cybersecurity Archives • Page 40 of 88 • Daily CyberSecurity

9.8 PoC Available: D-Link Router Flaw with CVSS 9.8 and No Patch D-Link EOL RCE, Unauthenticated Command Injection D-Link Command Injection CVE-2025-57105

D-Link EOL RCE, Unauthenticated Command Injection D-Link Command Injection CVE-2025-57105

9.8 PoC Available: D-Link Router Flaw with CVSS 9.8 and No Patch

Do Son August 27, 2025

D-Link has issued an important security bulletin concerning its legacy DI-7400G+ router series, warning users of a...

Nx Build System Compromise Targets Developers with AI-Enhanced Supply Chain Attack Nx supply chain attack

Nx Build System Compromise Targets Developers with AI-Enhanced Supply Chain Attack

Do Son August 27, 2025

The StepSecurity research team has issued a warning about a large-scale supply chain attack involving the popular...

Beyond Compliance: Broadcom’s New Private Cloud Tools Secure AI Workloads Private cloud security, AI security

Beyond Compliance: Broadcom’s New Private Cloud Tools Secure AI Workloads

Do Son August 27, 2025

In addition to introducing privatized AI services within VMware Cloud Foundation (VCF) 9.0, enabling enterprises to natively...

A New AI Frontier: Claude’s Chrome Extension Opens the Door to New Dangers Anthropic valuation $350 billion AI agent, prompt injection

A New AI Frontier: Claude’s Chrome Extension Opens the Door to New Dangers

Do Son August 27, 2025

Recently, Anthropic introduced a Chrome-based extension for Claude Max users, designed to read active web pages and...

Chrome Security Update Use After Free Chrome Security Update Critical Vulnerabilities Chrome Security Update CVE-2026-3062 Chrome Security Update V8 Engine Vulnerability Chrome Security Update CVE-2026-1862 CVE-2026-0628 Chrome 143 Update Chrome Safe Browsing UAF, CVE-2025-11756 Chrome Memory Flaws, CVE-2025-11460 Google Chrome, vulnerability CVE-2025-10200, CVE-2025-10201 Big Sleep CVE-2025-9478 Chrome Update, Security Vulnerabilities

8.8 Google Chrome Patches Critical ANGLE Vulnerability (CVE-2025-9478) Discovered by AI Agent Big Sleep

Do Son August 27, 2025

Google has released a critical security update for the Stable channel of Chrome, addressing a use-after-free vulnerability...

Hook v3: The Banking Trojan That’s Evolving into a Hybrid Ransomware-Spyware Threat Hook malware, Android trojan

Hook v3: The Banking Trojan That’s Evolving into a Hybrid Ransomware-Spyware Threat

Do Son August 27, 2025

The zLabs research team at Zimperium has uncovered a dangerous new evolution of the Hook Android banking...

9.8 CVE-2025-41702 (CVSS 9.8): Critical Flaw in Welotec egOS Puts Industrial Systems at Risk Welotec Vulnerability CVE-2025-41702

9.8 CVE-2025-41702 (CVSS 9.8): Critical Flaw in Welotec egOS Puts Industrial Systems at Risk

Do Son August 27, 2025

A critical flaw has been identified in the Welotec egOS WebGUI backend, tracked as CVE-2025-41702, which could...

Google Threat Intelligence Exposes UNC6384’s Stealthy Espionage Campaign UNC6384, cyber-espionage

Google Threat Intelligence Exposes UNC6384’s Stealthy Espionage Campaign

Do Son August 27, 2025

Google Threat Intelligence Group (GTIG) uncovered a complex, multi-stage cyber-espionage campaign attributed to the PRC-linked threat actor...

SpyNote’s New Lure: The Stealthy Campaign Using Fake App Stores Android RAT, SpyNote

SpyNote’s New Lure: The Stealthy Campaign Using Fake App Stores

Do Son August 27, 2025

Researchers at DomainTools have uncovered a persistent SpyNote Android Remote Access Trojan (RAT) campaign, where threat actors...

Cephalus: The New Ransomware That Abuses Legitimate Tools to Bypass Security

Do Son August 27, 2025

Recently, threat hunters at Huntress observed two separate incidents involving a new ransomware variant dubbed Cephalus. The...

The Underground Ransomware Gang Is Back with a Vicious New Global Campaign

Do Son August 27, 2025

The Underground ransomware gang is intensifying its operations, launching continuous ransomware attacks against companies worldwide, including high-profile...

