cybersecurity Archives • Page 48 of 88 • Daily CyberSecurity

iOS Update: Proton Authenticator Bug Leaked TOTP Secrets in Plaintext Logs Proton Authenticator, MFA Security Proton Authenticator, iOS Vulnerability

Proton Authenticator, MFA Security Proton Authenticator, iOS Vulnerability

iOS Update: Proton Authenticator Bug Leaked TOTP Secrets in Plaintext Logs

Do Son August 5, 2025

If you are using the iOS version of Proton Authenticator, it is imperative that you visit the...

Cloudflare Accuses Perplexity AI of Evading Blocks and Impersonating Chrome to Scrape Websites Cloudflare layoffs 2026 AI bot traffic surge Content Signals Policy, AI Content Usage Cloudflare, Certificate Misissuance Salesforce, supply chain attack DDoS attack, Cloudflare Perplexity AI, Web Scraping Pay Per Crawl Cloudflare abuse R2 outage HTTP Cloudflare Blocking

Cloudflare layoffs 2026 AI bot traffic surge Content Signals Policy, AI Content Usage Cloudflare, Certificate Misissuance Salesforce, supply chain attack DDoS attack, Cloudflare Perplexity AI, Web Scraping Pay Per Crawl Cloudflare abuse R2 outage HTTP Cloudflare Blocking

Cloudflare Accuses Perplexity AI of Evading Blocks and Impersonating Chrome to Scrape Websites

Do Son August 5, 2025

The artificial intelligence search company Perplexity AI has previously been accused of engaging in unauthorized web scraping....

10.0 Critical ADOdb Flaw (CVE-2025-54119, CVSS 10.0) in SQLite3 Driver Allows SQL Injection ADOdb SQL Injection, PHP Vulnerability

10.0 Critical ADOdb Flaw (CVE-2025-54119, CVSS 10.0) in SQLite3 Driver Allows SQL Injection

Do Son August 5, 2025

A critical SQL injection vulnerability has been discovered in ADOdb, a widely used PHP database abstraction library....

Android CLI Android Security Zero-Interaction DoS CVE-2026-21385 Android Security Update UK CMA Apple Google regulation Google Aluminum OS Android 16 leak, ALOS Android ChromeOS merger Android sideloading certification 2026, Google developer verification APK Android AOSP biannual release, AOSP source code latency 2026 Android Zero-Day, Critical DoS Flaw Android Universal Clipboard Cross-Device Sync Gemini Nano Block, Unlocked Bootloader Android, Calling Cards Android Security Bulletin, RCE Vulnerability Android Linux GUI, Debian VM Android System Services, Google Transparency Android 16, Pixel Update

8.1 Android Security Update: Critical RCE Flaw (CVE-2025-48530) in System Component Patched

Do Son August 5, 2025

Google has released the August 2025 Android Security Bulletin, addressing multiple critical and high-severity vulnerabilities affecting Android...

9.8 Critical Triton Flaws (CVSS 9.8) Expose AI Servers to Remote Takeover – Patch Now! NemoClaw Prompt Injection AI Sandbox Security NVIDIA Physical AI CES 2026, Jetson T4000 robotics hardware NVIDIA AI Security, Isaac Lab RCE NVIDIA Driver RCE, CVE-2025-23309 NVIDIA Triton, AI Server Vulnerabilities CVE-2023-31029 & CVE-2023-31024 - CVE‑2024-0112

NemoClaw Prompt Injection AI Sandbox Security NVIDIA Physical AI CES 2026, Jetson T4000 robotics hardware NVIDIA AI Security, Isaac Lab RCE NVIDIA Driver RCE, CVE-2025-23309 NVIDIA Triton, AI Server Vulnerabilities CVE-2023-31029 & CVE-2023-31024 - CVE‑2024-0112

9.8 Critical Triton Flaws (CVSS 9.8) Expose AI Servers to Remote Takeover – Patch Now!

Do Son August 5, 2025

NVIDIA has released urgent software updates to address a set of critical vulnerabilities discovered in its popular...

PlayPraetor: New Android RAT Infects 11,000+ Devices with Real-Time On-Device Fraud Android RAT, PlayPraetor

PlayPraetor: New Android RAT Infects 11,000+ Devices with Real-Time On-Device Fraud

Do Son August 5, 2025

A large-scale cyber fraud campaign is sweeping across continents, exploiting Android devices. Security researchers at Cleafy have...

APT36 Targets Indian Government with Sophisticated Phishing, Bypassing MFA with Real-Time OTP Harvest APT36, Indian Government Phishing

APT36 Targets Indian Government with Sophisticated Phishing, Bypassing MFA with Real-Time OTP Harvest

Do Son August 5, 2025

A new report by CYFIRMA has uncovered a meticulously crafted phishing campaign attributed to APT36 (Transparent Tribe),...

New PXA Stealer Campaign Hits 62 Countries with Stealthy DLL Sideloading and Telegram Exfiltration PXA Stealer, Infostealer

New PXA Stealer Campaign Hits 62 Countries with Stealthy DLL Sideloading and Telegram Exfiltration

Do Son August 5, 2025

A new report by SentinelLABS and Beazley Security unveils an expansive and rapidly evolving infostealer operation powered...

9.8 Critical Dell DD OS Flaw (CVSS 9.8) Allows Unauthenticated Remote Access Dell DD OS Vulnerability, Authentication Bypass Dell SmartFabric OS10 Vulnerabilities

9.8 Critical Dell DD OS Flaw (CVSS 9.8) Allows Unauthenticated Remote Access

Do Son August 5, 2025

Dell Technologies has released an urgent security advisory addressing multiple vulnerabilities affecting its PowerProtect Data Domain Operating...

