News Archives • Page 31 of 651 • Daily CyberSecurity

Architectural Breach: AMD Zen 2 Flaw Allows Higher-Privilege Instruction Corruption AMD Zen 2 Vulnerability CVE-2025-54518 AMD EPYC processors vulnerability - CVE-2023-31315

AMD Zen 2 Vulnerability CVE-2025-54518 AMD EPYC processors vulnerability - CVE-2023-31315

Architectural Breach: AMD Zen 2 Flaw Allows Higher-Privilege Instruction Corruption

Do Son May 14, 2026

In a significant revelation for the hardware security world, AMD has identified a vulnerability targeting its Zen...

GitLab Critical Patch: High-Severity XSS and Unauthenticated DoS Flaws Hit Self-Managed Instances GitLab security updates, GitLab patch release, CVE-2026-6552, CVE-2026-10087, CVE-2026-7250 GitLab Security Update May 2026 GitLab XSS and DoS Vulnerabilities GitLab Security Session Hijacking GitLab Security Update, CI/CD Vulnerability GitLab DoS, Security Update bypassing SAML - CVE-2024-8312 and CVE-2024-6826

GitLab security updates, GitLab patch release, CVE-2026-6552, CVE-2026-10087, CVE-2026-7250 GitLab Security Update May 2026 GitLab XSS and DoS Vulnerabilities GitLab Security Session Hijacking GitLab Security Update, CI/CD Vulnerability GitLab DoS, Security Update bypassing SAML - CVE-2024-8312 and CVE-2024-6826

GitLab Critical Patch: High-Severity XSS and Unauthenticated DoS Flaws Hit Self-Managed Instances

Do Son May 14, 2026

In a major move to secure its DevOps platform, GitLab has released important security versions for both...

Critical 9.6 Severity Ivanti Xtraction Flaw Exposes Sensitive Data Ivanti EPMM security updates Ivanti ITSM vulnerability authenticated privilege escalation Ivanti Xtraction vulnerability CVE-2026-8043 Ivanti EPM RCE, SQL Injection Ivanti EPM, remote code execution CVE-2024-50330 - CVE-2025-0282 and CVE-2025-0283

Ivanti EPMM security updates Ivanti ITSM vulnerability authenticated privilege escalation Ivanti Xtraction vulnerability CVE-2026-8043 Ivanti EPM RCE, SQL Injection Ivanti EPM, remote code execution CVE-2024-50330 - CVE-2025-0282 and CVE-2025-0283

Critical 9.6 Severity Ivanti Xtraction Flaw Exposes Sensitive Data

Do Son May 14, 2026

Ivanti has issued an urgent security update for its Xtraction platform to address a critical vulnerability. Carrying...

Critical MongoDB Flaw CVE-2026-8053 Paves the Way for Server Takeover MongoDB Vulnerability CVE-2026-25611 MongoDB zlib vulnerability, CVE-2025-14847 MongoDB Vulnerabilities, Data Access CVE-2024-6376 CVE-2025-0755

MongoDB Vulnerability CVE-2026-25611 MongoDB zlib vulnerability, CVE-2025-14847 MongoDB Vulnerabilities, Data Access CVE-2024-6376 CVE-2025-0755

Critical MongoDB Flaw CVE-2026-8053 Paves the Way for Server Takeover

Do Son May 14, 2026

Time-series data is the backbone of countless modern applications, from financial tickers to IoT monitoring. However, a...

OPNsense Critical Root RCE (CVE-2026-44194 & CVE-2026-45158) Details and PoC Disclosed OPNsense RCE Vulnerability CVE-2026-44194 PoC

OPNsense Critical Root RCE (CVE-2026-44194 & CVE-2026-45158) Details and PoC Disclosed

Do Son May 14, 2026

The open-source firewall community is on high alert today after critical security vulnerabilities in OPNsense were dragged...

Urgent Update: Composer Vulnerability Leaks GitHub Secrets in Plaintext Logs (CVE-2026-45793) CVE-2026-40176, CVE-2026-40261 Composer GitHub Token Leak CVE-2026-45793

CVE-2026-40176, CVE-2026-40261 Composer GitHub Token Leak CVE-2026-45793

Urgent Update: Composer Vulnerability Leaks GitHub Secrets in Plaintext Logs (CVE-2026-45793)

Do Son May 14, 2026

In a critical security alert for the PHP community, Nils Adermann, Co-Creator of Composer, has issued an...

Critical 18-Year-Old NGINX RCE (CVE-2026-42945) and GitHub PoC Disclosed NGINX RCE Vulnerability CVE-2026-42945 PoC

Critical 18-Year-Old NGINX RCE (CVE-2026-42945) and GitHub PoC Disclosed

Do Son May 14, 2026

Security researcher Zhenpeng (Leo) Lin of depthfirst has unveiled a critical, 18-year-old vulnerability lurking within NGINX. The...

Fragnesia Universal Linux Root LPE Details and One-Line PoC Disclosed Fragnesia Linux Exploit Universal LPE PoC

Fragnesia Universal Linux Root LPE Details and One-Line PoC Disclosed

Do Son May 13, 2026

The Linux security landscape has been rocked by the public disclosure of Fragnesia, a universal local privilege...

Chrome for Android Gains Gemini 3.1, Nano Banana Image Synthesis, and “Auto Browse” Powers Chrome Gemini 3.1 Android update

Chrome for Android Gains Gemini 3.1, Nano Banana Image Synthesis, and “Auto Browse” Powers

Do Son May 13, 2026

Google has formally proclaimed that it will bestow a suite of avant-garde capabilities upon the Android iteration...

