Daily CyberSecurity • Page 127 of 739 • Zero-hour alerts. Unmatched analysis.

High-Severity Flaws in TeamViewer DEX Allow Attackers to Hijack Nomad Services CVE-2024-0819 TeamViewer DEX Vulnerabilities, CVE-2025-44016

High-Severity Flaws in TeamViewer DEX Allow Attackers to Hijack Nomad Services

Do Son December 25, 2025

TeamViewer has issued important security bulletins addressing multiple vulnerabilities across its Digital Employee Experience (DEX) product line...

ChatGPT Atlas Under Guard: OpenAI Fortifies Browser Agent Against “Prompt Injection” Attacks ChatGPT Atlas, Prompt Injection Safeguards

ChatGPT Atlas Under Guard: OpenAI Fortifies Browser Agent Against “Prompt Injection” Attacks

Do Son December 25, 2025

As artificial intelligence begins to browse the web on our behalf, the battleground for security is shifting...

The “lc” Leak: Critical 9.3 Severity LangChain Flaw Turns Prompt Injections into Secret Theft LangChain Serialization Injection, CVE-2025-68664

The “lc” Leak: Critical 9.3 Severity LangChain Flaw Turns Prompt Injections into Secret Theft

Do Son December 25, 2025

A critical vulnerability was found in LangChain, the popular open-source framework used to power Large Language Model...

Hackers Weaponize npm to Hunt Critical Infrastructure Sales Teams Supply Chain Phishing, npm Abuse

Hackers Weaponize npm to Hunt Critical Infrastructure Sales Teams

Do Son December 25, 2025

A new investigation by The Socket Threat Research Team has uncovered a sophisticated spear-phishing operation that has...

Zimbra Under Siege: High-Severity LFI Vulnerability Exposes Internal Files to Unauthenticated Attackers

Do Son December 25, 2025

Administrators of the popular Zimbra Collaboration Suite (ZCS) are being urged to patch immediately after the discovery...

“Contagious Interview” Goes macOS: North Korean Hackers Deploy Stealthy “DriverFixer” Stealer DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

DriverFixer0428, Contagious Interview Cache Smuggling, ClickFix Evasion North Korean Cyber Espionage

“Contagious Interview” Goes macOS: North Korean Hackers Deploy Stealthy “DriverFixer” Stealer

Do Son December 25, 2025

A notorious North Korean cyber-espionage campaign known for targeting job seekers has expanded its arsenal with a...

The Ghost in the Market: Unmasking “Fly,” the Secret Architect of the Infamous Russian Market CRussian Market, "Fly" (Flyded) hange Healthcare Cyberattack - CVE-2024-50603 Exploit

CRussian Market, "Fly" (Flyded) hange Healthcare Cyberattack - CVE-2024-50603 Exploit

The Ghost in the Market: Unmasking “Fly,” the Secret Architect of the Infamous Russian Market

Do Son December 25, 2025

For over a decade, Russian Market has stood as a pillar of the cybercrime underground, a sprawling...

Optimizing Exploration Workflows: Custom Upstream Tools for Greater Efficiency CVE-2024-31070 & CVE-2024-36491

Optimizing Exploration Workflows: Custom Upstream Tools for Greater Efficiency

Do Son December 24, 2025

The Business Challenge Behind Modern Exploration Workflows Exploration and early-stage production activities in the oil and gas...

Linux Kernel 6.19 Slashes Latency & Boosts Legacy AMD GPUs by 30% Linux Kernel 6.19 AMDGPU update, GCN 1.0 1.1 performance boost Linux Sanctions Risk Linux i486

Linux Kernel 6.19 AMDGPU update, GCN 1.0 1.1 performance boost Linux Sanctions Risk Linux i486

Linux Kernel 6.19 Slashes Latency & Boosts Legacy AMD GPUs by 30%

Do Son December 24, 2025

In 2011, AMD introduced its Graphics Core Next 1.0 architecture, codenamed Southern Islands, debuting with the now-iconic...

Racing the Zombie: PoC Released for Linux Kernel POSIX Timer Vulnerability (CVE-2025-38352) French Digital Sovereignty Greg Kroah-Hartman AI code review CVE-2025-38352 Linux kernel exploit, Android 32-bit UAF vulnerability CVE-2022-36946 Linux Kernel 6.16, Hardware Support

French Digital Sovereignty Greg Kroah-Hartman AI code review CVE-2025-38352 Linux kernel exploit, Android 32-bit UAF vulnerability CVE-2022-36946 Linux Kernel 6.16, Hardware Support

Racing the Zombie: PoC Released for Linux Kernel POSIX Timer Vulnerability (CVE-2025-38352)

Do Son December 24, 2025

A vulnerability in the Linux kernel’s implementation of POSIX CPU timers has drawn attention following the release...

Search Engine “Malvertising” Ring Disrupted: DOJ Seizes Backend of $14.6 Million Bank Fraud Scheme

Do Son December 24, 2025

A sprawling cybercrime operation that weaponized trusted search engines to drain millions from American bank accounts has...

