🚨 CISA KEV 1[−]
23 Jan KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2020-11023 JQuery Cross-Site Scripting (XSS) Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber acto…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 5[−]
23 Jan KEVSonicWall Urges Immediate Patch for Critical CVE-2025-23006 Flaw Amid Likely ExploitationSonicWall is alerting customers of a critical security flaw impacting its Secure Mobile Access (SMA) 1000 Series appliances that it said has been likely exploited in the wild as a zero-day. The vulnerability, tracked as CVE-2025-23006, is rated 9.8 out of a maximum of 10.0 on the…THEHACKERNEWS.COM
23 JanCisco Fixes Critical Privilege Escalation Flaw in Meeting Management (CVSS 9.9)Cisco has released software updates to address a critical security flaw impacting Meeting Management that could permit a remote, authenticated attacker to gain administrator privileges on susceptible instances. The vulnerability, tracked as CVE-2025-20156, carries a CVSS score of…THEHACKERNEWS.COM
23 Jan KEVWarning to FortiGate admins: You need to run a compromise assessment nowNetwork administrators with Fortinet’s FortiGate next generation firewall in their IT environments are being warned to thoroughly scrutinize systems for possible compromise, following last week’s dump of stolen configuration and VPN credentials by a threat actor. “Patching is not…CSOONLINE.COM
23 JanPalo Alto Networks firewalls have UEFI flaws, Secure Boot bypassesResearchers have discovered that next-generation firewalls from Palo Alto Networks contain years-old known vulnerabilities in their UEFI firmware — a finding that provides yet more evidence of a broader issue with specialized devices today. Increasingly built on commodity hardwar…CSOONLINE.COM
23 JanCisco patches antivirus decommissioning bug as exploit code surfacesCisco has patched a denial-of-service (DoS) vulnerability affecting its open-source antivirus software toolkit, ClamAV, which already has a proof-of-concept (PoC) exploit code available to the public. Identified as CVE-2025-20128, the vulnerability stems from a heap-based buffer …CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 21[−]
23 JanFBI: North Korean IT workers steal source code to extort employersThe FBI warned today that North Korean IT workers are abusing their access to steal source code and extort U.S. companies that have been tricked into hiring them. [...]BLEEPINGCOMPUTER.COM
23 JanQNAP fixes six Rsync vulnerabilities in NAS backup, recovery appQNAP has fixed six rsync vulnerabilities that could let attackers gain remote code execution on unpatched Network Attached Storage (NAS) devices. [...]BLEEPINGCOMPUTER.COM
23 JanCISA: Hackers still exploiting older Ivanti bugs to breach networksCISA and the FBI warned today that attackers are still exploiting Ivanti Cloud Service Appliances (CSA) security flaws patched since September to breach vulnerable networks. [...]BLEEPINGCOMPUTER.COM
23 JanSonicWall warns of SMA1000 RCE flaw exploited in zero-day attacksSonicWall is warning about a pre-authentication deserialization vulnerability in SonicWall SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC), with reports that it has been exploited as a zero-day in attacks. [...]BLEEPINGCOMPUTER.COM
23 JanCyber Insights 2025: Malware DirectionsThe continuing advance of AI brings the likelihood of effective, specific vulnerability-targeted new malware automatically produced in hours rather than days or weeks ever closer. The post Cyber Insights 2025: Malware Directions appeared first on SecurityWeek .SECURITYWEEK.COM
23 JanPalo Alto Firewalls Found Vulnerable to Secure Boot Bypass and Firmware ExploitsAn exhaustive evaluation of three firewall models from Palo Alto Networks has uncovered a host of known security flaws impacting the devices' firmware as well as misconfigured security features. "These weren't obscure, corner-case vulnerabilities," security vendor Eclypsium said …THEHACKERNEWS.COM
23 JanCustom Backdoor Exploiting Magic Packet Vulnerability in Juniper RoutersEnterprise-grade Juniper Networks routers have become the target of a custom backdoor as part of a campaign dubbed J-magic. According to the Black Lotus Labs team at Lumen Technologies, the activity is so named for the fact that the backdoor continuously monitors for a "magic pac…THEHACKERNEWS.COM
23 JanQakBot-Linked BC Malware Adds Enhanced Remote Access and Data Gathering FeaturesCybersecurity researchers have disclosed details of a new BackConnect (BC) malware that has been developed by threat actors linked to the infamous QakBot loader. "BackConnect is a common feature or module utilized by threat actors to maintain persistence and perform tasks," Walma…THEHACKERNEWS.COM