Android 17 Adds Native AirDrop Support and “Zero-Friction” iOS Migration Android 17 AirDrop support

Android 17 Adds Native AirDrop Support and “Zero-Friction” iOS Migration

Do Son May 13, 2026

Ahead of the formal inauguration of Google I/O 2026, Google utilized “The Android Show: I/O Edition 2026”...

The “Unbreakable” OS: Android 17 Unveils AI-Powered Fraud Defense and Thief-Proof Biometrics Android 17 security features

The “Unbreakable” OS: Android 17 Unveils AI-Powered Fraud Defense and Thief-Proof Biometrics

Do Son May 13, 2026

In the face of increasingly rampant transnational financial fraud, sophisticated social engineering, and the rising tide of...

Security Alert: Cemu Emulator Linux Releases Compromised via GitHub Backdoor (May 2026) Cemu emulator Linux malware Blitz Brigantine AOBackdoor GitHub Malware Campaign StealC Infostealer TamperedChef Malware, SEO Poisoning Carbanak malware RubyGems Supply Chain, Infostealer

Cemu emulator Linux malware Blitz Brigantine AOBackdoor GitHub Malware Campaign StealC Infostealer TamperedChef Malware, SEO Poisoning Carbanak malware RubyGems Supply Chain, Infostealer

Security Alert: Cemu Emulator Linux Releases Compromised via GitHub Backdoor (May 2026)

Do Son May 13, 2026

The renowned open-source Wii U emulator, Cemu, has promulgated a security bulletin detailing a sophisticated compromise of...

Agentic AI is Automating Live Intrusions in Latin America Agentic AI Cyber Attacks SHADOW-AETHER Threat Groups

Agentic AI is Automating Live Intrusions in Latin America

Do Son May 13, 2026

In a discovery that underscores the rapid evolution of the threat landscape, TrendAI Research has identified two...

JDownloader Site Breach Installs Rootkits that Kill Your Antivirus Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

JDownloader Site Breach Installs Rootkits that Kill Your Antivirus

Do Son May 13, 2026

In a sophisticated supply-chain attack, attackers compromised the official JDownloader website between May 6 and May 7,...

GemStuffer RubyGems Campaign RubyGems Data Exfiltration TanStack npm Compromise Supply Chain Attack DNS Hijacking APT28 (Fancy Bear) OpenVSX Supply Chain Attack Checkmarx Plugin Breach Stryker Cyberattack CISA Alert Trans-Regional Cyber Conflict Operation Epic Fury Cyber Operation MacroMaze APT28 Cyber Espionage Notepad++ Supply Chain Attack Lotus Blossom Group Defense Industrial Base Threats GTIG Report APT28 Operation Neusploit CVE-2026-21509 Bookworm Malware

GemStuffer: Attackers Weaponize RubyGems as a Covert Data Drop for UK Gov Scraping

Do Son May 13, 2026

Security researchers are sounding the alarm on a highly resourceful new campaign dubbed “GemStuffer.” Uncovered by Socket’s...

Pre-Auth RCE Exposed: Apache HTTP Server Vulnerability and Exploit Code Hit the Public Apache HTTP Server RCE CVE-2026-23918 PoC

Pre-Auth RCE Exposed: Apache HTTP Server Vulnerability and Exploit Code Hit the Public

Do Son May 13, 2026

The detailed disclosure of a critical flaw in Apache HTTP Server 2.4.66 is now public. The vulnerability,...

Exploit Code Released: Public PoC Dumps for Windows BitLocker Bypass and SYSTEM Elevation Zero-Days BitLocker Bypass PoC Windows Zero-Day Exploit 2026

BitLocker Bypass PoC Windows Zero-Day Exploit 2026

Exploit Code Released: Public PoC Dumps for Windows BitLocker Bypass and SYSTEM Elevation Zero-Days

Do Son May 13, 2026

In a escalation of hostilities against Microsoft, a researcher known as Chaotic Eclipse (operating under the alias...

Critical-Severity XSS Flaws Uncovered in Siemens SIMATIC S7 Web Servers Siemens SIMATIC S7 Vulnerability Industrial PLC XSS CVE-2024-44102 - Siemens TeleControl Server Basic

Siemens SIMATIC S7 Vulnerability Industrial PLC XSS CVE-2024-44102 - Siemens TeleControl Server Basic

Critical-Severity XSS Flaws Uncovered in Siemens SIMATIC S7 Web Servers

Do Son May 13, 2026

Siemens ProductCERT issued an urgent security advisory regarding multiple Cross-Site Scripting (XSS) vulnerabilities found within the web...

9.8 Severity Alert: Malicious Git Branches Can Hijack Your WebdriverIO Build Servers WebdriverIO Command Injection CVE-2026-25244

9.8 Severity Alert: Malicious Git Branches Can Hijack Your WebdriverIO Build Servers

Do Son May 13, 2026

A critical security vulnerability has been found in WebdriverIO, a popular open-source test automation framework used for...

Microsoft Patch Tuesday May 2026 Netlogon RCE CVE-2026-41089 SharePoint Exploit Patch Tuesday Windows DWM Zero-Day CVE-2026-21519 CVE-2024-49039 Microsoft Patch Tuesday March 2025

Microsoft Patch Tuesday May 2026 Fixes 137 Flaws, Including Netlogon RCE and Critical SSO Bypass

Do Son May 13, 2026

Microsoft has dropped a heavy-hitting security update for May 2026, addressing a total of 137 vulnerabilities. This...

Critical Alert 2 Active Exploits Detected Today