News Archives • Page 324 of 633 • Daily CyberSecurity

Lazarus Group’s Infostealer Malware Targets Developers in New Espionage Campaigns

Ddos February 13, 2025

North Korea’s infamous Lazarus Group is back in the spotlight, this time deploying a sophisticated infostealer malware...

CVE-2025-23359: NVIDIA Container Toolkit Flaw Could Lead to Code Execution and Denial of Service

Ddos February 13, 2025

NVIDIA has released a security update to address a high-severity vulnerability in its Container Toolkit for Linux...

Russian Influence Operations Target German Elections Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Mercenary Akula European Financial Targeting AI-Generated Malware React2Shell Exploit UAT-8837 Critical Infrastructure Attack APT36, BOSS Linux BRICKSTORM Malware, China Espionage Curly COMrades, MucorAgent Chinese APT - HTTP Client Tools Shuckworm Cyber Espionage

Russian Influence Operations Target German Elections

Ddos February 13, 2025

A new report from Insikt Group reveals that Russia-linked influence operations are actively targeting the February 23,...

XSS Flaw in Apache Atlas (CVE-2024-46910) Puts Data Governance at Risk CVE-2024-46910 Apache Atlas Vulnerability Gremlin Code Injection

XSS Flaw in Apache Atlas (CVE-2024-46910) Puts Data Governance at Risk

Ddos February 13, 2025

A serious security vulnerability has been uncovered in Apache Atlas, the open-source governance and metadata management tool...

South Korean CSOs Under Cyberattack: 3-Year Study South Korean Cyberattack

South Korean CSOs Under Cyberattack: 3-Year Study

Ddos February 13, 2025

A three-year study conducted by independent security researcher Ovie (Ovi) has exposed the scale and sophistication of...

macOS Security Breach: CVE-2024-54531 PoC Published, Attackers Can Bypass KASLR

Ddos February 12, 2025

Security researchers from Korea University have unveiled an attack that successfully bypasses Kernel Address Space Layout Randomization...

OpenAI to Integrate o3 Model into GPT-5, Offering Free Access to All Users o3-Pro model AI Model, OpenAI ChatGPT malware - GPT-5 Model

OpenAI to Integrate o3 Model into GPT-5, Offering Free Access to All Users

Ddos February 12, 2025

Following the announcement of the upcoming GPT-5 large natural language model, OpenAI CEO Sam Altman has revealed...

zkLend Hacked: $9.5 Million in Bitcoin Stolen TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

zkLend Hacked: $9.5 Million in Bitcoin Stolen

Ddos February 12, 2025

In a recent turn of events, a critical security flaw within the smart contracts of zkLend, a...

CVE-2025-0108 & CVE-2025-0110: Palo Alto Networks Fixes High-Severity PAN-OS Vulnerabilities PAN-OS IKEv2 Buffer Overflow CVE-2026-0263 Palo Alto Cortex XDR Privilege Escalation Palo Alto Networks Vulnerability CVE-2026-0229 PAN-OS Vulnerability CVE-2026-0227 CVE-2024-5914 - Palo Alto Networks - CVE-2025-0108 & CVE-2025-0110

CVE-2025-0108 & CVE-2025-0110: Palo Alto Networks Fixes High-Severity PAN-OS Vulnerabilities

Ddos February 12, 2025

Palo Alto Networks has released security advisories addressing two high-severity vulnerabilities in its PAN-OS network security operating...

CrowdStrike Addresses High-Severity TLS Vulnerability in Falcon Sensor for Linux (CVE-2025-1146) LogScale Vulnerability Path Traversal Falcon Sensor File Deletion, CVE-2025-42701 CrowdStrike update crashes - CVE 2025-1146

CrowdStrike Addresses High-Severity TLS Vulnerability in Falcon Sensor for Linux (CVE-2025-1146)

Ddos February 12, 2025

CrowdStrike has issued a security advisory regarding a high-severity Transport Layer Security (TLS) vulnerability in its Falcon...

Apple Google EU alliance DMA European Commission Breach Trivy Supply Chain Attack Europa.eu Breach EU Cloud Infrastructure EU Cyber Sanctions State-Sponsored Hacking EU 2040 Emissions Target, Europe Climate Leadership AWS Azure DMA Cloud Gatekeeper DSA violation, illegal content Apple DMA Delay, iPhone Mirroring EU EU Age Verification, Google Play Integrity Corning Antitrust, EU Competition Apple EU Digital Markets Act App Store commission European Union cyberattacks - InvestAI EU Targets Musk’s X Digital Markets Act, EU fines

InvestAI: EU Invests €200 Billion in AI to Rival US and China

Ddos February 12, 2025

At the AI Action Summit in Paris, the European Union unveiled a €200 billion (approximately $206 billion)...

