ssh Archives • Daily CyberSecurity

Dropbear SSH Flaw Risks Root Access on Embedded Linux via Unix Stream Forwarding Dropbear SSH LPE, Unix Stream Forwarding

Dropbear SSH Flaw Risks Root Access on Embedded Linux via Unix Stream Forwarding

Do Son December 17, 2025

A critical privilege escalation vulnerability has been discovered in Dropbear, a lightweight SSH server widely used in...

shell-quote command injection AI-Driven Vulnerabilities Q1 2026 Cyber Threats vm2 Sandbox Escape Node.js RCE upKeeper Privilege Escalation CVE-2026-2449 Pharos Controls Vulnerability Root Access Exploit Cybersecurity Vulnerability Roundup CVSS 10.0 Flaws Shadow Archives CVE-2026-0866 MS-Agent Prompt Injection CVE-2026-2256 basic-ftp Path Traversal CVE-2026-27699 telnetd Root Vulnerability CVE-1999-0073 Regression USR-W610 Vulnerabilities End-of-Life IoT Security IceWarp Security Update IceWarp Vulnerabilities Airleader Master Vulnerability CVE-2026-1358 ZLAN5143D Vulnerability CISA ICS Advisory Acronis Cyber Protect Vulnerability CVE-2025-30411 WAGO 852 Vulnerability OT Network Security SandboxJS Vulnerability Sandbox Escape (CVSS 10.0) Kubernetes Local Path Provisioner CVE-2025-62878 CISA Unresponsive Vendors Avation & RISS Vulnerabilities KiloView Vulnerability CVE-2026-1453 OpenClaw RCE vulnerability Johnson Controls Vulnerability CVE-2025-26385 SandboxJS Vulnerability CVE-2026-23830 ibaPDA Vulnerability CVE-2025-14988 Protobuf Vulnerability CVE-2026-0994 AVEVA Process Optimization Vulnerability CVE-2025-61937 ConnectWise PSA Vulnerability CVE-2026-0695 Aruba VIA Vulnerability CVE-2025-37186 aiohttp v3.13.3, Denial of Service (DoS) SmarterMail RCE, CVE-2025-52691 Airoha RACE, Headphone Jacking HPE OneView RCE CVE-2025-37164 FreePBX Auth Bypass, PBX Takeover ScreenConnect Config Flaw, Untrusted Extensions Ruby SAML Auth Bypass, XML Parser Differential Devolutions SQL Injection, Password Manager Flaw Vivotek Unauthenticated RCE, EOL IP Camera Flaw Lynx+ Critical Flaw, Unauthenticated Reset Firebox Default Credentials, CVE-2025-59396 Veeder-Root RCE, Critical ATG Flaw ArcGIS Server SQLi Watchdoc RCE, CVE-2025-58384 Delta DIALink Daikin Security Gateway, authentication bypass Frostbyte10, industrial controller security SunPower, vulnerability Ubiquiti UniFi Connect, EV Station Vulnerabilities Adobe Experience Manager, RCE Vulnerability UniFi Access, Command Injection LDAPNightmare - CVE-2025-1316

Critical WatchGuard Firebox Flaw (CVE-2025-59396, CVSS 9.8) Allows Unauthenticated Admin SSH Takeover via Default Credentials

Do Son November 11, 2025

A critical configuration flaw (CVE-2025-59396) has been discovered in WatchGuard Firebox devices, allowing remote attackers to gain...

OpenSSH Flaw (CVE-2025-61984) Allows Remote Code Execution via Usernames CVE-2023-48795 - Terrapin Attack OpenSSH RCE, ProxyCommand Injection

OpenSSH Flaw (CVE-2025-61984) Allows Remote Code Execution via Usernames

Do Son October 8, 2025

Security researcher David Leadbeater has disclosed a vulnerability in OpenSSH, identified as CVE-2025-61984, which highlights how even...

Critical Flaw in Termix Docker Image (CVE-2025-59951) Leaks SSH Credentials Without Authentication

Do Son October 2, 2025

The Termix project has disclosed a critical authentication bypass vulnerability in its official Docker image, exposing sensitive...