The Evolution of Evasion: Raspberry Robin Malware Upgrades with New Encryption & UAC Bypass Exploit Raspberry Robin, Malware Evasion

The Evolution of Evasion: Raspberry Robin Malware Upgrades with New Encryption & UAC Bypass Exploit

Do Son August 5, 2025

ThreatLabz has released a fresh technical update on Raspberry Robin, the elusive USB-propagated malware also known as...

Beavertail Malware Returns: North Korean Hackers Use NPM Packages to Steal Crypto & Secrets North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

North Korean Laptop Farm DPRK Insider Threat North Korea WMD Cyber Funding, Australia Sanctions Insider threat, North Korean hackers Kimsuky, cyber-espionage NPM Malware, North Korea Cyber-espionage North Korea, Remote IT Job Scam Laptop Farm - DriverEasy - Kimsuky Watering Hole Attack

Beavertail Malware Returns: North Korean Hackers Use NPM Packages to Steal Crypto & Secrets

Do Son August 5, 2025

Veracode Threat Research has released an update on an ongoing North Korean cyber-espionage campaign that is actively...

Kimsuky APT Escalates Cyberespionage with Stealthy LNK Files & Reflective Malware Payloads Kimsuky APT, Cyberespionage

Kimsuky APT Escalates Cyberespionage with Stealthy LNK Files & Reflective Malware Payloads

Do Son August 5, 2025

A new report from Aryaka Threat Research Labs has disclosured one of the most technically sophisticated and...

Urgent Zero-Day Warning: SonicWall VPNs Under Attack, Akira Ransomware Deployed Within Hours hackerbot-claw campaign Cisco RCE Exploit CVE-2026-20045 SonicWall VPN, Akira Ransomware Nobelium Apache Tomcat, Apache Camel

hackerbot-claw campaign Cisco RCE Exploit CVE-2026-20045 SonicWall VPN, Akira Ransomware Nobelium Apache Tomcat, Apache Camel

Urgent Zero-Day Warning: SonicWall VPNs Under Attack, Akira Ransomware Deployed Within Hours

Do Son August 4, 2025

Huntress has issued a critical alert about what appears to be a zero-day vulnerability in SonicWall Secure...

macOS Sequoia Unleashes Native Linux Containers: Kali Linux Now Runs Natively on Apple Silicon Kali Linux, repository signing key macOS Linux Containers

Kali Linux, repository signing key macOS Linux Containers

macOS Sequoia Unleashes Native Linux Containers: Kali Linux Now Runs Natively on Apple Silicon

Do Son August 4, 2025

During WWDC 2025, Apple unveiled a new containerization framework that allows applications to run in isolated containers...

PyPitfall: Python’s Hidden Vulnerabilities Propagate Through 145K+ Packages Python Supply Chain, PyPI Vulnerabilities

PyPitfall: Python’s Hidden Vulnerabilities Propagate Through 145K+ Packages

Do Son August 4, 2025

A study from the New Jersey Institute of Technology has exposed a massive web of hidden vulnerabilities...

ShadowSyndicate’s Global Ransomware Empire Blurs Lines Between Cybercrime and Geopolitical Espionage ShadowSyndicate, Ransomware-as-a-Service

ShadowSyndicate, Ransomware-as-a-Service

ShadowSyndicate’s Global Ransomware Empire Blurs Lines Between Cybercrime and Geopolitical Espionage

Do Son August 4, 2025

In a recent investigation, cybersecurity firm Intrinsec has illuminated the sprawling infrastructure of ShadowSyndicate, a clandestine threat...

Critical Critical Flaws Found in Partner Software: Default Admin Passwords & XSS Allow RCE on Government Systems Partner Software, RCE Vulnerability

Critical Critical Flaws Found in Partner Software: Default Admin Passwords & XSS Allow RCE on Government Systems

Do Son August 4, 2025

A recent vulnerability note issued by CERT/CC disclosured three critical security flaws in Partner Software’s flagship platforms—Partner...

9.4 Critical RCE Flaw (CVE-2025-54782) in NestJS DevTools Allows Remote Code Execution NestJS Vulnerability, Remote Code Execution

9.4 Critical RCE Flaw (CVE-2025-54782) in NestJS DevTools Allows Remote Code Execution

Do Son August 4, 2025

A critical vulnerability has been uncovered in the @nestjs/devtools-integration package—a component of the popular NestJS framework for...

8.5 Prompt Injection to Code Execution: Cursor Code Editor Hit by Critical MCP Vulnerabilities (CVE-2025-54135 & CVE-2025-54136) Cursor Vulnerability, MCP Security

8.5 Prompt Injection to Code Execution: Cursor Code Editor Hit by Critical MCP Vulnerabilities (CVE-2025-54135 & CVE-2025-54136)

Do Son August 4, 2025

Cursor, an AI-powered code editor that promises to “understand your codebase and help you code faster,” has...

Storm-2603: Chinese APT Deploys Warlock & LockBit with AK47C2 Framework Antivirus Terminator supported arguments when run without parameters

Storm-2603: Chinese APT Deploys Warlock & LockBit with AK47C2 Framework

Do Son August 4, 2025

Check Point Research (CPR) has detailed a previously undocumented Chinese-affiliated threat actor—Storm-2603—linked to aggressive campaigns exploiting Microsoft...