Daily CyberSecurity • Page 136 of 739 • Zero-hour alerts. Unmatched analysis.

CVE-2025-64188 (CVSS 9.8): Critical “Soledad” Theme Flaw Lets Subscribers Take Over WordPress Sites CVE-2023-3460 WordPress Theme Critical Flaw

CVE-2025-64188 (CVSS 9.8): Critical “Soledad” Theme Flaw Lets Subscribers Take Over WordPress Sites

Do Son December 12, 2025

A critical security vulnerability has been discovered in Soledad, one of the most popular general-purpose WordPress themes...

DiCaprio Movie Torrent Lures Users: Agent Tesla Deployed via Malicious LNK and Subtitle File Code Hiding Agent Tesla Movie Lure, Subtitle File Infection

Agent Tesla Movie Lure, Subtitle File Infection

DiCaprio Movie Torrent Lures Users: Agent Tesla Deployed via Malicious LNK and Subtitle File Code Hiding

Do Son December 12, 2025

Cybersecurity researchers have uncovered a new, sophisticated malware campaign targeting movie pirates with a lure they can’t...

GOLD BLADE APT Hits Canadian Firms with BYOVD EDR Killer and Ransomware Delivered Via Fake Resumes GOLD BLADE Canada, BYOVD EDR Killer

GOLD BLADE APT Hits Canadian Firms with BYOVD EDR Killer and Ransomware Delivered Via Fake Resumes

Do Son December 12, 2025

A notorious threat group has pivoted its focus to the Great White North, unleashing a sophisticated campaign...

1inch Named Exclusive Swap Provider at Launch for Ledger Multisig 1inch_ase_study_Ledger_1765444649YfKehgLWGE

1inch Named Exclusive Swap Provider at Launch for Ledger Multisig

cybernewswire December 11, 2025

Road Town, British Virgin Islands, 11th December 2025, CyberNewsWire

INE Highlights Enterprise Shift Toward Hands-On Training Amid Widening Skills Gaps Blog___December_2025___Enterprises_Tackle_Skills_G_1765308844mvXzfDKnPu

Blog___December_2025___Enterprises_Tackle_Skills_G_1765308844mvXzfDKnPu

INE Highlights Enterprise Shift Toward Hands-On Training Amid Widening Skills Gaps

cybernewswire December 11, 2025

Cary, North Carolina, USA, 11th December 2025, CyberNewsWire

Urgent Patch: Notepad++ WinGUp Flaw Allowed Malware to Hijack Updates CVE-2023-40031 Notepad++ Update Hijacking, WinGUp Vulnerability

Urgent Patch: Notepad++ WinGUp Flaw Allowed Malware to Hijack Updates

Do Son December 11, 2025

Security researchers recently uncovered a vulnerability in the open-source text and code editor Notepad++, allowing attackers in...

16-Year Battle Ends: Intel Loses Appeal, Must Pay €237 Million EU Fine Intel EU Antitrust Fine, Naked Restrictions Intel Layoff Data Theft Jinfeng Luo Intel leadership change Intel SoftBank Intel Foundry, Semiconductor Market Intel Arrow Lake Refresh, Copilot+ PC Intel GPU Performance, Security Mitigations Mitigation Downfall Vulnerability

Intel EU Antitrust Fine, Naked Restrictions Intel Layoff Data Theft Jinfeng Luo Intel leadership change Intel SoftBank Intel Foundry, Semiconductor Market Intel Arrow Lake Refresh, Copilot+ PC Intel GPU Performance, Security Mitigations Mitigation Downfall Vulnerability

16-Year Battle Ends: Intel Loses Appeal, Must Pay €237 Million EU Fine

Do Son December 11, 2025

In a case spanning sixteen years and regarded as one of the most protracted antitrust battles in...