Malicious Go Package Steals Your SSH Credentials in a “Brute-Force” Scam Go module, SSH brute-force scam

Malicious Go Package Steals Your SSH Credentials in a “Brute-Force” Scam

Do Son August 23, 2025

The open-source ecosystem has once again been exploited to distribute malicious software. Socket’s Threat Research Team has...

Ruckus Wireless Exposed: 9 Critical Vulnerabilities Leave Wi-Fi Management Systems Wide Open, No Patch! Ruckus vRIoT Vulnerability CVE-2025-69425 Ruckus Wireless, Critical Vulnerabilities

Ruckus vRIoT Vulnerability CVE-2025-69425 Ruckus Wireless, Critical Vulnerabilities

Ruckus Wireless Exposed: 9 Critical Vulnerabilities Leave Wi-Fi Management Systems Wide Open, No Patch!

Do Son July 10, 2025

Multiple critical vulnerabilities have been discovered in Ruckus Wireless’ Virtual SmartZone (vSZ) and Network Director (RND), posing...

Linux Servers Hijacked: Attackers Install Legitimate Proxy Software for Covert Operations Linux Proxy Malware, Legitimate Tool Abuse

Linux Servers Hijacked: Attackers Install Legitimate Proxy Software for Covert Operations

Do Son July 3, 2025

The AhnLab SEcurity intelligence Center (ASEC) has uncovered a series of attacks on poorly secured Linux servers,...

Two sslh Flaws Disclosed: Remote DoS Attacks Possible via Protocol Multiplexer sslh Vulnerabilities, DoS Attack

Two sslh Flaws Disclosed: Remote DoS Attacks Possible via Protocol Multiplexer

Do Son June 17, 2025

In June 2025, the SUSE Security Team disclosed critical vulnerabilities in sslh, a lightweight protocol multiplexer used...

Cisco Warns of High-Severity SSH Security Flaws in UCS IMC and NDFC Systems Cisco Vulnerabilities, Privilege Escalation

Cisco Warns of High-Severity SSH Security Flaws in UCS IMC and NDFC Systems

Do Son June 5, 2025

Cisco has issued security advisories for two high-severity vulnerabilities—one in the Cisco Integrated Management Controller (IMC) and...

AyySSHush: New Stealthy Botnet Backdoors ASUS Routers, Persists Through Firmware Updates AyySSHush Botnet, ASUS Router Attacks

AyySSHush: New Stealthy Botnet Backdoors ASUS Routers, Persists Through Firmware Updates

Do Son May 31, 2025

A new wave of router-based cyberattacks has emerged in the form of a stealthy and persistent botnet...

Beyond Malware: Stealthy ASUS Router Exploitation Survives Reboots, Builds Botnet ASUS router hack Stealthy botnet

Beyond Malware: Stealthy ASUS Router Exploitation Survives Reboots, Builds Botnet

Do Son May 29, 2025

GreyNoise has revealed a stealthy, long-running exploitation campaign targeting thousands of ASUS routers, laying the foundation for...

Jenkins Docker Images Vulnerable to SSH Host Key Reuse Jenkins - CVE-2024-43044 Jenkins vulnerability SSH host key reuse

Jenkins Docker Images Vulnerable to SSH Host Key Reuse

Do Son April 11, 2025

In the ever-evolving world of DevOps automation, Jenkins is a cornerstone tool powering countless build pipelines across...

VyOS and Debian Systems Vulnerable to Man-in-the-Middle Attacks (CVE-2025-30095)

Do Son April 2, 2025

A critical vulnerability tracked as CVE-2025-30095 has been discovered in VyOS, a popular open-source network operating system....

CVE-2025-27095: Token Theft Flaw in JumpServer Exposes Kubernetes Clusters to Unauthorized Access

Do Son April 1, 2025

A new vulnerability in JumpServer (CVE-2025-27095) has been disclosed, exposing Kubernetes clusters to potential compromise through token...

