cybersecurity Archives • Page 59 of 88 • Daily CyberSecurity

Hardcoded Credentials & Command Injection Found in HPE Aruba Instant On Access Points HPE Aruba, Critical Vulnerability

Hardcoded Credentials & Command Injection Found in HPE Aruba Instant On Access Points

Do Son July 9, 2025

HPE Aruba Networking has issued a critical security advisory for its Instant On Access Points, urging users...

Rockerbox Data Leak Exposes 245,949 Records: SSNs, Driver’s Licenses, Military IDs Leaked from Unsecured Cloud Data Breach, Cloud Misconfiguration

Rockerbox Data Leak Exposes 245,949 Records: SSNs, Driver’s Licenses, Military IDs Leaked from Unsecured Cloud

Do Son July 9, 2025

Cybersecurity researcher Jeremiah Fowler, in collaboration with vpnMentor, discovered an unencrypted and non-password-protected database containing 245,949 records,...

Android Privacy Alert: Google Gemini AI Now Accesses WhatsApp, Texts & Calls by Default Apple Gemini AI AI Overviews, Google Search Google Gemini, Android Privacy Google Veo 3, AI Video Generation Google AI video, generative AI

Apple Gemini AI AI Overviews, Google Search Google Gemini, Android Privacy Google Veo 3, AI Video Generation Google AI video, generative AI

Android Privacy Alert: Google Gemini AI Now Accesses WhatsApp, Texts & Calls by Default

Do Son July 9, 2025

If you are an Android user with the Google Gemini AI application installed, it is strongly advised...

Zoom Patches 6 Flaws: DoS, Info Disclosure & XSS Across All Platforms Zoom Security, Vulnerabilities CVE-2023-34120 Zoom outage, domain error

Zoom Patches 6 Flaws: DoS, Info Disclosure & XSS Across All Platforms

Do Son July 9, 2025

Zoom has rolled out a security update patching six newly disclosed vulnerabilities affecting its Workplace, Rooms, and...

Git Project Patches 3 Flaws: RCE, Arbitrary File Writes & Buffer Overflow Git Vulnerabilities, Remote Code Execution

Git Project Patches 3 Flaws: RCE, Arbitrary File Writes & Buffer Overflow

Do Son July 9, 2025

The Git Project has released updates addressing three significant vulnerabilities impacting Git versions up to v2.50.0, including...

VS Code ETHcode Extension Hacked: Just 2 Lines of Code Led to Supply Chain Compromise Via GitHub PR

Do Son July 9, 2025

Researchers at ReversingLabs (RL) have uncovered a supply chain compromise of the popular ETHcode extension for Visual...

Critical Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks Siemens SIVaaS CVE-2025-40804 CVE-2022-43400 & CVE-2024-41798 Siemens SINEC NMS, Critical Vulnerabilities

Siemens SIVaaS CVE-2025-40804 CVE-2022-43400 & CVE-2024-41798 Siemens SINEC NMS, Critical Vulnerabilities

Critical Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks

Do Son July 9, 2025

iemens has released a critical security advisory detailing multiple high-severity vulnerabilities affecting SINEC NMS, its flagship network...

7.3 Citrix Warns of Privilege Escalation Vulnerability in Windows Virtual Delivery Agent (CVE-2025-6759) NetScaler Vulnerability CVE-2026-3055 Citrix VDA, Privilege Escalation NetScaler Vulnerabilities, Access Bypass CVE-2024-8534 and CVE-2024-8535

NetScaler Vulnerability CVE-2026-3055 Citrix VDA, Privilege Escalation NetScaler Vulnerabilities, Access Bypass CVE-2024-8534 and CVE-2024-8535

7.3 Citrix Warns of Privilege Escalation Vulnerability in Windows Virtual Delivery Agent (CVE-2025-6759)

Do Son July 9, 2025

Citrix has issued a security advisory concerning a newly identified local privilege escalation vulnerability affecting its Windows...

Microsoft’s July 2025 Patch Tuesday: 140 Flaws Fixed, Including Zero-Day, RCEs & AMD CPU Threats Patch Tuesday, Microsoft Security

Microsoft’s July 2025 Patch Tuesday: 140 Flaws Fixed, Including Zero-Day, RCEs & AMD CPU Threats

Do Son July 9, 2025

Microsoft’s July 2025 Patch Tuesday arrives with a hefty load: a total of 140 vulnerabilities patched, including...

