Daily CyberSecurity • Page 138 of 739 • Zero-hour alerts. Unmatched analysis.

FrostBeacon Hits Russian B2B: Cobalt Strike Deployed via LNK and Chained Legacy Exploits Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

FrostBeacon Hits Russian B2B: Cobalt Strike Deployed via LNK and Chained Legacy Exploits

Do Son December 10, 2025

A new and sophisticated malware campaign dubbed “Operation FrostBeacon” is systematically targeting business-to-business (B2B) enterprises across the...

Critical ZITADEL Flaws (CVE-2025-67494, CVSS 9.3) Risk SSRF Internal Breach and Account Hijack via XSS ZITADEL Vulnerability CVE-2026-29191 CVE-2025-27507 ZITADEL SSRF, Login UI Hijack

ZITADEL Vulnerability CVE-2026-29191 CVE-2025-27507 ZITADEL SSRF, Login UI Hijack

Critical ZITADEL Flaws (CVE-2025-67494, CVSS 9.3) Risk SSRF Internal Breach and Account Hijack via XSS

Do Son December 10, 2025

The security team behind ZITADEL, the open-source identity management platform, has issued urgent advisories regarding three high-severity...

The 25% Cut: Trump Allows NVIDIA H200 Export to China Under Strict Fee NVIDIA CoreWeave investment NVIDIA H200 China, AI Chip Export Fee

The 25% Cut: Trump Allows NVIDIA H200 Export to China Under Strict Fee

Do Son December 9, 2025

U.S. President Donald Trump announced earlier on his Truth Social platform that NVIDIA will be permitted—under strict...

Critical Emby Server Flaw (CVE-2025-64113) Allows Unauthenticated Admin Takeover Emby Auth Bypass, Plugin Quick Fix

Critical Emby Server Flaw (CVE-2025-64113) Allows Unauthenticated Admin Takeover

Do Son December 9, 2025

The development team behind Emby Server, the popular personal media streaming solution, has issued an urgent security...

Final Patch of 2025: Critical SAP Solution Manager Flaw (CVE-2025-42880, CVSS 9.9) Risks Full System Compromise SAP Security Patch May 2026 CVE-2026-34260 S/4HANA CVE-2024-22127 - CVE-2025-27434 SAP Solution Manager Code Injection, Critical SAP Patch

Final Patch of 2025: Critical SAP Solution Manager Flaw (CVE-2025-42880, CVSS 9.9) Risks Full System Compromise

Do Son December 9, 2025

Today, SAP has released its final security update of the year, dropping 14 new security notes. The...

macOS Privilege Escalation Flaw Bypasses Patch for Root Access, Poc Releases! macOS Privilege Escalation, .zprofile Exploit

macOS Privilege Escalation Flaw Bypasses Patch for Root Access, Poc Releases!

Do Son December 9, 2025

Security researcher Morris Richman has disclosed a new privilege escalation vulnerability, CVE-2025-43472, which could allow an attacker...

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

Critical Authentication Bypass Flaws Discovered in Ruby SAML Library (CVE-2025-66567 & CVE-2025-66568)

Do Son December 9, 2025

A pair of critical security vulnerabilities has been disclosed in the Ruby SAML library, a foundational tool...

CISA KEV Alert: EOL D-Link and Array Networks Command Injection Under Active Attack Ivanti EPMM Vulnerability CVE-2026-1340 CISA KEV Catalog CVE-2026-21385 CISA KEV Update CVE-2008-0015 CISA KEV, Array Networks Command Injection CVE-2025-0111 & CVE-2025-23209 CISA, Known Exploited Vulnerabilities

Ivanti EPMM Vulnerability CVE-2026-1340 CISA KEV Catalog CVE-2026-21385 CISA KEV Update CVE-2008-0015 CISA KEV, Array Networks Command Injection CVE-2025-0111 & CVE-2025-23209 CISA, Known Exploited Vulnerabilities

CISA KEV Alert: EOL D-Link and Array Networks Command Injection Under Active Attack

Do Son December 9, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) Catalog with two...

Samsung MagicInfo9 Vulnerability CVE-2026-25202 Galaxy S26 benchmarks Samsung HBM4 NVIDIA certification Samsung Bixby Perplexity integration, One UI 8.5 AI assistant Samsung Taylor 2nm mass production, TSMC 2nm capacity constraint 2026 Samsung SATA SSD Discontinuation, SSD Market Shift Samsung SATA SSD Discontinuation, M.2 Market Shift Samsung Foundry 4nm Yield Tsavorite OPU Chip Order Samsung Project Moohan, Android XR Samsung OpenAI Partnership, AI Infrastructure Samsung Exynos 2600, 2nm GAA Tesla AI Chips, Samsung Foundry Deal Samsung Foldables, Galaxy Unpacked 2025 Samsung AI, Perplexity AI Samsung data breach Q990D firmware US tariffs

Samsung Foundry Hits 60% 4nm Yield, Secures $100M AI Chip Order from Tsavorite

Do Son December 9, 2025

After a painful period marked by yield challenges and the loss of key customers, Samsung’s foundry division...

Ad Code Found in ChatGPT Android Build, OpenAI Denies Current Advertising Tests

Do Son December 9, 2025

As the soaring operational costs of generative-AI services continue to draw scrutiny, speculation surrounding whether ChatGPT might...

