infosec Archives • Page 19 of 45 • Daily CyberSecurity

APT41’s New “Zero-Detection” Backdoor Targets Linux Workloads APT41 Linux Backdoor SMTP Command and Control

APT41’s New “Zero-Detection” Backdoor Targets Linux Workloads

Ddos April 15, 2026

A sophisticated new threat has been unmasked targeting the heart of enterprise cloud infrastructure. Researchers from Breakglass...

The “Graphalgo” Evolution: How North Korea Built a Fake Florida LLC to Hack Developers Graphalgo Campaign State-Sponsored Phishing

The “Graphalgo” Evolution: How North Korea Built a Fake Florida LLC to Hack Developers

Ddos April 15, 2026

The ReversingLabs (RL) research team has uncovered a sophisticated expansion of the “graphalgo” campaign. Originally identified in...

Adobe Rushes Patches for Critical ColdFusion RCE and Security Bypasses ColdFusion RCE Adobe Security Patch

Adobe Rushes Patches for Critical ColdFusion RCE and Security Bypasses

Ddos April 15, 2026

Adobe has released an urgent set of security updates to address multiple vulnerabilities within its ColdFusion 2025...

Critical 9.1 Flaws Hit Fortinet FortiSandbox FortiSandbox Vulnerability Unauthenticated RCE FortiClient EMS Vulnerability CVE-2026-21643 FortiClient EMS Vulnerability CVE-2026-21643 CVE-2023-34992 - CVE-2023-37936 Fortinet Vulnerabilities CVE-2025-64155

FortiSandbox Vulnerability Unauthenticated RCE FortiClient EMS Vulnerability CVE-2026-21643 FortiClient EMS Vulnerability CVE-2026-21643 CVE-2023-34992 - CVE-2023-37936 Fortinet Vulnerabilities CVE-2025-64155

Critical 9.1 Flaws Hit Fortinet FortiSandbox

Ddos April 15, 2026

Fortinet has issued an urgent advisory regarding two critical vulnerabilities in its FortiSandbox platform—vulnerabilities that could allow...

Active SharePoint Spoofing and Legacy Office RCE: CISA Alerts on New KEV Exploits CISA KEV Catalog Updates Langflow CVE-2025-34291 Exploit SharePoint Spoofing CISA KEV Catalog Actively Exploited Vulnerability

CISA KEV Catalog Updates Langflow CVE-2025-34291 Exploit SharePoint Spoofing CISA KEV Catalog Actively Exploited Vulnerability

Active SharePoint Spoofing and Legacy Office RCE: CISA Alerts on New KEV Exploits

Ddos April 15, 2026

The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) Catalog, sounding a...

25 Million Users at Risk: Fastify Publicly Discloses PoC Exploit for Single-Space Security Bypass Fastify CVE-2026-33806 Public PoC Exploit

25 Million Users at Risk: Fastify Publicly Discloses PoC Exploit for Single-Space Security Bypass

Ddos April 15, 2026

In the world of web performance, Fastify is a heavyweight, boasting over 25 million monthly downloads and...

Urgent Patch Alert: SharePoint Spoofing Under Active Attack as Microsoft Releases April 2026 Updates Microsoft Patch Tuesday May 2026 Netlogon RCE CVE-2026-41089 SharePoint Exploit Patch Tuesday Windows DWM Zero-Day CVE-2026-21519 CVE-2024-49039 Microsoft Patch Tuesday March 2025

Microsoft Patch Tuesday May 2026 Netlogon RCE CVE-2026-41089 SharePoint Exploit Patch Tuesday Windows DWM Zero-Day CVE-2026-21519 CVE-2024-49039 Microsoft Patch Tuesday March 2025

Urgent Patch Alert: SharePoint Spoofing Under Active Attack as Microsoft Releases April 2026 Updates

Ddos April 15, 2026

Microsoft’s April 2026 Patch Tuesday has arrived with a massive security payload, addressing a staggering 163 vulnerabilities,...

108 Coordinated Chrome Extensions Hijack Your Private Telegram Sessions Chrome Extension Malware Telegram Session Hijacking

108 Coordinated Chrome Extensions Hijack Your Private Telegram Sessions

Ddos April 15, 2026

Socket’s Threat Research Team identified 108 malicious Chrome extensions operating as a coordinated campaign under a shared...

Critical—9 Vulnerabilities in Orthanc DICOM Servers Threaten Medical Data Integrity CVE-2025-2263 Orthanc Security DICOM Vulnerabilities

Critical—9 Vulnerabilities in Orthanc DICOM Servers Threaten Medical Data Integrity

Ddos April 14, 2026

A series of critical security flaws has been uncovered in Orthanc, the popular open-source “lightweight Digital Imaging...

Juju’s CVSS 10 Flaw Hands Over Master Cloud Credentials

Ddos April 14, 2026

Juju, the popular open-source application orchestration engine, is facing a critical security emergency. A newly discovered vulnerability,...

