MATLOCK.CA
11Articles
6Categories
2025-03-18Date
🚨
CISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2025-24472 Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability CVE-2025-30066 tj-actions/changed-files GitHub Action Embedde…
KEVCISA.GOV — Tue, 18 Mar 25 1
🚨
Supply Chain Compromise of Third-Party tj-actions/changed-files (CVE-2025-30066) and reviewdog/action-setup@v1 (CVE-2025-30154)A popular third-party GitHub Action, tj-actions/changed-files (tracked as CVE-2025-30066 ), was compromised. tj-actions/changed-files is designed to detect which files have changed in a pull request or commit. The supply chain compromise allows for information disclosure of secre…
KEVCISA.GOV — Tue, 18 Mar 25 1
⚠️
A Vulnerability in Apache Tomcat Could Allow for Remote Code Execution
CISECURITY.ORG — 18 Mar 2025
⚠️
156: Kill List
DARKNETDIARIES.COM — 18 Mar 2025
⚠️
CISA Releases Seven Industrial Control Systems Advisories
CISA.GOV — Tue, 18 Mar 25 1
⚠️
ZDI-CAN-25373: Windows Shortcut Exploit Abused as Zero-Day in Widespread APT Campaigns
TRENDMICRO.COM — 18 Mar 2025
📢
CISA Probationary Reinstatements
CISA.GOV — Tue, 18 Mar 25 1
🕵️
SOC and Awe — How Autonomous Security Is Changing the Game
PALOALTONETWORKS.COM — 18 Mar 2025
🕵️
Darknet Diaries Ep 156: Kill List
INFOSEC.PUB — 18 Mar 2025
🌐
Operation AkaiRyū: MirrorFace invites Europe to Expo 2025 and revives ANEL backdoor
WELIVESECURITY.COM — 18 Mar 2025
📡
MirrorFace updates toolset, expands targeting to Europe
WELIVESECURITY.COM — 18 Mar 2025