propaganda

Ddos March 22, 2025

A new Ransomware-as-a-Service (RaaS) player is carving out its niche in the ever-evolving threat landscape. Known as...

CVE-2024-10442: Synology Replication Service Vulnerability Scores Maximum CVSS Rating Synology Chat Server vulnerabilities Synology security update Synology DSM Update NAS Security Vulnerability Synology VPN Update SSL VPN Vulnerability Synology Telnet Flaw DSM Security Update Synology DSM Telnet vulnerability BeeStation Zero-Day, Pwn2Own RCE CVE-2024-11131 & CVE-2024-10442 CVE-2025-2848 Synology, NAS

CVE-2024-10442: Synology Replication Service Vulnerability Scores Maximum CVSS Rating

Ddos March 20, 2025

Synology has released updated security advisories detailing a critical vulnerability in its Replication Service. The vulnerability allows...