Cyber Security Archives • Page 10 of 11 • Daily CyberSecurity

Iran Tests Academic “Whitelists” Amid Nationwide 2026 Blackout Iran internet blackout 2026, academic ASN connectivity surge

Iran Tests Academic “Whitelists” Amid Nationwide 2026 Blackout

Ddos January 10, 2026

Iran has currently severed all access to the international internet due to internal domestic unrest. Observational data...

CVE-2026-21440: New AdonisJS 9.2 Critical Flaw Allows Arbitrary File Writes and RCE AdonisJS RCE, CVE-2026-21440

CVE-2026-21440: New AdonisJS 9.2 Critical Flaw Allows Arbitrary File Writes and RCE

Ddos January 5, 2026

A critical security vulnerability has been discovered in AdonisJS, a popular full-stack Node.js web framework known for...

CVE-2025-68926: Critical Hardcoded Credential Flaw Exposes RustFS Storage Clusters RustFS, Hardcoded Token (CVE-2025-68926)

CVE-2025-68926: Critical Hardcoded Credential Flaw Exposes RustFS Storage Clusters

Ddos January 2, 2026

RustFS, a distributed object storage system celebrated for leveraging the memory safety and performance of the Rust...

CVE-2025-47411: Critical Apache StreamPipes Flaw Allows Standard Users to Seize Admin Control CVE-2024-29868 Apache StreamPipes, CVE-2025-47411

CVE-2025-47411: Critical Apache StreamPipes Flaw Allows Standard Users to Seize Admin Control

Ddos December 31, 2025

The Apache Software Foundation has released a critical fix for StreamPipes, its self-service Industrial IoT toolbox designed...

ChatGPT Atlas Under Guard: OpenAI Fortifies Browser Agent Against “Prompt Injection” Attacks ChatGPT Atlas, Prompt Injection Safeguards

ChatGPT Atlas Under Guard: OpenAI Fortifies Browser Agent Against “Prompt Injection” Attacks

Ddos December 25, 2025

As artificial intelligence begins to browse the web on our behalf, the battleground for security is shifting...

The Notarized Nightmare: New MacSync Stealer Bypasses Gatekeeper to Hijack Mac Devices OSX/Amos Stealer Electron ASAR Trojan MioLab Malware macOS Security MacSync Stealer macOS Malware ambar-src npm Malware Supply Chain Typosquatting Matryoshka Mac Malware ClickFix Crypto Scam Infostealer Evolution macOS Malware Predator Spyware Intellexa Anti-Analysis XCSSET macOS Malware, Xcode Supply Chain

OSX/Amos Stealer Electron ASAR Trojan MioLab Malware macOS Security MacSync Stealer macOS Malware ambar-src npm Malware Supply Chain Typosquatting Matryoshka Mac Malware ClickFix Crypto Scam Infostealer Evolution macOS Malware Predator Spyware Intellexa Anti-Analysis XCSSET macOS Malware, Xcode Supply Chain

The Notarized Nightmare: New MacSync Stealer Bypasses Gatekeeper to Hijack Mac Devices

Ddos December 24, 2025

The cat-and-mouse game between Apple’s security protocols and malware authors has taken a stealthy turn. A new...

n8n Under Fire: Critical CVSS 10.0 RCE Vulnerability Grants Total Server Access n8n Node RCE Vulnerabilities CVE-2026-44791 Prototype Pollution n8n RCE Vulnerabilities CVE-2026-27497 CVE-2026-25053 n8n RCE Vulnerability CVE-2026-21877 n8n RCE, CVE-2025-68613 n8n Git RCE, core.hooksPath Exploit

n8n Node RCE Vulnerabilities CVE-2026-44791 Prototype Pollution n8n RCE Vulnerabilities CVE-2026-27497 CVE-2026-25053 n8n RCE Vulnerability CVE-2026-21877 n8n RCE, CVE-2025-68613 n8n Git RCE, core.hooksPath Exploit

n8n Under Fire: Critical CVSS 10.0 RCE Vulnerability Grants Total Server Access

Ddos December 22, 2025

The popular workflow automation tool n8n has issued a critical security alert after discovering a vulnerability that...

TikTok’s “Scam-Yourself” Trap: How AuraStealer Malware Tricks Users into Hacking Their Own PCs AuraStealer, Scam-Yourself

TikTok’s “Scam-Yourself” Trap: How AuraStealer Malware Tricks Users into Hacking Their Own PCs

Ddos December 22, 2025

A deep-dive analysis by Gen Digital (Gen Threat Labs) has unveiled AuraStealer, an emerging Malware-as-a-Service (MaaS) that...

CISA Alert: Chinese Hackers Weaponize CVSS 10 Cisco Zero-Day & SonicWall Exploit Chains CISA KEV Update, Cisco Zero-Day KEV Vulnerabilities

CISA Alert: Chinese Hackers Weaponize CVSS 10 Cisco Zero-Day & SonicWall Exploit Chains

Ddos December 18, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent directive adding three critical vulnerabilities to...

Russian Disinformation Campaign Targets Moldova’s Pro-EU Elections Autumn Dragon Espionage, DLL Sideloading Moldova disinformation AcidPour Wiper Malware

Autumn Dragon Espionage, DLL Sideloading Moldova disinformation AcidPour Wiper Malware

Russian Disinformation Campaign Targets Moldova’s Pro-EU Elections

Ddos September 25, 2025

With Moldova’s nationwide elections approaching on September 28, 2025, researchers at Silent Push have uncovered a Russian-linked...