Qualcomm Buys Ventana to Double Down on RISC-V and Custom Oryon CPU Qualcomm Samsung 2nm foundry deal, Snapdragon 8 Elite 2nm refresh Qualcomm Ventana Acquisition, RISC-V Strategy Qualcomm Autotalks, China Antitrust Qualcomm Antitrust, Which? Lawsuit Qualcomm GPU driver, CVE-2024-38399 Qualcomm's March 2025 Security Bulletin

Qualcomm Samsung 2nm foundry deal, Snapdragon 8 Elite 2nm refresh Qualcomm Ventana Acquisition, RISC-V Strategy Qualcomm Autotalks, China Antitrust Qualcomm Antitrust, Which? Lawsuit Qualcomm GPU driver, CVE-2024-38399 Qualcomm's March 2025 Security Bulletin

Qualcomm Buys Ventana to Double Down on RISC-V and Custom Oryon CPU

Do Son December 11, 2025

To further consolidate its technological leadership in the computing domain, Qualcomm has announced its acquisition of Ventana...

You’re In Control: Instagram Launches “Your Algorithm” Feature for Reels Instagram Your Algorithm, Reels Personalization

You’re In Control: Instagram Launches “Your Algorithm” Feature for Reels

Do Son December 11, 2025

Instagram has announced the launch of a new feature called “Your Algorithm,” marking the first time users...

Apple Google EU alliance DMA European Commission Breach Trivy Supply Chain Attack Europa.eu Breach EU Cloud Infrastructure EU Cyber Sanctions State-Sponsored Hacking EU 2040 Emissions Target, Europe Climate Leadership AWS Azure DMA Cloud Gatekeeper DSA violation, illegal content Apple DMA Delay, iPhone Mirroring EU EU Age Verification, Google Play Integrity Corning Antitrust, EU Competition Apple EU Digital Markets Act App Store commission European Union cyberattacks - InvestAI EU Targets Musk’s X Digital Markets Act, EU fines

EU’s Green Mandate: Parliament Pledges 90% Emissions Cut by 2040

Do Son December 11, 2025

To confront the escalating challenge of climate change, the European Parliament has announced—via an official press release—that...

Apache Struts 2 DoS Flaw (CVE-2025-66675) Risks Server Crash via File Leak in Multipart Request Processing CVE-2024-53677 Apache Struts 2 DoS, File Leak Vulnerability

CVE-2024-53677 Apache Struts 2 DoS, File Leak Vulnerability

Apache Struts 2 DoS Flaw (CVE-2025-66675) Risks Server Crash via File Leak in Multipart Request Processing

Do Son December 11, 2025

A significant denial-of-service (DoS) vulnerability has been discovered in Apache Struts 2, the widely used open-source framework...

High-Severity Zoom Rooms Flaw Risks Privilege Escalation via Downgrade Protection Bypass Zoom Rooms LPE, Downgrade Protection Bypass Zoom High-Risk Flaws Zoom security updates

Zoom Rooms LPE, Downgrade Protection Bypass Zoom High-Risk Flaws Zoom security updates

High-Severity Zoom Rooms Flaw Risks Privilege Escalation via Downgrade Protection Bypass

Do Son December 11, 2025

Zoom Video Communications has released a critical security update for its Zoom Rooms software, addressing vulnerabilities that...

Emergency Chrome Update: Google Patches New Zero-Day Under Active Attack Chrome security update exploit in the wild Chrome Zero-Day CVE-2026-3909 Chrome Zero-Day PoC CVE-2026-2441 Chrome Zero-Day CVE-2026-2441 Chrome Zero-Day, Active Exploitation CVE-2025-10585 Chrome vulnerability, zero-day exploit CVE-2025-6558 Chrome Zero-Day, V8 Vulnerability Chrome Zero-Day, Security Update

Chrome security update exploit in the wild Chrome Zero-Day CVE-2026-3909 Chrome Zero-Day PoC CVE-2026-2441 Chrome Zero-Day CVE-2026-2441 Chrome Zero-Day, Active Exploitation CVE-2025-10585 Chrome vulnerability, zero-day exploit CVE-2025-6558 Chrome Zero-Day, V8 Vulnerability Chrome Zero-Day, Security Update

Emergency Chrome Update: Google Patches New Zero-Day Under Active Attack

Do Son December 11, 2025

Google has pushed an urgent security update to the Stable Channel for Desktop, racing to patch a...