23 JanTrump Terminates DHS Advisory Committee Memberships, Disrupting Cybersecurity ReviewThe new Trump administration has terminated all memberships of advisory committees that report to the Department of Homeland Security (DHS). "In alignment with the Department of Homeland Security's (DHS) commitment to eliminating the misuse of resources and ensuring that DH…THEHACKERNEWS.COM
23 JanTRIPLESTRENGTH Hits Cloud for Cryptojacking, On-Premises Systems for RansomwareGoogle on Wednesday shed light on a financially motivated threat actor named TRIPLESTRENGTH for its opportunistic targeting of cloud environments for cryptojacking and on-premise ransomware attacks. "This actor engaged in a variety of threat activity, including cryptocurrency min…THEHACKERNEWS.COM
23 JanXSS Attempts via E-Mail, (Thu, Jan 23rd)One of the hardest applications to create securely is webmail. E-mail is a complex standard, and almost all e-mail sent today uses HTML. Displaying complex HTML received in an e-mail within a web application is dangerous and often leads to XSS vulnerabilities. Typical solutions i…ISC.SANS.EDU
23 JanCISA Releases Six Industrial Control Systems AdvisoriesCISA released six Industrial Control Systems (ICS) advisories on January 23, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-023-01 mySCADA myPRO Manager ICSA-25-023-02 Hitachi Energy RTU500 S…CISA.GOV
23 JanAndroid enhances theft protection with Identity Check and expanded featuresPosted by Jianing Sandra Guo, Product Manager, Android, Nataliya Stanetsky, Staff Program Manager, Android Today, people around the world rely on their mobile devices to help them stay connected with friends and family, manage finances, keep track of healthcare information and mo…SECURITY.GOOGLEBLOG.COM
23 JanAutomating endpoint management doesn’t mean ceding controlBeset with cybersecurity risks, compliance regimes, and digital experience challenges, enterprises need to move toward autonomous endpoint management (AEM), the next evolution in endpoint management and security solutions. CSO’s Security Priorities Study 2024 reveals that 75% of …CSOONLINE.COM
23 Jan10 top XDR tools and how to evaluate themLittle in the modern IT world lends itself to manual or siloed management, and this is doubly true in the security realm. The scale of modern enterprise computing and modern application stack architecture requires security tools that can bring visibility into the security posture…CSOONLINE.COM
23 JanPython administrator moves to improve software securityThe administrators of the Python Package Index (PyPI) have begun an effort to improve the hundreds of thousands of software packages that are listed. The attempt, which began earlier last year, is to identify and stop malware-laced packages from proliferating across the open-sour…CSOONLINE.COM
23 JanMastercard’s multi-year DNS cut-and-paste nightmareDue to a Domain Name System (DNS) setting error, which the security researcher who discovered it said was almost certainly a cut-and-paste problem, Mastercard had a DNS record with a missing character for almost five years. That error would have allowed attackers to potentially t…CSOONLINE.COM
23 JanVulnerability Prioritization In The Real World - PSW #858Andy Jaquith joins us to discuss how to prioritize vulnerabilities and remmediation in the real-world, including asset management and more! In the security news: ESP32s in the wild and security, Google oAuth flaw, DDoS targets, Ban on auto components, Bambu firmware updates, Silk…YOUTUBE.COM
23 JanDelhi Cyber Frauds Exposed: ₹49 Billion Siphoned Abroadsubmitted by IndiaWeekly to cybersecurity 4 points | 0 comments https://www.indiaweekly.biz/delhi-cyberfrauds-cyber-crime-money-abroad/ THE ENFORCEMENT DIRECTORATE Thursday said two Delhi-based “cyber criminals” siphoned off more than ₹49 billion (£460.28m) abroad by “misusing” s…SH.ITJUST.WORKS
23 JanSonicWall releases patches for suspected zero-day bugsubmitted by kid to cybersecurity 10 points | 0 comments https://www.theregister.com/2025/01/23/sonicwall_critical_bug/SH.ITJUST.WORKS
23 JanTelegram captcha tricks you into running malicious PowerShell scriptssubmitted by BrikoX to cybersecurity 14 points | 3 comments https://www.bleepingcomputer.com/news/security/telegram-captcha-tricks-you-into-running-malicious-powershell-scripts/ Threat actors on X are exploiting the news around Ross Ulbricht to direct unsuspecting users to a Tele…SH.ITJUST.WORKS
📋 SECURITY BULLETINS 1[−]
23 JanOutdated and Unsafe: Microsoft Exchange’s Final Days!Microsoft Exchange Server 2016 and 2019 are on their way out, and here's why you need to act now! After October 14th, these "warhorses" will lose all technical support, security updates, and even time zone patches. It's like running on borrowed time with flashing red alerts! Is y…YOUTUBE.COM
📢 SECURITY ADVISORIES 3[−]
23 JanTrend Micro and CISA Secure-By-Design PledgeTrend’s support reaffirms dedication to safeguarding products and customersTRENDMICRO.COM
