MATLOCK.CA
122Articles
9Categories
2024-07-25Date
🚨
CISA Adds Two Known Exploited Vulnerabilities to CatalogThe vulnerabilities are as follows: CVE-2012-4792, a decade-old vulnerability in Internet Explorer allowing remote code execution, and CVE-2024-39891, an information disclosure flaw in Twilio Authy.
KEVCISA.GOV — 25 Jul 2024
πŸ›
Critical Docker Engine Flaw Allows Attackers to Bypass Authorization Plugins
THEHACKERNEWS.COM — 25 Jul 2024
πŸ›
Okta Browser Plugin Reflected Cross-Site Scripting CVE-2024-0981
TRUST.OKTA.COM — 25 Jul 2024
πŸ›
Docker re-fixes a critical authorization bypass vulnerability
CSOONLINE.COM — 25 Jul 2024
πŸ›
Docker Patches Critical AuthZ Plugin Bypass Vulnerability Dating Back to 2018
DOCKER.COM — 25 Jul 2024
πŸ›
CVE-2024-39379 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-6988 Use after free in Downloads
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-6989 Use after free in Loader
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-6999 Inappropriate implementation in FedCM
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-6998 Use after free in User Education
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-6996 Race in Frames
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-6997 Use after free in Tabs
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-6994 Heap buffer overflow in Layout
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-6993
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-6995 Inappropriate implementation in Fullscreen
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-6992
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-7005 Insufficient validation of untrusted input in Safe Browsing
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-6991 Use after free in Dawn
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-7004 Insufficient validation of untrusted input in Safe Browsing
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-7003 Inappropriate implementation in FedCM
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-7001 Inappropriate implementation in HTML
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Chromium: CVE-2024-7000 Use after free in CSS
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
CVE-2024-38103 Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
MSRC.MICROSOFT.COM — 25 Jul 2024
πŸ›
Huge Increase in Scanning for CVE-2017-9841 With Large Variability in Scanning Infrastructure
F5.COM — 25 Jul 2024
πŸ›
Huge Increase in Scanning for CVE-2017-9841 With Large Variability in Scanning Infrastructure
F5.COM — 25 Jul 2024
⚠️
Explore Talent - 5,371,574 breached accounts
HAVEIBEENPWNED.COM — 25 Jul 2024
⚠️
How attackers evade your EDR/XDR system β€” and what you can do about it
CSOONLINE.COM — 25 Jul 2024
⚠️
CISA Warns of Exploitable Vulnerabilities in Popular BIND 9 DNS Software
THEHACKERNEWS.COM — 25 Jul 2024
⚠️
Russia-Linked Brute-Force Campaign Targets EU via Microsoft Infrastructure
HEIMDALSECURITY.COM — 25 Jul 2024
⚠️
XWorm Hidden With Process Hollowing, (Thu, Jul 25th)
ISC.SANS.EDU — 25 Jul 2024
⚠️
Fraudsters Abuse Legitimate Blockchain Protocols to Steal Your Cryptocurrency Wallet
RESEARCH.CHECKPOINT.COM — 25 Jul 2024
⚠️
Researchers Reveal ConfusedFunction Vulnerability in Google Cloud Platform
THEHACKERNEWS.COM — 25 Jul 2024
⚠️
Project 2025 could escalate US cybersecurity risks, endanger more Americans
CSOONLINE.COM — 25 Jul 2024
⚠️
Infisical: Open-source secret management platform - Help Net Security
HELPNETSECURITY.COM — 25 Jul 2024
⚠️
Major Russian Banks Hit with DDoS Attacks as Ukraine Claims Responsibility
THERECORD.MEDIA — 25 Jul 2024
⚠️
Microsoft’s Windows Hello for Business Flaw Let Attackers Bypass Authentication
GBHACKERS.COM — 25 Jul 2024
⚠️
Tag-100 Hacker Group Exploiting Citrix NetScaler & F5 BIG-IP Vulnerabilities
CYBERSECURITYNEWS.COM — 25 Jul 2024
⚠️
US CISA Urges BIND 9 Users to Address New DNS Exploits
BANKINFOSECURITY.IN — 25 Jul 2024
⚠️
Anyone can Access Deleted and Private Repository Data on GitHub β—† Truffle Security Co.
