Daily CyberSecurity • Page 432 of 739 • Zero-hour alerts. Unmatched analysis.

Researcher Details CVE-2024-20439 (CVSS 9.8) Flaw in Cisco Smart Licensing Utility

Do Son September 23, 2024

In a recent cybersecurity revelation, Nicholas Starke, a threat researcher at Aruba, a Hewlett Packard Enterprise company,...

Fortra BoKS vulnerability OS command injection, CVE-2026-9862 Altium Enterprise Server Vulnerability CVE-2026-9129 Path Traversal Patreon OAuth Vulnerability Identity Collision DRC INSIGHT Vulnerability Exam Data Hijacking Horner Automation PLC Industrial Brute Force Honeywell IQ4x Vulnerability CVE-2026-3611 DJI Romo vacuum security flaw Python Cryptography Vulnerability CVE-2026-26007 Open5GS Vulnerability CVE-2026-0622 Vivotek IP7137 Vulnerabilities CVE-2025-66049 Forcepoint DLP Vulnerability CVE-2025-14026 Cellopoint Secure Email Gateway - CVE-2024-9043

CVE-2024-9043 (CVSS 9.8): Cellopoint Secure Email Gateway Flaw Puts Sensitive Data at Risk

Do Son September 23, 2024

A recently disclosed vulnerability (CVE-2024-9043) in Cellopoint’s Secure Email Gateway (SEG) could expose enterprise email systems to...

CVE-2024-38286: Denial-of-Service Vulnerability Discovered in Apache Tomcat Apache Tomcat, Brute-Force Attacks CVE-2024-38286 - Apache Tomcat 11

CVE-2024-38286: Denial-of-Service Vulnerability Discovered in Apache Tomcat

Do Son September 23, 2024

The Apache Software Foundation has issued a security advisory for a newly discovered vulnerability in Apache Tomcat...

CVE-2024-47062 (CVSS 9.4): Flaws Discovered in Navidrome Music Server Expose Sensitive Data Navidrome - CVE-2024-47062

CVE-2024-47062 (CVSS 9.4): Flaws Discovered in Navidrome Music Server Expose Sensitive Data

Do Son September 23, 2024

In a newly published security advisory, several critical vulnerabilities have been identified in Navidrome, a popular open-source...

Information Stealer Alert: Lumma Strikes Again with Go-Based Injector Go Injector

Information Stealer Alert: Lumma Strikes Again with Go-Based Injector

Do Son September 23, 2024

Recently, the eSentire Threat Response Unit (TRU) discovered a concerning new malware delivery chain involving a Go-based...

Apple Google EU alliance DMA European Commission Breach Trivy Supply Chain Attack Europa.eu Breach EU Cloud Infrastructure EU Cyber Sanctions State-Sponsored Hacking EU 2040 Emissions Target, Europe Climate Leadership AWS Azure DMA Cloud Gatekeeper DSA violation, illegal content Apple DMA Delay, iPhone Mirroring EU EU Age Verification, Google Play Integrity Corning Antitrust, EU Competition Apple EU Digital Markets Act App Store commission European Union cyberattacks - InvestAI EU Targets Musk’s X Digital Markets Act, EU fines

ENISA Calls for Urgent Action as EU Cyberattacks Reach Record High

Do Son September 23, 2024

The European Union is grappling with an unprecedented wave of cyberattacks, according to the latest “ENISA Threat...

CVE-2024-8956 (CVSS 9.1): PTZOptics Cameras Vulnerable to Remote Attacks KMW CCTV vulnerability unauthenticated password reset Xiongmai IP Camera Vulnerability CVE-2025-65856 CVE-2024-8956 (CVSS 9.1): PTZOptics Cameras

KMW CCTV vulnerability unauthenticated password reset Xiongmai IP Camera Vulnerability CVE-2025-65856 CVE-2024-8956 (CVSS 9.1): PTZOptics Cameras

CVE-2024-8956 (CVSS 9.1): PTZOptics Cameras Vulnerable to Remote Attacks

Do Son September 23, 2024

A recently disclosed security flaw, CVE-2024-8956, poses a significant risk to users of certain PTZ cameras, including...