AI Uncovers GhostPenguin: Undetectable Linux Backdoor Used RC5-Encrypted UDP for Covert C2 WhatsApp Worm, Brazilian Banking Trojan LAPSUS$ Alliance, Scattered Spider Ransomware, Cybercrime RedCurl APT group Russian Cyberespionage, ApolloShadow Malware

WhatsApp Worm, Brazilian Banking Trojan LAPSUS$ Alliance, Scattered Spider Ransomware, Cybercrime RedCurl APT group Russian Cyberespionage, ApolloShadow Malware

AI Uncovers GhostPenguin: Undetectable Linux Backdoor Used RC5-Encrypted UDP for Covert C2

Do Son December 9, 2025

In a demonstration of AI-powered defense, security researchers at Trend Micro have uncovered a previously unknown and...

Shanya Crypter Is the New Ransomware Toolkit: Uses Kernel Driver Abuse to Kill EDR Shanya Crypter, EDR Killer

Shanya Crypter Is the New Ransomware Toolkit: Uses Kernel Driver Abuse to Kill EDR

Do Son December 9, 2025

A sophisticated new “packer-as-a-service” has emerged from the cybercriminal underworld, providing ransomware gangs with a powerful toolkit...

Undetectable Beima Webshell Sold by College Student for Tuition Hijacks 5,200+ Gov/Edu Websites Beima PHP Webshell, Cybercrime Freelancing

Undetectable Beima Webshell Sold by College Student for Tuition Hijacks 5,200+ Gov/Edu Websites

Do Son December 9, 2025

Security researchers have uncovered a sprawling botnet operation fueled not by a state-sponsored APT, but by a...

Silent Supply Chain Attack: Malicious Go Typosquat Siphoned Data to Pastebin for Four Years Undetected Go Typosquatting, Pastebin Exfiltration

Silent Supply Chain Attack: Malicious Go Typosquat Siphoned Data to Pastebin for Four Years Undetected

Do Son December 9, 2025

The Socket Threat Research Team has uncovered a malicious Go package that operated undetected for over four...

Silver Fox APT Uses Cyrillic False Flag in Teams SEO Poisoning to Deploy ValleyRAT Silver Fox False Flag, Cyrillic SEO Poisoning

Silver Fox APT Uses Cyrillic False Flag in Teams SEO Poisoning to Deploy ValleyRAT

Do Son December 9, 2025

A cunning cyber-espionage campaign is targeting Chinese organizations with a twist of geopolitical deception. According to a...

Evolved ClayRat Spyware Gains Self-Defense, Using Accessibility Abuse to Block Uninstallation and Steal Keys Android zero day flaw June 2026 security bulletin RuTaxi Trojan Android Banking Malware Pixel 9 zero-click exploit, Dolby UDC vulnerability CVE-2025-54957 NexusRoute Android RAT, India E-Challan Phishing ClayRat Self-Defense, Android Accessibility Abuse Android Trojan, AntiDot Android Malware "BadPack"

Android zero day flaw June 2026 security bulletin RuTaxi Trojan Android Banking Malware Pixel 9 zero-click exploit, Dolby UDC vulnerability CVE-2025-54957 NexusRoute Android RAT, India E-Challan Phishing ClayRat Self-Defense, Android Accessibility Abuse Android Trojan, AntiDot Android Malware "BadPack"

Evolved ClayRat Spyware Gains Self-Defense, Using Accessibility Abuse to Block Uninstallation and Steal Keys

Do Son December 9, 2025

A notorious Android spyware family has resurfaced with dangerous new capabilities, evolving from a simple data thief...

New FvncBot Android Trojan Targets mBank Users with HVNC and H.264 Screen Streaming FvncBot Android Trojan, HVNC Screen Streaming

New FvncBot Android Trojan Targets mBank Users with HVNC and H.264 Screen Streaming

Do Son December 9, 2025

A sophisticated new Android banking trojan has been discovered targeting customers of mBank, one of Poland’s largest...

JS#SMUGGLER Malware Evades EDR Using “Junk Code” JavaScript and Fileless PowerShell to Deploy NetSupport RAT JS#SMUGGLER, Junk Code Obfuscation

JS#SMUGGLER Malware Evades EDR Using “Junk Code” JavaScript and Fileless PowerShell to Deploy NetSupport RAT

Do Son December 9, 2025

A sophisticated new malware campaign has been uncovered targeting enterprise users through compromised websites, employing a complex...

Sophisticated CastleRAT Backdoor Uses Steam Community Pages as Covert C2 Resolver for Espionage CastleRAT, Steam C2 Resolver

Sophisticated CastleRAT Backdoor Uses Steam Community Pages as Covert C2 Resolver for Espionage

Do Son December 9, 2025

A sophisticated new Remote Access Trojan (RAT) has emerged, blending stealthy execution with powerful data theft capabilities...

LockBit 5.0 Resurfaces Stronger: New Variant Blinds Defenders by Disabling Windows ETW for Stealth Encryption LockBit LockBit 5.0 Resurgence, ETW Blinding Ransomware

LockBit LockBit 5.0 Resurgence, ETW Blinding Ransomware

LockBit 5.0 Resurfaces Stronger: New Variant Blinds Defenders by Disabling Windows ETW for Stealth Encryption

Do Son December 9, 2025

Just eighteen months ago, the cybersecurity world celebrated “Operation Cronos,” a massive law enforcement crackdown that promised...