Farmers Insurance Breach: 1.1 Million Customers Exposed in Salesforce Attack Fiverr Data Leak Claude Code Leak Anthropic DMCA Takedown Coupang 33.7M Breach South Korea Data Leak Red Hat Breach, Customer Data Theft Farmers Insurance, Salesforce ESLint Plugin -Mamont Android banking Trojan

Fiverr Data Leak Claude Code Leak Anthropic DMCA Takedown Coupang 33.7M Breach South Korea Data Leak Red Hat Breach, Customer Data Theft Farmers Insurance, Salesforce ESLint Plugin -Mamont Android banking Trojan

Farmers Insurance Breach: 1.1 Million Customers Exposed in Salesforce Attack

Do Son August 27, 2025

Recently, there has been a surge in attacks targeting customer relationship management (CRM) systems, particularly Salesforce. Even...

9.2 URGENT: NetScaler Zero-Day CVE-2025-7775 Under Active Attack NetScaler, CVE-2025-7775

9.2 URGENT: NetScaler Zero-Day CVE-2025-7775 Under Active Attack

Do Son August 26, 2025

The Cloud Software Group (CSG) has released urgent security updates to address three high-severity vulnerabilities affecting NetScaler...

7.2 PoC Code Available for Critical SQLite Vulnerability (CVE-2025-6965) SQLite vulnerability CVE-2025-6965 PoC

7.2 PoC Code Available for Critical SQLite Vulnerability (CVE-2025-6965)

Do Son August 26, 2025

Google revealed that its large language model (LLM)-assisted vulnerability discovery framework detected and reported a critical flaw...

8.8 Langflow Hit by Privilege Escalation Flaw: CVE-2025-57760 Langflow, Privilege escalation

8.8 Langflow Hit by Privilege Escalation Flaw: CVE-2025-57760

Do Son August 26, 2025

The Langflow project has issued an important security advisory regarding a newly discovered vulnerability that poses a...

8.7 CVE-2025-54370: SSRF Vulnerability Discovered in PhpSpreadsheet Library CVE-2026-45034 exploit PhpSpreadsheet RCE vulnerability PhpSpreadsheet CVE-2025-54370

CVE-2026-45034 exploit PhpSpreadsheet RCE vulnerability PhpSpreadsheet CVE-2025-54370

8.7 CVE-2025-54370: SSRF Vulnerability Discovered in PhpSpreadsheet Library

Do Son August 26, 2025

A newly disclosed security flaw, tracked as CVE-2025-54370, has been identified in PhpSpreadsheet, a PHP-based library that...

Two RCE Vulnerabilities Found in Open-Source BI Tool DataEase DataEase, RCE vulnerability

Two RCE Vulnerabilities Found in Open-Source BI Tool DataEase

Do Son August 26, 2025

Security researchers have disclosed two critical vulnerabilities in DataEase, an open-source business intelligence (BI) tool designed for...

CISA Adds Citrix and Git Flaws to Known Exploited Vulnerabilities Catalog n8n RCE Vulnerability CVE-2025-68613 CISA KEV WinRAR Zero-Day, Cloud Files UAF OpenPLC ScadaBR, CVE-2021-26829 CISA KEV, Gladinet LFI RCE XWiki RCE, VMware EoP CISA KEV CISA, Known Exploited Vulnerabilities CVE-2020-2883 CISA, Trend Micro

n8n RCE Vulnerability CVE-2025-68613 CISA KEV WinRAR Zero-Day, Cloud Files UAF OpenPLC ScadaBR, CVE-2021-26829 CISA KEV, Gladinet LFI RCE XWiki RCE, VMware EoP CISA KEV CISA, Known Exploited Vulnerabilities CVE-2020-2883 CISA, Trend Micro

CISA Adds Citrix and Git Flaws to Known Exploited Vulnerabilities Catalog

Do Son August 26, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has added three new vulnerabilities to its Known Exploited Vulnerabilities...

A Storm Is Coming: A Massive Coordinated Attack Is Probing RDP Connections RDP scanning, Remote Desktop Protocol

A Storm Is Coming: A Massive Coordinated Attack Is Probing RDP Connections

Do Son August 26, 2025

Security intelligence firm GreyNoise has sounded the alarm over a massive spike in Microsoft Remote Desktop (RDP)...

FortiGuard Labs Uncovers Global Phishing Campaign Using UpCrypter to Deploy RATs Phishing campaign, UpCrypter

FortiGuard Labs Uncovers Global Phishing Campaign Using UpCrypter to Deploy RATs

Do Son August 26, 2025

FortiGuard Labs has uncovered a rapidly spreading phishing campaign that leverages carefully crafted emails and fake websites...