New Necro Trojan Targets Over 11 Million Android Devices Through Google Play and Unofficial Apps

Do Son September 23, 2024

In a concerning development for Android users, Kaspersky Labs has uncovered a new version of the Necro...

What is Cybersecurity Risk? BlackByte Ransomware Group

What is Cybersecurity Risk?

Do Son September 23, 2024

In today’s interconnected world, the term “cybersecurity risk” has become a focal point for businesses of all...

BingX Suffers $44 Million Cyberattack, Highlighting Web3 Security Concerns BingX cyberattack FortiGate SSO Attacks Firewall Config Theft

BingX Suffers $44 Million Cyberattack, Highlighting Web3 Security Concerns

Do Son September 23, 2024

Singapore-based cryptocurrency exchange BingX has reported a significant cyberattack resulting in the loss of over $44 million...

WordPress Theme ‘Houzez’ and Associated Plugin Vulnerabilities Expose Thousands of Sites Houzez theme - CVE-2024-22303 and CVE-2024-21743

WordPress Theme ‘Houzez’ and Associated Plugin Vulnerabilities Expose Thousands of Sites

Do Son September 23, 2024

Two critical vulnerabilities have been discovered in the widely-used WordPress theme Houzez and its companion plugin Houzez...

Qualcomm’s Bold Move: Intel Acquisition Bid Faces Antitrust Hurdle Qualcomm acquisition Intel

Qualcomm’s Bold Move: Intel Acquisition Bid Faces Antitrust Hurdle

Do Son September 22, 2024

Earlier reports suggested that Qualcomm, a major chip design company, has shown significant interest in Intel’s chip...

Windows Server Update Services Deprecation: What It Means for Your Update Strategy

Do Son September 22, 2024

Windows Server Update Services (WSUS) is a long-standing update service from Microsoft aimed at enterprises, allowing IT...

FreeBSD Issues Critical Security Advisory for CVE-2024-41721 (CVSS 9.8) CVE-2024-41721 - FreeBSD FreeBSD RCE, IPv6 Router Advertisement

FreeBSD Issues Critical Security Advisory for CVE-2024-41721 (CVSS 9.8)

Do Son September 22, 2024

A recently disclosed security advisory has unveiled a critical vulnerability affecting FreeBSD’s bhyve hypervisor. Identified as CVE-2024-41721,...

CVE-2024-7490: Urgent Warning for IoT Devices Using Microchip ASF, No Patch Available tinydhcp server - CVE-2024-7490

CVE-2024-7490: Urgent Warning for IoT Devices Using Microchip ASF, No Patch Available

Do Son September 22, 2024

The latest vulnerability disclosure identifies a significant security flaw in the Microchip Advanced Software Framework (ASF), specifically...

RecordStealer: A Case Study in the Persistent Threat of Info-Stealing Malware

Do Son September 22, 2024

Google security researchers recently brought attention to the lingering impact of info-stealing malware. One such threat is...

Critical Dragonfly2 Flaw CVE-2023-27584: Hardcoded Key Threatens Admin Access

Do Son September 22, 2024

A serious security flaw has been uncovered in Dragonfly2, an open-source, peer-to-peer-based file distribution and image acceleration...

CVE-2024-8986 (CVSS 9.1): Critical Grafana Plugin SDK Flaw Exposes Sensitive Information CVE-2024-8986 - grafana plugin SDK

CVE-2024-8986 (CVSS 9.1): Critical Grafana Plugin SDK Flaw Exposes Sensitive Information

Do Son September 22, 2024

In a concerning development for Grafana users, a critical security vulnerability has been discovered in the Grafana...

GreyNoise Intelligence Uncovers New Internet Noise Storm with Potential China Link and Cryptic “LOVE” Message

Do Son September 22, 2024

GreyNoise Intelligence has recently released findings regarding a new and increasingly complex wave of “Noise Storms” –...

Passive Backdoors, Active Threat: UNC1860’s Espionage Tools Exposed CVE-2024-1147 and CVE-2024-1148

Passive Backdoors, Active Threat: UNC1860’s Espionage Tools Exposed

Do Son September 22, 2024

Mandiant has uncovered alarming evidence of a sophisticated Iranian state-sponsored cyber campaign orchestrated by UNC1860, a threat...