Daily CyberSecurity • Page 279 of 739 • Zero-hour alerts. Unmatched analysis.

DuplexSpy RAT: New C# Malware Toolkit Emerges on GitHub RAT

DuplexSpy RAT: New C# Malware Toolkit Emerges on GitHub

Do Son June 9, 2025

CYFIRMA’s Threat Intelligence Team has published an in-depth analysis of DuplexSpy RAT, a powerful and modular remote...

Destructive npm Packages Disguised as Utilities Trigger Remote System Wipes on Demand Wiping Systems

Destructive npm Packages Disguised as Utilities Trigger Remote System Wipes on Demand

Do Son June 9, 2025

The Socket Threat Research Team has disclosed two dangerous npm packages that masquerade as helpful developer tools—but...

Android’s Secret Tracking: Meta & Yandex Abused Localhost for User Data Android Tracking

Android’s Secret Tracking: Meta & Yandex Abused Localhost for User Data

Do Son June 9, 2025

A new disclosure by researchers from IMDEA Networks, Radboud University, and KU Leuven has revealed a novel...

Go Fixes Three Security Flaws: Update Your Apps Now! Go Security Update

Go Fixes Three Security Flaws: Update Your Apps Now!

Do Son June 9, 2025

The Go team has rolled out versions 1.24.4 and 1.23.10, addressing three critical security vulnerabilities affecting core...

FormBook Returns: Exploiting CVE-2017-0199 via Malicious Excel Attachments in New Phishing Campaign Demo for CVE-2017-0199

FormBook Returns: Exploiting CVE-2017-0199 via Malicious Excel Attachments in New Phishing Campaign

Do Son June 9, 2025

FortiGuard Labs has uncovered a renewed phishing campaign that leverages the eight-year-old CVE-2017-0199 vulnerability to deploy FormBook,...

EnigmaCyberSecurity: Brazil-Focused Banking Malware Campaign Uses RATs and Malicious Extensions Attack chain using a browser extension

EnigmaCyberSecurity: Brazil-Focused Banking Malware Campaign Uses RATs and Malicious Extensions

Do Son June 9, 2025

Positive Technologies has uncovered an ongoing, multi-stage cybercrime campaign—dubbed “EnigmaCyberSecurity”—primarily targeting Brazilian users and financial institutions. The...

CVE-2025-4318 (CVSS 9.5): AWS Amplify RCE Flaw Exposed with PoC – CI/CD Pipelines at Risk AWS Amplify, Remote Code Execution

CVE-2025-4318 (CVSS 9.5): AWS Amplify RCE Flaw Exposed with PoC – CI/CD Pipelines at Risk

Do Son June 9, 2025

A critical vulnerability in AWS Amplify’s UI generation tool, @aws-amplify/codegen-ui, is putting developers—and their build pipelines—at serious...

New Mirai Botnet Variant Targets DVR Systems via CVE-2024-3721 Mirai Botnet Variants malware CVE-2024-3721

New Mirai Botnet Variant Targets DVR Systems via CVE-2024-3721

Do Son June 8, 2025

Kaspersky researchers have uncovered a fresh wave of attacks exploiting CVE-2024-3721 to deploy a revamped variant of...

Fake Government Android App Found Delivering Stealer Malware Android Malware, PM KISAN YOJNA

Fake Government Android App Found Delivering Stealer Malware

Do Son June 8, 2025

Security researchers at K7 Computing have uncovered a malicious Android campaign that leverages the name of a...

Legacy vBulletin 4.x Patch Backfires: RCE via Signed Base64 Payloads and a Full PoC vBulletin RCE

Legacy vBulletin 4.x Patch Backfires: RCE via Signed Base64 Payloads and a Full PoC

Do Son June 7, 2025

Security researcher Egidio Romano (EgiX) uncovers a fascinating PHP Object Injection (POI) vulnerability in legacy versions of...

AI-Augmented Hackers: The Untold Reality of Professional Hacker-for-Hire in 2025 SonicWall Reconnaissance Akira Ransomware residential proxy malware TraderTraitor BreachForums Honeypot, French Interior Ministry Leak

SonicWall Reconnaissance Akira Ransomware residential proxy malware TraderTraitor BreachForums Honeypot, French Interior Ministry Leak

AI-Augmented Hackers: The Untold Reality of Professional Hacker-for-Hire in 2025

Do Son June 7, 2025

Table of Contents The Unseen Shift: Hackers and AI Join Forces Why the Old Rules Don’t Work...