The Hard-Coded Backdoor: Critical 9.8 Severity NVIDIA Flaws Grant Total Control of AI Systems NVIDIA DGX Cloud restructuring, Dwight Diercks engineering shift NVIDIA Isaac Launchable, Hard-coded Credentials NVIDIA Merlin Deserialization, AI Pipeline RCE Triton DoS Flaws, AI Inference Server Security NVIDIA AI programming AI Chips China 800VDC Data Center, AI Power Architecture CVE-2024-0114 NVIDIA Container Toolkit vulnerability Container escape

NVIDIA DGX Cloud restructuring, Dwight Diercks engineering shift NVIDIA Isaac Launchable, Hard-coded Credentials NVIDIA Merlin Deserialization, AI Pipeline RCE Triton DoS Flaws, AI Inference Server Security NVIDIA AI programming AI Chips China 800VDC Data Center, AI Power Architecture CVE-2024-0114 NVIDIA Container Toolkit vulnerability Container escape

The Hard-Coded Backdoor: Critical 9.8 Severity NVIDIA Flaws Grant Total Control of AI Systems

Do Son December 24, 2025

NVIDIA has issued an urgent security update for its Isaac Launchable software, patching a trio of critical...

Critical Network Collapse: 9.8 Severity Net-SNMP Buffer Overflow Threatens Global Monitoring Systems Net-SNMP, CVE-2025-68615

Critical Network Collapse: 9.8 Severity Net-SNMP Buffer Overflow Threatens Global Monitoring Systems

Do Son December 24, 2025

A critical security vulnerability has been found in Net-SNMP, the ubiquitous software suite used globally for network...

“Casting Call” for Malware: APT37 Poses as TV Writers to Hack Targets APT37 Artemis, Korean TV Casting Phishing

“Casting Call” for Malware: APT37 Poses as TV Writers to Hack Targets

Do Son December 24, 2025

A notorious threat group is auditioning victims for a new cyber-espionage campaign, masquerading as television production staff...

The Notarized Nightmare: New MacSync Stealer Bypasses Gatekeeper to Hijack Mac Devices OSX/Amos Stealer Electron ASAR Trojan MioLab Malware macOS Security MacSync Stealer macOS Malware ambar-src npm Malware Supply Chain Typosquatting Matryoshka Mac Malware ClickFix Crypto Scam Infostealer Evolution macOS Malware Predator Spyware Intellexa Anti-Analysis XCSSET macOS Malware, Xcode Supply Chain

OSX/Amos Stealer Electron ASAR Trojan MioLab Malware macOS Security MacSync Stealer macOS Malware ambar-src npm Malware Supply Chain Typosquatting Matryoshka Mac Malware ClickFix Crypto Scam Infostealer Evolution macOS Malware Predator Spyware Intellexa Anti-Analysis XCSSET macOS Malware, Xcode Supply Chain

The Notarized Nightmare: New MacSync Stealer Bypasses Gatekeeper to Hijack Mac Devices

Do Son December 24, 2025

The cat-and-mouse game between Apple’s security protocols and malware authors has taken a stealthy turn. A new...

“Operation IconCat”: Hackers Masquerade as Security Giants to Target Israeli Firms Operation IconCat, UNG0801 AFP cyberattack -NetWalker Ransomware VShell RAT

Operation IconCat, UNG0801 AFP cyberattack -NetWalker Ransomware VShell RAT

“Operation IconCat”: Hackers Masquerade as Security Giants to Target Israeli Firms

Do Son December 24, 2025

A new and deceptive cyber-espionage campaign is targeting Israeli organizations by disguising malicious implants as trusted antivirus...

APT-36 Uses Fake “WhatsApp Fraud” Advisory to Hack Government Systems TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

TanStack Typosquatting npm Supply Chain Attack Axios Supply Chain Attack npm Poisoning eScan Supply Chain Attack Antivirus Compromise APT-36, NCERT WhatsApp Advisory FBI alert, Salesforce Salt Typhoon, APT group ConnectWise ScreenConnect hack Nation-state cyberattack FortiGate Leak - zkLend vulnerability - TRIPLESTRENGTH Threat Actor Group Dark Storm

APT-36 Uses Fake “WhatsApp Fraud” Advisory to Hack Government Systems

Do Son December 24, 2025

The sophisticated threat group APT-36 is hacking government systems by warning them about hackers. A new intelligence...

“Webrat” Trap: Hackers Lure Junior Security Researchers with Fake GitHub Exploits Webrat Malware, Fake PoC Exploits

“Webrat” Trap: Hackers Lure Junior Security Researchers with Fake GitHub Exploits

Do Son December 24, 2025

A cunning malware campaign initially designed to trick gamers has evolved into a dangerous trap for aspiring...

Operation PCPcat: 60,000 Next.js Servers Hijacked in Just 48 Hours Knowledge Deliver RCE vulnerability FortiClient EMS Vulnerability CVE-2026-35616 Cisco SD-WAN Vulnerability CVE-2026-20122 PCPcat, Next.js RCE Salesloft breach, Salesforce CRM WIREFIRE web shell

Knowledge Deliver RCE vulnerability FortiClient EMS Vulnerability CVE-2026-35616 Cisco SD-WAN Vulnerability CVE-2026-20122 PCPcat, Next.js RCE Salesloft breach, Salesforce CRM WIREFIRE web shell

Operation PCPcat: 60,000 Next.js Servers Hijacked in Just 48 Hours

Do Son December 24, 2025

A highly automated and ruthlessly efficient cyber-espionage campaign is tearing through the cloud infrastructure of modern web...

The Final Countdown: Valve Moves Steam to 64-Bit and Sets January 2026 Cutoff Steam 64-bit Windows transition, Steam 32-bit end of life January 2026 SteamOS Steam Windows 10 32-bit

Steam 64-bit Windows transition, Steam 32-bit end of life January 2026 SteamOS Steam Windows 10 32-bit

The Final Countdown: Valve Moves Steam to 64-Bit and Sets January 2026 Cutoff

Do Son December 24, 2025

Valve previously announced that the Steam client would undergo a full transition to 64-bit, with the 32-bit...