TRUFFLESECURITY.COM — 25 Jul 2024
⚠️
BIND Updates Resolve High-Severity DoS Vulnerabilities
SECURITYWEEK.COM — 25 Jul 2024
⚠️
AI Accelerates Code Development Faster Than Security Teams can Keep up
HELPNETSECURITY.COM — 25 Jul 2024
⚠️
MS Patch Tuesday: Which Vulnerabilities Really Need Prioritizing. - Douglas McKee - PSW #836
YOUTUBE.COM — 2024-07-25
⚠️
Crowdstrike: The Aftermath - PSW #836
YOUTUBE.COM — 2024-07-25
⚠️
CISA Releases Two Industrial Control Systems Advisories
CISA.GOV — Thu, 25 Jul 24 1
⚠️
Progress warns of critical RCE bug in Telerik Report Server
BLEEPINGCOMPUTER.COM — 25 Jul 2024
⚠️
FBI, CISA, and Partners Release Advisory Highlighting North Korean Cyber Espionage Activity
CISA.GOV — Thu, 25 Jul 24 1
⚠️
ConfusedFunction: A Privilege Escalation Vulnerability Impacting GCP Cloud Functions
TENABLE.COM — 25 Jul 2024
⚠️
Critical ServiceNow RCE flaws actively exploited to steal credentials
KEVBLEEPINGCOMPUTER.COM — 25 Jul 2024
⚠️
Cryptohack Roundup: Tornado Cash Sees Uptick in Use
DATABREACHTODAY.CO.UK — 2024-07-25
⚠️
Chainguard Raises $140M to Drive AI Support, Global Growth
DATABREACHTODAY.CO.UK — 2024-07-25
πŸ“‹
CrowdStrike Outage Losses Will Hit Healthcare, Banking Hard
DATABREACHTODAY.CO.UK — 2024-07-25
πŸ“’
[Control systems] Siemens security advisory (AV24-417)
CYBER.GC.CA — 2024-07-25
πŸ“’
Mitel security advisory (AV24-418)
CYBER.GC.CA — 2024-07-25
πŸ“’
ISC BIND security advisory (AV24-419)
CYBER.GC.CA — 2024-07-25
πŸ“’
Google Chrome security advisory (AV24-420)
CYBER.GC.CA — 2024-07-25
πŸ“’
HPE security advisory (AV24-421)
CYBER.GC.CA — 2024-07-25
πŸ“’
Your KnowBe4 Compliance Plus Fresh Content Updates from July 2024
KNOWBE4.COM — 25 Jul 2024
πŸ”₯
Condo.com - 1,481,555 breached accounts
HAVEIBEENPWNED.COM — 25 Jul 2024
πŸ”₯
Phone Lines Down in Multiple Courts Across California After Ransomware Attack
SECURITYWEEK.COM — 25 Jul 2024
πŸ”₯
Mandiant: North Korean Hackers Targeting Healthcare, Energy
DATABREACHTODAY.CO.UK — 2024-07-25
πŸ”₯
Mandiant Shines Spotlight on APT45 Behind North Korea’s Digital Military Machine
SECURITYWEEK.COM — 25 Jul 2024
πŸ”₯
North Korean Fake IT Worker FAQ
KNOWBE4.COM — 25 Jul 2024
πŸ”₯
Data breach exposes US spyware maker behind Windows, Mac, Android and Chromebook malware
TECHCRUNCH.COM — 25 Jul 2024
πŸ”₯
Pro-Palestinian Actor Levels 6-Day DDoS Attack on UAE Bank
DARKREADING.COM — 25 Jul 2024
πŸ”₯
North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks
THEHACKERNEWS.COM — 25 Jul 2024
πŸ”₯
SEXi / APT Inc ransomware – what you need to know
TRIPWIRE.COM — 25 Jul 2024
πŸ”₯
US offers $10M for tips on DPRK hacker linked to Maui ransomware attacks
BLEEPINGCOMPUTER.COM — 25 Jul 2024
πŸ”₯
US Indicts Alleged North Korean Ransomware Attacker
DATABREACHTODAY.CO.UK — 2024-07-25
πŸ”₯
CISO's True Role: It's Not About Preventing Every Breach! πŸ›‘οΈ #CyberSecurity #CISO
YOUTUBE.COM — 2024-07-25