Nintendo Switch 2 Hacked? Early Exploit Uncovered! Nintendo tariff lawsuit 2026 Nintendo Switch 2, MIG Tool Nintendo Switch 2, USB-C Restrictions Nintendo Switch 2, Vulnerability

Nintendo tariff lawsuit 2026 Nintendo Switch 2, MIG Tool Nintendo Switch 2, USB-C Restrictions Nintendo Switch 2, Vulnerability

Nintendo Switch 2 Hacked? Early Exploit Uncovered!

Do Son June 7, 2025

Nintendo’s recently launched Switch 2 console has already had a vulnerability discovered by enthusiasts. Security researcher David...

Unpatched XSS Vulnerability in Jenkins Gatling Plugin Puts Users at Risk (CVE-2025-5806) Jenkins Security Vulnerability

Unpatched XSS Vulnerability in Jenkins Gatling Plugin Puts Users at Risk (CVE-2025-5806)

Do Son June 7, 2025

The Jenkins community has issued a high-severity security advisory for a newly disclosed vulnerability in the Gatling...

Claude Gov: Anthropic’s AI Brain for U.S. National Security AI, National Security Claude Gov

Claude Gov: Anthropic’s AI Brain for U.S. National Security

Do Son June 7, 2025

Anthropic has recently unveiled Claude Gov, an artificial intelligence model specifically developed for U.S. national security agencies....

Apple HomePad delay Tesla CarPlay integration 2026 Apple CarPlay AI integration 2026 Apple 2026 product roadmap rumors, foldable iPhone release date Apple Vision Pro sales slump, Vision Pro production cut Russia FaceTime Ban Network Blockade Apple Apple 2026 Roadmap, iPhone Foldable, Apple Intelligence Apple Maps ads, iOS monetization Apple, Digital Markets Act FCC Leak, iPhone 16e Schematics iPhone Fold Apple Made in India Apple US Investment, Indian Tariffs Apple Leadership, Tim Cook Tenure Siri Redesign, Apple AI Apple App Store Apple EU, Digital Markets Act CVE-2022-32898 Third-Party iOS Apps Apple Antitrust, DOJ Lawsuit

Apple’s App Store shaken: Court ends ‘Apple tax’ on external purchases

Do Son June 7, 2025

The court has recently denied Apple’s request to suspend the enforcement of a ruling that allows users...

Popular Chrome Extensions Caught Leaking Sensitive User Data via Unencrypted HTTP

Do Son June 7, 2025

A new report by Symantec Threat Hunter Team uncovers that several widely-used Chrome extensions—some with millions of...

TA397’s Global Targeting Tactics Reveal Indian State-Backed Cyber Operations TA397, India Cyber Espionage

TA397’s Global Targeting Tactics Reveal Indian State-Backed Cyber Operations

Do Son June 7, 2025

A new report from Proofpoint Threat Research, in collaboration with Threatray, reveals mounting evidence that TA397 (also...

Signal Phishing Alert: Sophisticated Campaign Targets Armenian Civil Society & Government Signal Phishing, Armenia Cyberattack

Signal Phishing Alert: Sophisticated Campaign Targets Armenian Civil Society & Government

Do Son June 7, 2025

In early March 2025, Armenia became the focal point of a sophisticated spear-phishing campaign that leveraged encrypted...

CISA Alert: Critical Vulnerabilities Found in CyberData SIP Emergency Intercom Devices CyberData Vulnerabilities, SIP Intercom Security

CISA Alert: Critical Vulnerabilities Found in CyberData SIP Emergency Intercom Devices

Do Son June 7, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical advisory warning of multiple high-impact...

New Zero-Click iPhone Exploit “NICKNAME” Targeted High-Profile Individuals Across the US and EU iMessage Vulnerability, Zero-Click Exploit NICKNAME vulnerability

iMessage Vulnerability, Zero-Click Exploit NICKNAME vulnerability

New Zero-Click iPhone Exploit “NICKNAME” Targeted High-Profile Individuals Across the US and EU

Do Son June 6, 2025

In a significant revelation, iVerify’s Research Team has uncovered a previously unknown zero-click iMessage vulnerability—dubbed “NICKNAME”—that was...