23 JanUnder Trump, US Cyberdefense Loses Its Headsubmitted by lindicks to cybersecurity 63 points | 3 comments https://www.wired.com/story/big-interview-jen-easterly-cisa-cybersecurity/ Chinese hacks, rampant ransomware, and Donald Trump’s budget cuts all threaten US security. In an exit interview with WIRED, former CISA head J…SH.ITJUST.WORKS
23 JanThe evolving landscape of data privacy: Key trends to shape 2025Incoming laws, combined with broader developments on the threat landscape, will create further complexity and urgency for security and compliance teamsWELIVESECURITY.COM
🔥 INCIDENT REPORTING 7[−]
23 JanTesla EV charger hacked twice on second day of Pwn2Own TokyoSecurity researchers hacked Tesla's Wall Connector electric vehicle charger twice on the second day of the Pwn2Own Automotive 2025 hacking contest. [...]BLEEPINGCOMPUTER.COM
23 JanConduent Confirms Cyberattack After Government Agencies Report OutagesConduent has confirmed suffering disruptions due to a cyberattack after government agencies reported service outages. The post Conduent Confirms Cyberattack After Government Agencies Report Outages appeared first on SecurityWeek .SECURITYWEEK.COM
23 JanYou Can't Trust Hackers, and Other Data Breach Verification TalesPresently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite It's hard to find a good criminal these days. I mean a really trustworthy one you can be confident won't lead you up the gard…TROYHUNT.COM
23 JanExperts Find Shared Codebase Linking Morpheus and HellCat Ransomware PayloadsAn analysis of HellCat and Morpheus ransomware operations has revealed that affiliates associated with the respective cybercrime entities are using identical code for their ransomware payloads. The findings come from SentinelOne, which analyzed artifacts uploaded to the VirusTota…THEHACKERNEWS.COM
23 JanHow to Eliminate Identity-Based ThreatsDespite significant investments in advanced technologies and employee training programs, credential and user-based attacks remain alarmingly prevalent, accounting for 50-80% of enterprise breaches[1],[2]. While identity-based attacks continue to dominate as the leading cause of s…THEHACKERNEWS.COM
23 JanGeben Sie LLM-Alarmismus keine Chance!Die Mär von der Cybercrime-KI-Revolution? Overearth | shutterstock.com Cybersicherheitsexperten haben in den letzten Jahren immer wieder darauf hingewiesen, dass die Rolle des CISO diversifiziert werden muss, um den Anforderungen der gestiegenen Verantwortung in zahlreichen Kateg…CSOONLINE.COM
23 JanTesla EV charger hacked twice on second day of Pwn2Own Tokyosubmitted by kid to cybersecurity 39 points | 0 comments https://www.bleepingcomputer.com/news/security/tesla-ev-charger-hacked-twice-on-second-day-of-pwn2own-tokyo/SH.ITJUST.WORKS
🕵️ THREAT INTELLIGENCE 11[−]
23 JanAxoflow Raises $7 Million for Security Data Curation PlatformSecurity data pipeline management startup Axoflow has raised $7 million in a seed funding round led by EBRD Venture Capital. The post Axoflow Raises $7 Million for Security Data Curation Platform appeared first on SecurityWeek .SECURITYWEEK.COM
23 JanHomebrew macOS Users Targeted With Information Stealer MalwareA malicious campaign has been redirecting macOS users to a fake Homebrew website, infecting them with information stealer malware. The post Homebrew macOS Users Targeted With Information Stealer Malware appeared first on SecurityWeek .SECURITYWEEK.COM
23 JanBeware: Fake CAPTCHA Campaign Spreads Lumma Stealer in Multi-Industry AttacksCybersecurity researchers are calling attention to a new malware campaign that leverages fake CAPTCHA verification checks to deliver the infamous Lumma information stealer. "The campaign is global, with Netskope Threat Labs tracking victims targeted in Argentina, Colombia, the Un…THEHACKERNEWS.COM
23 JanTaking the fight to the enemy: Cyber persistence strategy gains momentumThe nature of cyber warfare has evolved rapidly over the last decade, forcing the world’s governments and industries to reimagine their cybersecurity strategies. While deterrence and reactive defenses once dominated the conversation, the emergence of cyber persistence ̵…SECURITYINTELLIGENCE.COM
23 JanAI-Driven Security by Palo Alto Networks and IBMThis compelling video series from IBM and Palo Alto Networks dives into how cutting-edge security operations can help businesses thrive in the age of AI. The post AI-Driven Security by Palo Alto Networks and IBM appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
23 JanStratoshark: Wireshark for the cloud - now available! - Help Net Securitysubmitted by MajorTom to cybersecurity 9 points | 1 comments https://www.helpnetsecurity.com/2025/01/22/stratoshark-wireshark-cloud/INFOSEC.PUB