CVE-2026-4810: Critical 9.3 RCE Flaw Hits Google’s AI Agent Development Kit Google ADK Vulnerability AI Agent RCE

CVE-2026-4810: Critical 9.3 RCE Flaw Hits Google’s AI Agent Development Kit

Ddos April 14, 2026

A recently disclosed vulnerability in Google’s Agent Development Kit (ADK) serves as a stark reminder that even...

CVE-2026-4631: Critical 9.8 RCE Flaw in Cockpit Allows Unauthenticated Server Takeover Cockpit RCE CVE-2026-4631

CVE-2026-4631: Critical 9.8 RCE Flaw in Cockpit Allows Unauthenticated Server Takeover

Ddos April 14, 2026

In the world of Linux server management, ease of use and security are intended to go hand-in-hand....

Check Your Inbox: Booking.com Forced to Reset PINs After Major Data Leak Booking.com Data Breach Claude Code Leak Anthropic Source Code YggTorrent data breach PS5 BootROM key leak 2026, PlayStation 5 unpatchable jailbreak Great Firewall data leak Dating App Breach, Tea App Leak 23andMe Data Leak

Booking.com Data Breach Claude Code Leak Anthropic Source Code YggTorrent data breach PS5 BootROM key leak 2026, PlayStation 5 unpatchable jailbreak Great Firewall data leak Dating App Breach, Tea App Leak 23andMe Data Leak

Check Your Inbox: Booking.com Forced to Reset PINs After Major Data Leak

Ddos April 14, 2026

The preeminent global platform for hospitality and travel reservations, Booking.com, has recently sustained a significant data breach....

Python Under Pressure: Critical Memory Flaws and Command Injection Bypass Uncovered Python Security Memory Safety PLY Vulnerability CVE-2025-56005 Python Software Foundation, NSF DEI CVE-2024-12254

Python Security Memory Safety PLY Vulnerability CVE-2025-56005 Python Software Foundation, NSF DEI CVE-2024-12254

Python Under Pressure: Critical Memory Flaws and Command Injection Bypass Uncovered

Ddos April 14, 2026

In the world of software development, Python (CPython) stands as a foundational pillar, powering everything from local...

New Stealth Attack Chain Weaponizes Legitimate Remote Access Software ScreenConnect Hijack In-Memory Attack

New Stealth Attack Chain Weaponizes Legitimate Remote Access Software

Ddos April 14, 2026

Security researchers have uncovered a sophisticated new threat that turns the simple act of downloading a document...

Critical wolfSSL Flaw Could Allow Attackers to Spoof Trusted Hosts wolfSSL Vulnerability Certificate Validation Bypass wolfSSH Vulnerability CVE-2025-14942

wolfSSL Vulnerability Certificate Validation Bypass wolfSSH Vulnerability CVE-2025-14942

Critical wolfSSL Flaw Could Allow Attackers to Spoof Trusted Hosts

Ddos April 14, 2026

In the world of embedded systems and resource-constrained environments, wolfSSL (formerly CyaSSL) is the lightweight champion of...

CISA Adds 7 Fresh Exploits to KEV Catalog CISA KEV Catalog Active Exploitation CVE-2023-33063 - CVE-2023-34192 and CVE-2024-49035

CISA Adds 7 Fresh Exploits to KEV Catalog

Ddos April 14, 2026

The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) Catalog, adding seven...

Critical 9.8 RCE Flaw in Qlik Talend Threatens Enterprise Data Pipelines CVE-2023-48365 Talend JobServer RCE JMX Port Vulnerability

Critical 9.8 RCE Flaw in Qlik Talend Threatens Enterprise Data Pipelines

Ddos April 14, 2026

QlikTech has issued an urgent security advisory regarding a critical vulnerability in Talend JobServer and Talend Runtime...

Maximum Severity RCE Vulnerability Decimating Paperclip AI Instances Paperclip RCE AI Agent Security Paperclip RCE Cross-Tenant AI Takeover

Paperclip RCE AI Agent Security Paperclip RCE Cross-Tenant AI Takeover

Maximum Severity RCE Vulnerability Decimating Paperclip AI Instances

Ddos April 14, 2026

Paperclip—a Node.js and React-based platform—has become a popular choice for businesses looking to deploy teams of AI...

Hijacking the Soundboard: Critical 9.8 RCE Flaws Hit Ubiquiti UniFi Play Audio Ubiquiti UniFi OS Vulnerabilities UniFi OS Firmware Update 2026 UniFi Play Vulnerability Critical RCE Patch Ubiquiti UniFi Vulnerability CVE-2026-22557

Ubiquiti UniFi OS Vulnerabilities UniFi OS Firmware Update 2026 UniFi Play Vulnerability Critical RCE Patch Ubiquiti UniFi Vulnerability CVE-2026-22557

Hijacking the Soundboard: Critical 9.8 RCE Flaws Hit Ubiquiti UniFi Play Audio

Ddos April 14, 2026

Ubiquiti has issued an urgent security advisory for its UniFi Play audio lineup, addressing a suite of...

Critical Alert 1 Active Exploit Detected Today