Checkmarx Breach Supply Chain Attack Ivanti EPMM RCE CVE-2026-1281 Modular DS Vulnerability CVE-2026-23550 D-Link RCE Vulnerability CVE-2026-0625 Christmas 2025 GreyNoise Campaign, Japan-Based Initial Access Broker React2Shell Zero-Day, APT Active Exploitation WordPress vulnerability, authentication bypass FreePBX, zero-day Trend Micro Apex One, Remote Code Execution BitoPro Hack, Crypto Theft UNC5337 - CVE-2022-47945 Safe{Wallet} hack Fortinet vulnerability, CVE-2024-21762, FortiGate attack Balloonfly, Play ransomware Ivanti EPMM CVE-2025-4427 and CVE-2025-4428

Attackers Ramp Up Exploitation of CVE-2022-47945 and CVE-2023-49103 Vulnerabilities

Ddos February 12, 2025

A new report from GreyNoise reveals a significant spike in exploitation activity targeting two vulnerabilities: one in...

BTMOB RAT: Beware of Fake Streaming and Crypto Mining Apps

Ddos February 12, 2025

A newly discovered Android Remote Access Trojan (RAT) called BTMOB RAT has been observed targeting unsuspecting users...

CVE-2024-0112: NVIDIA Patches High-Severity Vulnerability in Jetson and IGX Orin Platforms NemoClaw Prompt Injection AI Sandbox Security NVIDIA Physical AI CES 2026, Jetson T4000 robotics hardware NVIDIA AI Security, Isaac Lab RCE NVIDIA Driver RCE, CVE-2025-23309 NVIDIA Triton, AI Server Vulnerabilities CVE-2023-31029 & CVE-2023-31024 - CVE‑2024-0112

NemoClaw Prompt Injection AI Sandbox Security NVIDIA Physical AI CES 2026, Jetson T4000 robotics hardware NVIDIA AI Security, Isaac Lab RCE NVIDIA Driver RCE, CVE-2025-23309 NVIDIA Triton, AI Server Vulnerabilities CVE-2023-31029 & CVE-2023-31024 - CVE‑2024-0112

CVE-2024-0112: NVIDIA Patches High-Severity Vulnerability in Jetson and IGX Orin Platforms

Ddos February 12, 2025

NVIDIA has issued a security bulletin announcing a software update for its Jetson AGX Orin series, including...

Stealthy Crypto-Mining Malware Hijacking PCs via USB Drives CoinMiner Malware

Stealthy Crypto-Mining Malware Hijacking PCs via USB Drives

Ddos February 12, 2025

A new report from AhnLab Security Intelligence Center (ASEC) reveals a concerning trend: the distribution of cryptocurrency-mining...

GitLab Patches High-Severity XSS Flaw (CVE-2025-0376) and Other Security Flaws in Latest Release CVE-2024-9164 - CVE-2025-0376 GitLab Wiki XSS, Session Hijack Flaw

CVE-2024-9164 - CVE-2025-0376 GitLab Wiki XSS, Session Hijack Flaw

GitLab Patches High-Severity XSS Flaw (CVE-2025-0376) and Other Security Flaws in Latest Release

Ddos February 12, 2025

GitLab has issued a security advisory, urging users to update their installations immediately to address a range...

Chrome Patches Four High-Severity Vulnerabilities in Latest Stable Channel Update CVE-2025-0995

Chrome Patches Four High-Severity Vulnerabilities in Latest Stable Channel Update

Ddos February 12, 2025

In a update for desktop users, Google has released Chrome version 133.0.6943.98/.99 for Windows and Mac, and...

Chinese Hackers Suspected in Ivanti CSA Attacks: Webshells and Lateral Movement Detected Sources and related content Quest KACE Vulnerability CVE-2025-32975 FortiGate SSO Bypass, Active Exploitation GoAnywhere RCE, Storm-1175 Cisco VPN RCE, ASA Zero-Day TinyColor Supply Chain Attack SK Telecom, data breach Erlang/OTP RCE, OT Network Security Ivanti CSA Attacks WordPress RCE, Theme Vulnerability