June 23, 2026

cybersecurity

9.3 CitrixBleed 2: CVE-2025-5777 Joins CISA’s KEV Catalog Amid Active Exploitation Storm, PoC Available CitrixBleed 2, Session Hijacking

9.3 CitrixBleed 2: CVE-2025-5777 Joins CISA’s KEV Catalog Amid Active Exploitation Storm, PoC Available

Do Son July 11, 2025 0
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added CVE-2025-5777 to its Known Exploited Vulnerabilities...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">9.3</span> CitrixBleed 2: CVE-2025-5777 Joins CISA’s KEV Catalog Amid Active Exploitation Storm, PoC Available
Critical Juniper Security Director Alert: Critical Flaw Allows Unauthenticated Access to Sensitive Resources Junos OS Evolved CVE-2026-21902 Juniper Security Director, Critical Vulnerability Junos OS vulnerabilities - CVE-2025-21598 & CVE-2025-21599

Critical Juniper Security Director Alert: Critical Flaw Allows Unauthenticated Access to Sensitive Resources

Do Son July 11, 2025 0
Juniper Networks, a cornerstone in enterprise-grade network security, has issued a critical alert for a Missing Authorization...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> Juniper Security Director Alert: Critical Flaw Allows Unauthenticated Access to Sensitive Resources
Iranian Ransomware “Pay2Key.I2P” Resurfaces on I2P Network, Offering 80% Profit for Targeting Western Enemies INC Ransom Pacific Cyber Threats OysterLoader Malware Rhysida Ransomware Black Basta Ransomware BYOVD Technique Velociraptor Abuse, Storm-2603 Ransomware Crypto24, Ransomware Ransomware Payments, UK Legislation ZACROS data breach

Iranian Ransomware “Pay2Key.I2P” Resurfaces on I2P Network, Offering 80% Profit for Targeting Western Enemies

Do Son July 11, 2025 0
In the shadow of geopolitical tensions among Iran, Israel, and the United States, an ominous threat has...
Read More Read more about Iranian Ransomware “Pay2Key.I2P” Resurfaces on I2P Network, Offering 80% Profit for Targeting Western Enemies
8.5 Helm Flaw (CVE-2025-53547): Local Code Execution via Malicious Chart.yaml & Symlinks Helm, Local Code Execution

8.5 Helm Flaw (CVE-2025-53547): Local Code Execution via Malicious Chart.yaml & Symlinks

Do Son July 11, 2025 0
The Helm project—the popular Kubernetes package manager—has released a critical security advisory for CVE-2025-53547, a high-severity vulnerability...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">8.5</span> Helm Flaw (CVE-2025-53547): Local Code Execution via Malicious Chart.yaml & Symlinks
8.1 SureForms WordPress Plugin Flaw (CVE-2025-6691): Unauthenticated Arbitrary File Deletion Leads to Site Takeover, 200K Sites at Risks WordPress Plugin, Arbitrary File Deletion

8.1 SureForms WordPress Plugin Flaw (CVE-2025-6691): Unauthenticated Arbitrary File Deletion Leads to Site Takeover, 200K Sites at Risks

Do Son July 10, 2025 0
A critical vulnerability in the SureForms WordPress plugin—which has over 200,000 active installations—has exposed websites to a...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">8.1</span> SureForms WordPress Plugin Flaw (CVE-2025-6691): Unauthenticated Arbitrary File Deletion Leads to Site Takeover, 200K Sites at Risks
9.8 Critical D-Link DIR-825 Router Flaw (CVE-2025-7206, CVSS 9.8): Remote Crash Via Buffer Overflow D-Link DIR-825, Critical Vulnerability