CVE-2025-22275 (CVSS 9.3): iTerm2 Patches Critical Security Flaw Exposing User Input and Output iTerm2 vulnerability

CVE-2025-22275 (CVSS 9.3): iTerm2 Patches Critical Security Flaw Exposing User Input and Output

Do Son January 2, 2025

A critical security vulnerability, tracked as CVE-2025-22275 (CVSS 9.3) has been discovered and patched in iTerm2, a...

Malware Targeting the Ukrainian Military: SSH Over TOR Backdoor Unveiled

Do Son December 30, 2024

Security researcher Artem Baranov has detailed a sophisticated malware campaign targeting the Ukrainian military through a backdoor...

Diicot Threat Group Targets Linux with Advanced Malware Campaign Operation IconCat, UNG0801 AFP cyberattack -NetWalker Ransomware VShell RAT

Operation IconCat, UNG0801 AFP cyberattack -NetWalker Ransomware VShell RAT

Diicot Threat Group Targets Linux with Advanced Malware Campaign

Do Son December 20, 2024

Wiz Threat Research revealed a new malware campaign orchestrated by the Romanian-speaking threat group Diicot, also known...

SSHamble: runZero’s Open Source Tool to Secure Your SSH Implementations SSH Implementations - SSHamble

SSHamble: runZero’s Open Source Tool to Secure Your SSH Implementations

Do Son August 9, 2024

Experts at runZero have uncovered numerous vulnerabilities related to poorly secured or improperly implemented SSH services, an...

Cybercriminals Exploit Swap Files: New E-commerce Skimming Tactic credit card skimmers

Cybercriminals Exploit Swap Files: New E-commerce Skimming Tactic

Do Son July 20, 2024

Security analysts at Sucuri have uncovered a novel attack technique targeting e-commerce websites, where cybercriminals abuse swap...

DreamBus: The Linux-Based Malware Targeting Business Applications DreamBus Linux malware

DreamBus: The Linux-Based Malware Targeting Business Applications

Do Son January 11, 2024

Zscaler’s ThreatLabz research team detected a formidable adversary: DreamBus. A Linux-based malware family, DreamBus has been quietly...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

ssh

Dropbear SSH Flaw Risks Root Access on Embedded Linux via Unix Stream Forwarding

Critical WatchGuard Firebox Flaw (CVE-2025-59396, CVSS 9.8) Allows Unauthenticated Admin SSH Takeover via Default Credentials

OpenSSH Flaw (CVE-2025-61984) Allows Remote Code Execution via Usernames

Critical Flaw in Termix Docker Image (CVE-2025-59951) Leaks SSH Credentials Without Authentication

Malicious Go Package Steals Your SSH Credentials in a “Brute-Force” Scam

Ruckus Wireless Exposed: 9 Critical Vulnerabilities Leave Wi-Fi Management Systems Wide Open, No Patch!

Linux Servers Hijacked: Attackers Install Legitimate Proxy Software for Covert Operations

Two sslh Flaws Disclosed: Remote DoS Attacks Possible via Protocol Multiplexer

AyySSHush: New Stealthy Botnet Backdoors ASUS Routers, Persists Through Firmware Updates

Beyond Malware: Stealthy ASUS Router Exploitation Survives Reboots, Builds Botnet

Jenkins Docker Images Vulnerable to SSH Host Key Reuse

VyOS and Debian Systems Vulnerable to Man-in-the-Middle Attacks (CVE-2025-30095)

CVE-2025-27095: Token Theft Flaw in JumpServer Exposes Kubernetes Clusters to Unauthorized Access

CVE-2025-22275 (CVSS 9.3): iTerm2 Patches Critical Security Flaw Exposing User Input and Output

Malware Targeting the Ukrainian Military: SSH Over TOR Backdoor Unveiled

Diicot Threat Group Targets Linux with Advanced Malware Campaign

SSHamble: runZero’s Open Source Tool to Secure Your SSH Implementations

Cybercriminals Exploit Swap Files: New E-commerce Skimming Tactic

DreamBus: The Linux-Based Malware Targeting Business Applications