Philippines Hit by Surge in Chinese Cybercrime: NFC & Smishing Attacks Steal Millions from Mobile Wallets Philippines Cybercrime, NFC Fraud

Philippines Hit by Surge in Chinese Cybercrime: NFC & Smishing Attacks Steal Millions from Mobile Wallets

Do Son July 9, 2025

As digital wallets and contactless payments revolutionize commerce in the Philippines, they’ve also opened a dangerous new...

9.6 Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6) FortiWeb, SQL Injection

9.6 Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6)

Do Son July 9, 2025

Fortinet has released a critical patch to address a serious vulnerability in its FortiWeb product — a...

Critical Critical Flaws in Phoenix Contact EV Charging Controllers Expose Infrastructure to Remote Code Execution and Unauthorized Access Phoenix Contact, Critical Vulnerabilities

Phoenix Contact, Critical Vulnerabilities

Critical Critical Flaws in Phoenix Contact EV Charging Controllers Expose Infrastructure to Remote Code Execution and Unauthorized Access

Do Son July 9, 2025

In a coordinated disclosure with CERT@VDE, Phoenix Contact GmbH & Co. KG has issued an urgent advisory...

Google’s New Android Advanced Protection Supercharges Chrome Security for High-Risk Users

Do Son July 8, 2025

Google has unveiled a significant enhancement to its Advanced Protection Program, bringing its strongest account-level defenses into...

MediaTek July 2025 Security Bulletin: Heap Overflows, WLAN Flaws, and Bluetooth Risks Threaten Billions of Devices MediaTek Chipset Flaws, WLAN Buffer Overflow MediaTek Vulnerabilities, Chipset Security

MediaTek Chipset Flaws, WLAN Buffer Overflow MediaTek Vulnerabilities, Chipset Security

MediaTek July 2025 Security Bulletin: Heap Overflows, WLAN Flaws, and Bluetooth Risks Threaten Billions of Devices

Do Son July 8, 2025

MediaTek’s July 2025 Product Security Bulletin exposes a series of critical and high-severity vulnerabilities affecting a wide...

Free Software Foundation Under Siege: Ongoing DDoS & Relentless AI Web Crawler Attacks Since 2024 MadeYouReset, HTTP/2 vulnerability FSF, AI Scraping Attacks OracleIV botnet

MadeYouReset, HTTP/2 vulnerability FSF, AI Scraping Attacks OracleIV botnet

Free Software Foundation Under Siege: Ongoing DDoS & Relentless AI Web Crawler Attacks Since 2024

Do Son July 8, 2025

The renowned Free Software Foundation (FSF) recently disclosed that it has been the target of an ongoing...

MongoDB Flaws Allow Privilege Escalation & DoS MongoDB Vulnerability CVE-2026-25611 MongoDB zlib vulnerability, CVE-2025-14847 MongoDB Vulnerabilities, Data Access CVE-2024-6376 CVE-2025-0755

MongoDB Vulnerability CVE-2026-25611 MongoDB zlib vulnerability, CVE-2025-14847 MongoDB Vulnerabilities, Data Access CVE-2024-6376 CVE-2025-0755

MongoDB Flaws Allow Privilege Escalation & DoS

Do Son July 8, 2025

MongoDB Inc. has issued patches for two newly discovered vulnerabilities affecting multiple versions of its server software....

NetSupport RAT Returns: Weaponized via WordPress & “ClickFix” for Remote Access NetSupport RAT, ClickFix Technique

NetSupport RAT Returns: Weaponized via WordPress & “ClickFix” for Remote Access

Do Son July 8, 2025

Recently, security researchers at the Cybereason Global Security Operations Center (GSOC) discovered a highly deceptive malware campaign...

New BERT Ransomware Unleashed: Multi-Threaded Attacks Hit Windows, Linux & ESXi with REvil Links

Do Son July 8, 2025

Security analysts at Trend Micro observed the rise of a previously unknown ransomware group now tracked as...

RedLine Stealer Unleashed: Inno Setup Installers Abused for Stealthy Data Theft & Cryptowallet Draining RedLine Stealer, Inno Setup Exploit

RedLine Stealer Unleashed: Inno Setup Installers Abused for Stealthy Data Theft & Cryptowallet Draining

Do Son July 8, 2025

In a recent technical deep dive, the Splunk Threat Research Team (STRT) dissected a multi-stage malware campaign...

9.1 Critical Frauscher Flaws (CVE-2025-3626 CVSS 9.1, CVE-2025-3705 CVSS 6.8): OS Command Injection Threatens Railway Systems

Do Son July 8, 2025

A newly published security advisory coordinated by CERT@VDE and Frauscher Sensortechnik GmbH reveals two severe OS command...