πŸ”₯
The CrowdStrike Outage and Market-Driven Brittleness
SCHNEIER.COM — 2024-07-25
πŸ”₯
North Korean Charged in Ransomware Attacks on American Hospitals
SECURITYWEEK.COM — 25 Jul 2024
πŸ”₯
Breach Roundup: ICANN Warns .top Domain About Phishing
DATABREACHTODAY.CO.UK — 2024-07-25
πŸ”₯
Cybercrooks Continue to Capitalize on CrowdStrike Outage
DATABREACHTODAY.CO.UK — 2024-07-25
πŸ”₯
Software Maker MCG Health Settles Data Breach Suit for $8.8M
DATABREACHTODAY.CO.UK — 2024-07-25
πŸ”₯
UK Blood Stocks Drop After Ransomware Hack
DATABREACHTODAY.CO.UK — 2024-07-25
πŸ•΅οΈ
MVP 14
TROYHUNT.COM — 25 Jul 2024
πŸ•΅οΈ
ISC Stormcast For Thursday, July 25th, 2024 https://isc.sans.edu/podcastdetail/9068, (Thu, Jul 25th)
ISC.SANS.EDU — 25 Jul 2024
πŸ•΅οΈ
Ukraine Hackers Hit Major Russian banks with DDoS attacks
GBHACKERS.COM — 25 Jul 2024
πŸ•΅οΈ
LW ROUNDTABLE: CrowdStrike outage reveals long road ahead to achieve digital resiliency
LASTWATCHDOG.COM — 25 Jul 2024
πŸ•΅οΈ
Google Boosts Chrome Protections Against Malicious Files
SECURITYWEEK.COM — 25 Jul 2024
πŸ•΅οΈ
Nvidia Patches High-Severity Vulnerabilities in AI, Networking Products
SECURITYWEEK.COM — 25 Jul 2024
πŸ•΅οΈ
LummaC2 Malware Using Steam Gaming Platform as C2 Server
GBHACKERS.COM — 25 Jul 2024
πŸ•΅οΈ
Data Wallets Using the Solid Protocol
SCHNEIER.COM — 2024-07-25
πŸ•΅οΈ
Network of 3,000 GitHub Accounts Used for Malware Distribution
SECURITYWEEK.COM — 25 Jul 2024
πŸ•΅οΈ
APT45: North Korea’s Digital Military Machine
CLOUD.GOOGLE.COM — 25 Jul 2024
πŸ•΅οΈ
'Stargazer Goblin' Amasses Thousands of Rogue GitHub Accounts to Spread Malware
DARKREADING.COM — 25 Jul 2024
πŸ•΅οΈ
Unveiling the latest banking trojan threats in LATAM
SECURITYINTELLIGENCE.COM — 25 Jul 2024
πŸ•΅οΈ
Senator: Top Banks Only Reimburse 38% of Unauthorized Claims
DATABREACHTODAY.CO.UK — 2024-07-25
πŸ•΅οΈ
Google Chrome Warns of Malicious Files While Downloading
GBHACKERS.COM — 25 Jul 2024
πŸ•΅οΈ
KnowBe4 Hires Fake North Korean IT Worker, Catches New Employee Planting Malware
PACKETSTORMSECURITY.COM — 25 Jul 2024
πŸ•΅οΈ
Threat Actors Claiming Leak of IOC list with 250M Data, CrowdStrike Responded
GBHACKERS.COM — 25 Jul 2024
πŸ•΅οΈ
Chainguard Raises $140 Million, Expands Tech to Secure AI Workloads
SECURITYWEEK.COM — 25 Jul 2024
πŸ•΅οΈ
North Korean Hacker Group Targeting Healthcare, Energy Sectors
BANKINFOSECURITY.COM — 25 Jul 2024
πŸ•΅οΈ
Major Russian banks hit with DDoS attacks as Ukraine claims responsibility
THERECORD.MEDIA — 25 Jul 2024
πŸ•΅οΈ
Robot dog trained to jam wireless devices during police raids
BITDEFENDER.COM — 25 Jul 2024
πŸ•΅οΈ
The Real Cost of Cybersecurity: A Money Talk πŸ’° | Business Security Weekly
YOUTUBE.COM — 2024-07-25
πŸ•΅οΈ
Onyx Sleet uses array of malware to gather intelligence for North Korea
MICROSOFT.COM — 25 Jul 2024
πŸ•΅οΈ
Proof of Concept: How Can We Outpace Deepfake Threats?
