Daily CyberSecurity • Page 178 of 733 • Zero-hour alerts. Unmatched analysis.

WARMCOOKIE Resurfaces After Takedown: New Variant Adds Stealth Handlers, Uses Expired C2 Certificates Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

Kali365 phishing platform EmEditor Supply Chain Attack, WALSHAM INVESTMENTS LIMITED EggStreme, fileless malware North Korea Cybercrime, Remote IT Job Fraud RedDelta APT

WARMCOOKIE Resurfaces After Takedown: New Variant Adds Stealth Handlers, Uses Expired C2 Certificates

Do Son October 3, 2025

The WARMCOOKIE backdoor has resurfaced with new features, expanded infrastructure, and updated delivery mechanisms, according to a...

Researcher Details Zero-Day Linux/Android Kernel Flaw (CVE-2025-38352) Linux Timer TOCTOU, CVE-2025-38352

Researcher Details Zero-Day Linux/Android Kernel Flaw (CVE-2025-38352)

Do Son October 3, 2025

Security researcher StreyPaws has published an in-depth analysis of CVE-2025-38352, a Time-of-Check to Time-of-Use (TOCTOU) race condition...

PoC Released: Linux Kernel Flaw Allows User to Gain Root Privileges CrackArmor AppArmor Vulnerabilities Linux Kernel UAF, Privilege Escalation PoC CVE-2024-27397 PoC

CrackArmor AppArmor Vulnerabilities Linux Kernel UAF, Privilege Escalation PoC CVE-2024-27397 PoC

PoC Released: Linux Kernel Flaw Allows User to Gain Root Privileges

Do Son October 2, 2025

Security researcher Huyinhao has published a deep-dive analysis of CVE-2025-21701, a newly disclosed Linux kernel vulnerability rated...

Samsung MagicInfo9 Vulnerability CVE-2026-25202 Galaxy S26 benchmarks Samsung HBM4 NVIDIA certification Samsung Bixby Perplexity integration, One UI 8.5 AI assistant Samsung Taylor 2nm mass production, TSMC 2nm capacity constraint 2026 Samsung SATA SSD Discontinuation, SSD Market Shift Samsung SATA SSD Discontinuation, M.2 Market Shift Samsung Foundry 4nm Yield Tsavorite OPU Chip Order Samsung Project Moohan, Android XR Samsung OpenAI Partnership, AI Infrastructure Samsung Exynos 2600, 2nm GAA Tesla AI Chips, Samsung Foundry Deal Samsung Foldables, Galaxy Unpacked 2025 Samsung AI, Perplexity AI Samsung data breach Q990D firmware US tariffs

Samsung and OpenAI Announce Strategic Alliance to Build Next-Generation Global AI Infrastructure

Do Son October 2, 2025

Samsung has announced a strategic partnership with OpenAI to jointly advance the development of global AI infrastructure....

Xbox Game Pass Ultimate Price Jumps to $29.99 with Ubisoft+ and Fortnite Crew Added Xbox Game Pass, Ultimate Price Hike

Xbox Game Pass Ultimate Price Jumps to $29.99 with Ubisoft+ and Fortnite Crew Added

Do Son October 2, 2025

Since its launch in 2017, Xbox Game Pass has been regarded as one of the most disruptive...

Privacy Alert: Meta to Use User-AI Conversations to Target Ads Across Facebook and Instagram

Do Son October 2, 2025

As AI chatbots continue their steady rise in popularity, Meta has announced that it will begin collecting...

Google Replaces Assistant with Gemini for Home AI and Unveils New Speakers & Nest Cams Gemini for Home, Smart Home AI

Google Replaces Assistant with Gemini for Home AI and Unveils New Speakers & Nest Cams

Do Son October 2, 2025

Following Amazon’s unveiling of several new Echo smart speakers and the expansion of its Alexa+ service, Google...

Qualcomm Wins “Complete Victory” Over Arm in Major Chip Licensing Lawsuit Qualcomm Nuvia, Arm Lawsuit CVE-2023-33106

Qualcomm Wins “Complete Victory” Over Arm in Major Chip Licensing Lawsuit

Do Son October 2, 2025

The long-standing licensing dispute between Qualcomm and Arm has finally reached its conclusion. On October 1, a...

Critical Flaw in Termix Docker Image (CVE-2025-59951) Leaks SSH Credentials Without Authentication

Do Son October 2, 2025

The Termix project has disclosed a critical authentication bypass vulnerability in its official Docker image, exposing sensitive...