23 JanAsus lets processor security fix slip out early, AMD confirms patch in progresssubmitted by cm0002 to cybersecurity 8 points | 0 comments https://www.theregister.com/2025/01/23/asus_amd_processor_fix/INFOSEC.PUB
23 JanSupply chain attack strikes array of Chrome Extensionssubmitted by cm0002 to cybersecurity 35 points | 3 comments https://www.theregister.com/2025/01/22/supply_chain_attack_chrome_extension/INFOSEC.PUB
23 JanNew GhostGPT AI Chatbot Facilitates Malware Creation and Phishingsubmitted by kid to cybersecurity 11 points | 0 comments https://www.infosecurity-magazine.com/news/ghostgpt-ai-chatbot-malware/SH.ITJUST.WORKS
23 JanNew backdoor discovered that specifically targets Juniper routerssubmitted by kid to cybersecurity 7 points | 1 comments https://cyberscoop.com/jmagic-juniper-networks-backdoor-freebsd-vpn/SH.ITJUST.WORKS
23 JanResearchers say new attack could take down the European power gridsubmitted by hellfire103 to cybersecurity 30 points | 4 comments https://arstechnica.com/security/2025/01/could-hackers-use-new-attack-to-take-down-european-power-grid/SH.ITJUST.WORKS
🌐 CYBER THREAT LANDSCAPE 3[−]
23 JanHundreds of fake Reddit sites push Lumma Stealer malwareHackers are distributing close to 1,000 web pages mimicking Reddit and the WeTransfer file sharing service that lead to downloading the Lumma Stealer malware. [...]BLEEPINGCOMPUTER.COM
23 JanStealthy 'Magic Packet' malware targets Juniper VPN gatewaysA malicious campaign has been specifically targeting Juniper edge devices, many acting as VPN gateways, with malware dubbed J-magic that starts a reverse shell only if it detects a "magic packet" in the network traffic. [...]BLEEPINGCOMPUTER.COM
23 JanCorporate Ethics: Where Do You Draw the Line? ⚖️Where do personal ethics end, and corporate responsibility begin? ⚖️ This short dives into the tricky world of whistleblowing—a tool for exposing serious issues, but when is it really necessary? 🤔 Hear Matt Alderman and Jason tackle the clash between personal values and corporate…YOUTUBE.COM
🎙️ PODCASTS 1[−]
23 JanSmashing Security podcast #401: Hacks on the high seas, and how your home can be stolen under your noseAn Italian hacker makes the grade and ends up in choppy waters, and hear true stories of title deed transfer scams. All this and more is discussed in the latest edition of the award-winning "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriau…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 8[−]
23 JanGoogle launches customizable Web Store for Enterprise extensionsGoogle has officially launched its Chrome Web Store for Enterprises, allowing organizations to create a curated list of extensions that can be installed in employees' web browsers. [...]BLEEPINGCOMPUTER.COM
23 JanNew Android Identity Check locks settings outside trusted locationsGoogle has announced a new Android "Identity Check" security feature that lock sensitive settings behind biometric authentication when outside a trusted location. [...]BLEEPINGCOMPUTER.COM
23 JanBrave Search now lets users ‘Rerank’ results from favorite sitesBrave Search has introduced a new feature called Rerank, which allows users to define search results ordering preferences and set specific sites rank higher. [...]BLEEPINGCOMPUTER.COM
23 JanNew Research: The State of Web Exposure 2025Are your websites leaking sensitive data? New research reveals that 45% of third-party apps access user info without proper authorization, and 53% of risk exposures in Retail are due to the excessive use of tracking tools. Learn how to uncover and mitigate these hidden threats an…THEHACKERNEWS.COM
23 JanOpenAI says it may store deleted Operator data for up to 90 daysOpenAI says that it might store chats and associated screenshots from customers who use Operator, the company’s AI “agent” tool, for up to 90 days — even after a user manually deletes them. OpenAI has a similar deleted data retention policy for ChatGPT, its AI-p…TECHCRUNCH.COM
23 JanHidden Waymo feature let researcher customize robotaxi’s displaySecurity researcher Jane Wong found a hidden feature that let her change the top display of a Waymo robotaxi. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
23 JanReligious Scams, Pyramid Schemes... Crypto Next?Crypto might be new, but scams are as old as time. From religious schemes to pyramid hustles, history loves repeating itself! Even when crypto is legitimate, it’s risky if you don’t understand it. And let’s face it, falling for a "dream-inspired" crypto coin sounds more like a ch…YOUTUBE.COM
23 JanTP-Link Routers in Space? Here’s the Shocking Reality!Can you believe it? 🚀 NASA, the DEA, and even the Department of Defense are using TP-Link routers—the same ones you can grab at your local store! 🤯 Why are these high-level agencies opting for such budget-friendly options? In this video, we explore the surprising reasons behind t…YOUTUBE.COM