DATABREACHTODAY.CO.UK — 2024-07-25
🌐
Echoes of Braodo Tales from the Cyber Underworld
LABS.K7COMPUTING.COM — 25 Jul 2024
🌐
6 Types of Applications Security Testing You Must Know About
THEHACKERNEWS.COM — 25 Jul 2024
🌐
Report: Malware Attacks Surge 30% in First Half of 2024
INFOSECURITY-MAGAZINE.COM — 25 Jul 2024
🌐
Network Of 3,000 GitHub Accounts Used For Malware Distribution
PACKETSTORMSECURITY.COM — 25 Jul 2024
🌐
Hackers Bypass Windows SmartScreen Flaw To Launch Malware
PACKETSTORMSECURITY.COM — 25 Jul 2024
🌐
French police push PlugX malware self-destruct payload to clean PCs
BLEEPINGCOMPUTER.COM — 25 Jul 2024
🌐
PKfail Secure Boot bypass lets attackers install UEFI malware
BLEEPINGCOMPUTER.COM — 25 Jul 2024
πŸ“‘
Hacker claims theft of Piramal Group’s employee data
TECHCRUNCH.COM — 25 Jul 2024
πŸ“‘
New Chrome Feature Scans Password-Protected Files for Malicious Content
THEHACKERNEWS.COM — 25 Jul 2024
πŸ“‘
Phish-Friendly Domain Registry β€œ.top” Put on Notice
KREBSONSECURITY.COM — 25 Jul 2024
πŸ“‘
Webinar: Securing the Modern Workspace: What Enterprises MUST Know about Enterprise Browser Security
THEHACKERNEWS.COM — 25 Jul 2024
πŸ“‘
Lakera Raises $20 Million to Secure GenAI Applications
HELPNETSECURITY.COM — 25 Jul 2024
πŸ“‘
Meta Removes 63,000 Instagram Accounts Linked to Nigerian Sextortion Scams
THEHACKERNEWS.COM — 25 Jul 2024
πŸ“‘
Pro-Palestinian Actor Levels Six-Day DDoS Attack on UAE Bank
DARKREADING.COM — 25 Jul 2024
πŸ“‘
A shield of trust: managing cybersecurity risks through an evidence-based approach | Kaspersky official blog
KASPERSKY.COM — 25 Jul 2024
πŸ“‘
Vanta Raises $150M Series C, Now Valued at $2.45B
TECHCRUNCH.COM — 25 Jul 2024
πŸ“‘
Sophos MDR for Microsoft Defender: Gaining momentum with Microsoft-specific service enhancements
SOPHOS.COM — 25 Jul 2024
πŸ“‘
HHS Audit Finds Serious Gaps In Cloud Security At Agency Office
PACKETSTORMSECURITY.COM — 25 Jul 2024
πŸ“‘
Why Multivendor Cybersecurity Stacks Are Increasingly Obsolete
BLEEPINGCOMPUTER.COM — 25 Jul 2024
πŸ“‘
TransparentTribe’s Spear-Phishing Targeting Indian Government Departments
NSFOCUSGLOBAL.COM — 25 Jul 2024
πŸ“‘
The Automation Dilemma: Understanding the role of bots in your web apps and APIs
DATABREACHTODAY.CO.UK — 2024-07-25
πŸ“‘
Live Webinar | Every Transaction Counts: How to Improve Your Payment Performanceβ€”and Your Bottom Line
DATABREACHTODAY.CO.UK — 2024-07-25
πŸ“‘
Meta nukes massive Instagram sextortion network of 63,000 accounts
BLEEPINGCOMPUTER.COM — 25 Jul 2024
πŸ“‘
Windows 11 KB5040527 update fixes Windows Backup failures
BLEEPINGCOMPUTER.COM — 25 Jul 2024