9.8 Critical D-Link DIR-825 Router Flaw (CVE-2025-7206, CVSS 9.8): Remote Crash Via Buffer Overflow

Do Son July 10, 2025 0
A newly discovered critical vulnerability (CVE-2025-7206) in the D-Link DIR-825 router running firmware version 2.10 poses a...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">9.8</span> Critical D-Link DIR-825 Router Flaw (CVE-2025-7206, CVSS 9.8): Remote Crash Via Buffer Overflow
Critical Ruckus Wireless Exposed: 9 Critical Vulnerabilities Leave Wi-Fi Management Systems Wide Open, No Patch! Ruckus vRIoT Vulnerability CVE-2025-69425 Ruckus Wireless, Critical Vulnerabilities

Critical Ruckus Wireless Exposed: 9 Critical Vulnerabilities Leave Wi-Fi Management Systems Wide Open, No Patch!

Do Son July 10, 2025 0
Multiple critical vulnerabilities have been discovered in Ruckus Wireless’ Virtual SmartZone (vSZ) and Network Director (RND), posing...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> Ruckus Wireless Exposed: 9 Critical Vulnerabilities Leave Wi-Fi Management Systems Wide Open, No Patch!
Opossum Attack: New Vulnerability Compromises Encrypted TLS Connections, Allowing MitM & Data Injection Opossum Attack, TLS Desynchronization

Opossum Attack: New Vulnerability Compromises Encrypted TLS Connections, Allowing MitM & Data Injection

Do Son July 10, 2025 0
Researchers have unveiled the Opossum Attack, a novel class of desynchronization vulnerabilities that exploits the coexistence of...
Read More Read more about Opossum Attack: New Vulnerability Compromises Encrypted TLS Connections, Allowing MitM & Data Injection
Critical Critical Vulnerabilities Found in Schneider Electric’s EcoStruxure IT Data Center Expert CVE-2024-8884 & CVE-2024-11737 Schneider Electric, Critical Vulnerabilities

Critical Critical Vulnerabilities Found in Schneider Electric’s EcoStruxure IT Data Center Expert

Do Son July 10, 2025 0
Schneider Electric has issued a high-severity security advisory disclosing multiple vulnerabilities affecting its flagship infrastructure management platform,...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> Critical Vulnerabilities Found in Schneider Electric’s EcoStruxure IT Data Center Expert
9.8 Ongoing Attacks Exploit GeoServer RCE Flaw (CVE-2024-36401) to Install NetCat and XMRig CoinMiner GeoServer RCE, XMRig CoinMiner

9.8 Ongoing Attacks Exploit GeoServer RCE Flaw (CVE-2024-36401) to Install NetCat and XMRig CoinMiner

Do Son July 10, 2025 0
The AhnLab Security Intelligence Center (ASEC) has issued a fresh warning on the ongoing exploitation of a...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">9.8</span> Ongoing Attacks Exploit GeoServer RCE Flaw (CVE-2024-36401) to Install NetCat and XMRig CoinMiner
Critical CISA Warns of Critical Flaws in Emerson ValveLink Software: Exploits Could Lead to Code Execution and Data Exposure Emerson ValveLink, Critical Vulnerabilities

Critical CISA Warns of Critical Flaws in Emerson ValveLink Software: Exploits Could Lead to Code Execution and Data Exposure

Do Son July 10, 2025 0
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent security advisory highlighting multiple critical vulnerabilities...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> CISA Warns of Critical Flaws in Emerson ValveLink Software: Exploits Could Lead to Code Execution and Data Exposure
Gold Melody’s Stealthy Campaign: Leaked ASP.NET Machine Keys Fuel In-Memory RCE & Privilege Escalation em

Gold Melody’s Stealthy Campaign: Leaked ASP.NET Machine Keys Fuel In-Memory RCE & Privilege Escalation

Do Son July 10, 2025 0
In a significant revelation from Unit 42, Palo Alto Networks’ threat intelligence team, researchers have uncovered a...
Read More Read more about Gold Melody’s Stealthy Campaign: Leaked ASP.NET Machine Keys Fuel In-Memory RCE & Privilege Escalation