Daily CyberSecurity • Page 285 of 739 • Zero-hour alerts. Unmatched analysis.

CVE-2025-4010: ONEKEY Uncovers Critical Remote Code Execution Flaw in Netcomm/Lantronix 4G Gateways Netcomm Vulnerability, Remote Code Execution

Netcomm Vulnerability, Remote Code Execution

CVE-2025-4010: ONEKEY Uncovers Critical Remote Code Execution Flaw in Netcomm/Lantronix 4G Gateways

Do Son June 2, 2025

A newly disclosed vulnerability affecting Netcomm Wireless devices—now under Lantronix ownership—has been assigned CVE-2025-4010, and it poses...

Global Crackdown: DoJ Seizes Crypting Services in Major Cybercrime Bust Cybercrime, Domain Seizure

Global Crackdown: DoJ Seizes Crypting Services in Major Cybercrime Bust

Do Son June 2, 2025

The U.S. Department of Justice has announced the seizure of four domains and an associated server operated...

Red Hat Unveils llm-d: Scaling Generative AI for the Enterprise LLM Inference, Red Hat

Red Hat Unveils llm-d: Scaling Generative AI for the Enterprise

Do Son June 2, 2025

Red Hat has recently unveiled an open-source initiative named llm-d, designed to address the most critical demand...

Apple’s AI Race: Is the Tech Giant Falling Behind? Liquid Glass, iPhone 2027 Apple AI Apple Intelligence, China Market

Apple’s AI Race: Is the Tech Giant Falling Behind?

Do Son June 2, 2025

In his “Power On” column, Bloomberg journalist Mark Gurman reported that some Apple employees have expressed a...

MediaTek’s June 2025 Security Bulletin: High-Severity Flaw & Multiple Medium Risks Uncovered MediaTek Vulnerabilities, Chipset Security

MediaTek’s June 2025 Security Bulletin: High-Severity Flaw & Multiple Medium Risks Uncovered

Do Son June 2, 2025

MediaTek, a leading global chipset manufacturer, has published its June 2025 Product Security Bulletin, disclosing one high-severity...

Critical RCE Flaw Patched in Roundcube Webmail: Update Immediately! Roundcube, RCE Vulnerability CVE-2025-49113

Critical RCE Flaw Patched in Roundcube Webmail: Update Immediately!

Do Son June 2, 2025

Roundcube Webmail, a widely-used browser-based IMAP client, has patched a critical security vulnerability, tracked as CVE-2025-49113 (CVSS...

Meta’s Q1 2025 Report: Dismantling Covert Influence Campaigns from China, Iran, and Romania Covert Influence, Disinformation

Meta’s Q1 2025 Report: Dismantling Covert Influence Campaigns from China, Iran, and Romania

Do Son June 2, 2025

Meta has taken down three covert influence campaigns (CIBs) originating from China, Iran, and Romania, according to...

Google AI Edge Gallery: Unleash On-Device AI Power on Your Android (and Soon iOS!) EU AI Act, Google Compliance On-device AI, Mobile AI

Google AI Edge Gallery: Unleash On-Device AI Power on Your Android (and Soon iOS!)

Do Son June 2, 2025

Google has recently and quietly released an application on GitHub titled Google AI Edge Gallery, enabling users...

PoC Reveals Apple Audio Zero-Day Enabling Remote Code Execution via Malicious Media Files CoreAudio Vulnerability, Apple Zero-Day

PoC Reveals Apple Audio Zero-Day Enabling Remote Code Execution via Malicious Media Files

Do Son June 2, 2025

Apple has patched a high-severity zero-day vulnerability in CoreAudio, the framework responsible for audio playback and processing...

Critical SSRF Flaw in Esri Portal for ArcGIS Exposes Internal Networks Esri ArcGIS, SSRF Vulnerability

Critical SSRF Flaw in Esri Portal for ArcGIS Exposes Internal Networks

Do Son June 2, 2025

Esri has issued a critical security patch for its widely used Portal for ArcGIS software, addressing a...