The Great Firewall Leaks: A 600GB Trove of Secrets Exposed Booking.com Data Breach Claude Code Leak Anthropic Source Code YggTorrent data breach PS5 BootROM key leak 2026, PlayStation 5 unpatchable jailbreak Great Firewall data leak Dating App Breach, Tea App Leak 23andMe Data Leak

Booking.com Data Breach Claude Code Leak Anthropic Source Code YggTorrent data breach PS5 BootROM key leak 2026, PlayStation 5 unpatchable jailbreak Great Firewall data leak Dating App Breach, Tea App Leak 23andMe Data Leak

The Great Firewall Leaks: A 600GB Trove of Secrets Exposed

Ddos September 19, 2025

China’s internet censorship system, the Great Firewall, has recently suffered the largest data breach in its history,...

DOJ Charges UK National Linked to Scattered Spider in $115M Cyber Extortion Scheme Romanian hacker sentenced identity theft conviction Pig-Butchering Crackdown Operation Level Up Oleksandr Didenko North Korean IT Workers Coinbase TaskUs insider breach, Hyderabad police Coinbase arrest Scattered Spider, Cybercrime Scattered Spider group

Romanian hacker sentenced identity theft conviction Pig-Butchering Crackdown Operation Level Up Oleksandr Didenko North Korean IT Workers Coinbase TaskUs insider breach, Hyderabad police Coinbase arrest Scattered Spider, Cybercrime Scattered Spider group

DOJ Charges UK National Linked to Scattered Spider in $115M Cyber Extortion Scheme

Ddos September 19, 2025

The U.S. Department of Justice (DOJ) has unsealed a criminal complaint charging Thalha Jubair, a 19-year-old United...

MuddyWater APT Shifts Tactics to Custom Malware MuddyWater APT ANY.RUN security incident

MuddyWater APT Shifts Tactics to Custom Malware

Ddos September 19, 2025

Group-IB analysts have released new intelligence on MuddyWater, the Iranian state-sponsored APT linked to Tehran’s Ministry of...

SolarWinds Issues Advisory on Salesforce Data Breach Linked to Salesloft Drift Serv-U RCE, Authenticated RCE CVE-2024-0692 Salesforce breach

SolarWinds Issues Advisory on Salesforce Data Breach Linked to Salesloft Drift

Ddos September 18, 2025

SolarWinds has issued a security advisory regarding a major Salesforce data breach that exposed sensitive information from...

Hacker Tied to Yemen Cyber Army Sentenced for Stealing Data of 4 Million People Cybercrime, Hacker

Hacker Tied to Yemen Cyber Army Sentenced for Stealing Data of 4 Million People

Ddos August 20, 2025

The UK’s National Crime Agency (NCA) has announced the sentencing of Al Tahery Al-Mashriky, a 26-year-old hacker...

Russia Begins Systematic Blocking of Cloudflare, Throttling Internet Access to 16KB Cloudflare layoffs 2026 AI bot traffic surge Content Signals Policy, AI Content Usage Cloudflare, Certificate Misissuance Salesforce, supply chain attack DDoS attack, Cloudflare Perplexity AI, Web Scraping Pay Per Crawl Cloudflare abuse R2 outage HTTP Cloudflare Blocking

Cloudflare layoffs 2026 AI bot traffic surge Content Signals Policy, AI Content Usage Cloudflare, Certificate Misissuance Salesforce, supply chain attack DDoS attack, Cloudflare Perplexity AI, Web Scraping Pay Per Crawl Cloudflare abuse R2 outage HTTP Cloudflare Blocking

Russia Begins Systematic Blocking of Cloudflare, Throttling Internet Access to 16KB

Ddos June 30, 2025

In March 2025, Russia conducted preliminary tests in select regions to sever connections to Cloudflare, aiming to...

CISA Adds 5 Actively Exploited Vulnerabilities to KEV Catalog: ASUS Routers, Craft CMS, and ConnectWise Targeted CISA KEV, Zero-Day Exploits

CISA Adds 5 Actively Exploited Vulnerabilities to KEV Catalog: ASUS Routers, Craft CMS, and ConnectWise Targeted

Ddos June 3, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has added five new vulnerabilities to its Known Exploited Vulnerabilities...

Meta’s Q1 2025 Report: Dismantling Covert Influence Campaigns from China, Iran, and Romania Covert Influence, Disinformation

Meta’s Q1 2025 Report: Dismantling Covert Influence Campaigns from China, Iran, and Romania

Ddos June 2, 2025

Meta has taken down three covert influence campaigns (CIBs) originating from China, Iran, and Romania, according to...

Critical Open Source Library ‘easyjson’ Linked to Russian VK Group easyjson, supply chain security

Critical Open Source Library ‘easyjson’ Linked to Russian VK Group

Ddos May 7, 2025

Hunted Labs has uncovered that a widely used open source library—easyjson—is maintained and controlled by developers associated...

NCSC Warns of Pervasive Ransomware Threat: Act Now Ransomware, Cyber Security

NCSC Warns of Pervasive Ransomware Threat: Act Now

Ddos May 5, 2025

The UK’s National Cyber Security Centre (NCSC) has issued a warning: ransomware and cyber extortion are no...