High-Severity Jenkins Flaws Risk Unauthenticated DoS via HTTP CLI and XSS Via Coverage Reports Jenkins security advisory 2026, CVE-2026-53435, CVE-2026-53436 Jenkins Plugin RCE CI/CD Security Advisory Jenkins Vulnerability CVE-2026-33001 Jenkins CLI DoS, Coverage Plugin XSS Jenkins SAML Hijacking, Plaintext Secrets CVE-2023-43495 - Jenkins Vulnerability

Jenkins security advisory 2026, CVE-2026-53435, CVE-2026-53436 Jenkins Plugin RCE CI/CD Security Advisory Jenkins Vulnerability CVE-2026-33001 Jenkins CLI DoS, Coverage Plugin XSS Jenkins SAML Hijacking, Plaintext Secrets CVE-2023-43495 - Jenkins Vulnerability

High-Severity Jenkins Flaws Risk Unauthenticated DoS via HTTP CLI and XSS Via Coverage Reports

Do Son December 11, 2025

The maintainers of Jenkins, the world’s leading open-source automation server, have issued a critical security advisory addressing...

Gogs Zero-Day (CVE-2025-8110) Risks RCE for 700+ Servers via Symlink Path Traversal Bypass Gogs Zero-Day RCE, Symlink Path Traversal

Gogs Zero-Day (CVE-2025-8110) Risks RCE for 700+ Servers via Symlink Path Traversal Bypass

Do Son December 11, 2025

A routine malware investigation has spiraled into the discovery of a widespread “smash-and-grab” campaign targeting the developer...

High-Severity GitLab XSS Flaw (CVE-2025-12716) Risks Session Hijack via Malicious Wiki Pages CVE-2024-9164 - CVE-2025-0376 GitLab Wiki XSS, Session Hijack Flaw

CVE-2024-9164 - CVE-2025-0376 GitLab Wiki XSS, Session Hijack Flaw

High-Severity GitLab XSS Flaw (CVE-2025-12716) Risks Session Hijack via Malicious Wiki Pages

Do Son December 11, 2025

In a critical mid-week security sprint, GitLab has rolled out a series of important updates for its...

Facebook Gets New Look, But Instagram Secretly Uses AI for SEO Bait

Do Son December 11, 2025

Meta has recently implemented two starkly contrasting changes across its major social platforms. Facebook is receiving a...

SpaceX IPO: Targeting a $1.5 Trillion Valuation to Fund Space Data Centers Anthropic SpaceX partnership SpaceX IPO 1.75 trillion 2026 Tech IPO wave, SpaceX OpenAI Anthropic valuation SpaceX IPO 2026, $800 Billion Valuation SpaceX $1.5 Trillion IPO, Starship Starlink

Anthropic SpaceX partnership SpaceX IPO 1.75 trillion 2026 Tech IPO wave, SpaceX OpenAI Anthropic valuation SpaceX IPO 2026, $800 Billion Valuation SpaceX $1.5 Trillion IPO, Starship Starlink

SpaceX IPO: Targeting a $1.5 Trillion Valuation to Fund Space Data Centers

Do Son December 11, 2025

Insiders reveal that SpaceX is now advancing an extraordinarily ambitious initial public offering (IPO), with plans to...

China’s WARP PANDA APT Deploys BRICKSTORM Backdoor to Hijack VMware vCenter/ESXi and Azure Cloud BRICKSTORM DoH Backdoor

China’s WARP PANDA APT Deploys BRICKSTORM Backdoor to Hijack VMware vCenter/ESXi and Azure Cloud

Do Son December 11, 2025

A sophisticated cyber-espionage campaign has been uncovered deep within the virtualization layers of major U.S. organizations. Throughout...

Unpatched TOTOLINK AX1800 Router Flaw Allows Unauthenticated Telnet & Root RCE TOTOLINK EX200 Vulnerability CVE-2025-65606 TOTOLINK Auth Bypass, Unauthenticated Telnet

TOTOLINK EX200 Vulnerability CVE-2025-65606 TOTOLINK Auth Bypass, Unauthenticated Telnet

Unpatched TOTOLINK AX1800 Router Flaw Allows Unauthenticated Telnet & Root RCE

Do Son December 11, 2025

A critical security vulnerability has been uncovered in the popular TOTOLINK AX1800 wireless router, a device widely...