Critical Flaw in Fabio Load Balancer Allows HTTP Header Tampering & Access Bypass Fabio Load Balancer, Header Manipulation

Critical Flaw in Fabio Load Balancer Allows HTTP Header Tampering & Access Bypass

Do Son June 2, 2025

A newly disclosed vulnerability in the Fabio load balancer, tracked as CVE-2025-48865, allows malicious clients to manipulate...

Aviation Industry Alert: 50,000+ Azure AD Records Exposed via Misconfigured API Azure AD, Data Exposure

Aviation Industry Alert: 50,000+ Azure AD Records Exposed via Misconfigured API

Do Son June 2, 2025

A serious data exposure incident in the aviation industry has been uncovered by CloudSEK’s BeVigil platform, revealing...

CISA Alert: Critical Flaws in Consilium Safety CS5000 Fire Panel Could Enable Remote Takeover, No Patch Consilium Safety, Fire Panel Vulnerabilities

Consilium Safety, Fire Panel Vulnerabilities

CISA Alert: Critical Flaws in Consilium Safety CS5000 Fire Panel Could Enable Remote Takeover, No Patch

Do Son June 2, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory warning of two critical security...

Critical Flaws in Veritas DLO Expose Systems to Remote Code Execution Veritas DLO, Critical Vulnerabilities

Critical Flaws in Veritas DLO Expose Systems to Remote Code Execution

Do Son June 2, 2025

Veritas has issued a security advisory warning users of its Desktop Laptop Option (DLO) platform about two...

Critical RCE Flaws in MICI NetFax Server Unpatched, Vendor Refuses Fix NetFax Vulnerabilities, RCE

Critical RCE Flaws in MICI NetFax Server Unpatched, Vendor Refuses Fix

Do Son June 2, 2025

Security researchers at Rapid7 have uncovered a troubling trio of vulnerabilities in MICI Network Co., Ltd.’s NetFax...

PyPI Supply Chain Attack Steals Solana Private Keys via Covert Monkey-Patching PyPI Supply Chain, Solana Theft

PyPI Supply Chain Attack Steals Solana Private Keys via Covert Monkey-Patching

Do Son June 2, 2025

Socket’s Threat Research Team has uncovered a sophisticated supply chain attack on the Python Package Index (PyPI)...

NetSPI Details Multiple Local Privilege Escalation Vulnerabilities in SonicWall NetExtender SonicWall NetExtender, Privilege Escalation

SonicWall NetExtender, Privilege Escalation

NetSPI Details Multiple Local Privilege Escalation Vulnerabilities in SonicWall NetExtender

Do Son June 2, 2025

In a detailed investigation, NetSPI security researchers have uncovered multiple high-risk local privilege escalation (LPE) vulnerabilities in...

Path Traversal at Scale: Study Uncovers 1,756 Vulnerable GitHub Projects and LLM Contamination Path Traversal, LLM Vulnerabilities

Path Traversal at Scale: Study Uncovers 1,756 Vulnerable GitHub Projects and LLM Contamination

Do Son June 2, 2025

A study titled “Eradicating the Unseen” reveals the widespread presence of a critical path traversal vulnerability (CWE-22)...

PumaBot: New Stealthy Linux Botnet Evades Detection, Targets IoT Devices PumaBot, Linux Botnet

PumaBot: New Stealthy Linux Botnet Evades Detection, Targets IoT Devices

Do Son June 1, 2025

Cybersecurity researchers at Darktrace have exposed a stealthy and persistent Linux-based botnet dubbed PumaBot, which leverages Go...

Hitachi Energy’s Asset Suite Hit by Multiple Critical Vulnerabilities Hitachi Energy, Asset Suite Vulnerabilities

Hitachi Energy’s Asset Suite Hit by Multiple Critical Vulnerabilities

Do Son June 1, 2025

Hitachi Energy has issued a cybersecurity advisory warning of multiple vulnerabilities impacting its Asset Suite product—a widely...