Chrome 148 lazy loading Chrome for Linux ARM64 Chrome 145 Update Chrome Security Fixes Chrome Security Update CVE-2026-1220 Chrome 144 Security Update CVE-2026-0899 Chrome Memory Safety, WebGPU UAF Chrome V8 Type Confusion, Google Updater Flaw Chrome V8 Flaw, CVE-2025-13042 Chrome V8, Type Confusion, Chrome 142 Update Chrome V8 Flaw, CVE-2025-12036 Chrome 141, WebGPU Overflow Google Chrome preloading Chrome, V8 vulnerability CVE-2025-9132 Chrome Security Update, Use-After-Free Chrome V8, Type Confusion Chrome Telemetry, Windows 10 EOL Microsoft Family Safety, Chrome Blocking Chrome Security Update, High-Severity Google Chrome, Antitrust CVE-2024-10487 and CVE-2024-10488 Google Chrome Root Program Chrome Update, CVE-2025-3619 Chrome Acquisition, Perplexity.ai

Chrome 141 Stable Channel Update Patches High-Severity Vulnerabilities (CVE-2025-11205 & CVE-2025-11206)

Do Son October 2, 2025

The Chrome security team has announced the promotion of Chrome 141 to the Stable Channel for Windows,...

Critical Flaw CVE-2025-52906 (CVSS 9.3) Allows Unauthenticated RCE on TOTOLINK X6000R Routers CVE-2024-1468 TOTOLINK RCE, Router Vulnerability

Critical Flaw CVE-2025-52906 (CVSS 9.3) Allows Unauthenticated RCE on TOTOLINK X6000R Routers

Do Son October 2, 2025

Researchers from Unit 42, Palo Alto Networks’ threat intelligence team, have disclosed three newly discovered vulnerabilities in...

Splunk Fixes Six Flaws, Including Unauthenticated SSRF and XSS Vulnerabilities in Enterprise Platform

Do Son October 2, 2025

Splunk has released a series of security advisories addressing six vulnerabilities in Splunk Enterprise and Splunk Cloud...

Django Security Alert: High-Severity SQL Injection Flaw (CVE-2025-59681) Fixed in Latest Updates Django vulnerability - CVE-2024-42005 Django SQL Injection, CVE-2025-59681

Django vulnerability - CVE-2024-42005 Django SQL Injection, CVE-2025-59681

Django Security Alert: High-Severity SQL Injection Flaw (CVE-2025-59681) Fixed in Latest Updates

Do Son October 2, 2025

The Django team has issued new security releases for the popular Python web framework, addressing two vulnerabilities...

Rhadamanthys Stealer v0.9.2 Drops: New PNG Payloads and Anti-Analysis Tricks Make Malware Deadlier AI Fraud Schemes TAMECAT Malware APT42 Espionage

AI Fraud Schemes TAMECAT Malware APT42 Espionage

Rhadamanthys Stealer v0.9.2 Drops: New PNG Payloads and Anti-Analysis Tricks Make Malware Deadlier

Do Son October 2, 2025

The notorious Rhadamanthys stealer, first released in 2022, has returned with a powerful new update that underscores...

DoS Flaws in Argo CD: Unauthenticated Attackers Can Crash Kubernetes Server with Single Request Argo CD Secret Leak CVE-2026-42880 CVE-2024-28175 Argo CD DoS, Webhook Flaws

Argo CD Secret Leak CVE-2026-42880 CVE-2024-28175 Argo CD DoS, Webhook Flaws

DoS Flaws in Argo CD: Unauthenticated Attackers Can Crash Kubernetes Server with Single Request

Do Son October 2, 2025

The Argo CD project has released patches addressing several denial-of-service (DoS) vulnerabilities that could allow attackers to...

Detour Dog: Stealthy DNS Malware Uses TXT Records for Command and Control NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

Detour Dog: Stealthy DNS Malware Uses TXT Records for Command and Control

Do Son October 2, 2025

The Infoblox Threat Intelligence team has released an in-depth report on a global malware campaign leveraging the...

Russian-Speaking Lunar Spider Group Launches New Ransomware Wave with Latrodectus V2 Loader Sandworm Tactical Pivot, Edge Device Misconfiguration Russian cyber firms, Kremlin ties Sandworm MAX messenger

Sandworm Tactical Pivot, Edge Device Misconfiguration Russian cyber firms, Kremlin ties Sandworm MAX messenger

Russian-Speaking Lunar Spider Group Launches New Ransomware Wave with Latrodectus V2 Loader

Do Son October 2, 2025

The NVISO Cyber Security Incident Response Team (CSIRT) has released new findings exposing the latest campaign by...

CISA Warns of Critical RCE Flaw (CVE-2025-10659, CVSS 9.8) in Megasys Telenium Online Web Application WD Discovery Vulnerability CVE-2025-30248 binary-parser Vulnerability CVE-2026-1245 H3C RCE Vulnerability CVE-2025-60262 Telenium RCE, CVE-2025-10659 Fuel station security, ICS vulnerabilities FreePBX vulnerability CVE-2024-9478 & CVE-2024-9479 SysTrack Vulnerability, Privilege Escalation