matlock.ca // THREAT INTELLIGENCE — 2025-05-02

74Articles

8Categories

2025-05-02Date

🚨

CISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2025-34028 Commvault Command Center Path Traversal Vulnerability CVE-2024-58136 Yiiframework Yii Improper Protection of Alternate Path Vulne…

KEVCISA.GOV — Fri, 02 May 25 1

🐛

NVIDIA TensorRT-LLM Vulnerability Let Hackers Run Malicious Code

GBHACKERS.COM — 02 May 2025

🐛

CISA Issues Alert on Actively Exploited Apache HTTP Server Escape Vulnerability

KEVGBHACKERS.COM — 02 May 2025

⚠️

Cybersecurity News Roundup: Book Deals, Retail Attacks, Apple Spyware Alerts, and More

CYBERSECURITYTODAY.LIBSYN.COM — 02 May 2025

⚠️

Microsoft makes all new accounts passwordless by default

BLEEPINGCOMPUTER.COM — 02 May 2025

⚠️

In Other News: NullPoint Source Code Leak, $17,500 for iPhone Flaw, BreachForums Down

SECURITYWEEK.COM — 02 May 2025

⚠️

The Have I Been Pwned Alpine Grand Tour

TROYHUNT.COM — 02 May 2025

⚠️

How to Automate CVE and Vulnerability Advisory Response with Tines

THEHACKERNEWS.COM — 02 May 2025

⚠️

Seven Malicious Packages Exploit Gmail SMTP to Run Harmful Commands

GBHACKERS.COM — 02 May 2025

⚠️

CISA Issues New ICS Advisories Addressing Critical Vulnerabilities and Exploits

GBHACKERS.COM — 02 May 2025

⚠️

Mehr Assets – mehr Angriffsfläche – mehr Risiko

KEVCSOONLINE.COM — 02 May 2025

⚠️

What is EDR? An analytical approach to endpoint security

CSOONLINE.COM — 02 May 2025

⚠️

Neurohacks to outsmart stress and make better cybersecurity decisions

CSOONLINE.COM — 02 May 2025

⚠️

CISOs should re-consider using Microsoft RDP due to password flaw, says expert

CSOONLINE.COM — 02 May 2025

⚠️

CrushFTP’s 10-Day Delay: A Hacker’s Dream?

YOUTUBE.COM — 2025-05-02

📢

NCSC Guidance on “Advanced Cryptography”

SCHNEIER.COM — 2025-05-02

📢

Google Chrome security advisory (AV25-243)

CYBER.GC.CA — 2025-05-02

📢

VMware security advisory (AV25-242)

CYBER.GC.CA — 2025-05-02

📢

[Control systems] ABB security advisory (AV25-241)

CYBER.GC.CA — 2025-05-02

📢

Mozilla security advisory (AV25-240)

CYBER.GC.CA — 2025-05-02

📢

Apache Tomcat security advisory (AV25-239)

CYBER.GC.CA — 2025-05-02

📢

[Control systems] CISA ICS security advisories (AV25–238)

CYBER.GC.CA — 2025-05-02

📢

Ubuntu security advisory (AV25-237)

CYBER.GC.CA — 2025-05-02

📢

IBM security advisory (AV25-236)

CYBER.GC.CA — 2025-05-02

📢

Dell security advisory (AV25-235)

CYBER.GC.CA — 2025-05-02

📢

HPE security advisory (AV25-234)

CYBER.GC.CA — 2025-05-02

📢

Microsoft Edge security advisory (AV25-233)

CYBER.GC.CA — 2025-05-02

📢

Erlang security advisory (AV25-232)

CYBER.GC.CA — 2025-05-02

📢

SonicWall security advisory (AV25-231)

CYBER.GC.CA — 2025-05-02

📢

HPE security advisory (AV25-230)

CYBER.GC.CA — 2025-05-02

📢

Cisco security advisory (AV25-229)

CYBER.GC.CA — 2025-05-02

📢

GitLab security advisory (AV25-228)

CYBER.GC.CA — 2025-05-02

📢

Google Chrome security advisory (AV25-227)

CYBER.GC.CA — 2025-05-02

📢

HPE security advisory (AV25-226)

CYBER.GC.CA — 2025-05-02

📢

[Control systems] CISA ICS security advisories (AV25–225)

CYBER.GC.CA — 2025-05-02

📢

Dell security advisory (AV25-224)

CYBER.GC.CA — 2025-05-02

📢

IBM security advisory (AV25-223)

CYBER.GC.CA — 2025-05-02

📢

Microsoft Edge security advisory (AV25-222)

CYBER.GC.CA — 2025-05-02

📢

Red Hat security advisory (AV25-221)

CYBER.GC.CA — 2025-05-02

📢

Ubuntu security advisory (AV25-220)

CYBER.GC.CA — 2025-05-02

📢

Cyber Centre welcomes round 2 of NIST’s additional digital signature scheme standardization process

CYBER.GC.CA — 2025-05-02

📢

UK NCSC: Cyberattacks impacting UK retailers are a wake-up call

BLEEPINGCOMPUTER.COM — 02 May 2025

📢

TikTok fined €530 million for sending European user data to China

BLEEPINGCOMPUTER.COM — 02 May 2025

📢

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

THEHACKERNEWS.COM — 02 May 2025

📢

Dutch Services Disrupted by DDoS Attacks From Russian-Affiliated Hacktivists

GBHACKERS.COM — 02 May 2025

🔥

US indicts Black Kingdom ransomware admin for Microsoft Exchange attacks

BLEEPINGCOMPUTER.COM — 02 May 2025

🔥

UK Retailers Co-op, Harrods and M&S Struggle With Cyberattacks

SECURITYWEEK.COM — 02 May 2025

🔥

Nova Scotia Power Says Hackers Stole Customer Information

SECURITYWEEK.COM — 02 May 2025

🔥

Ukrainian Nefilim Ransomware Affiliate Extradited to US

SECURITYWEEK.COM — 02 May 2025

🕵️

Raytheon, Nightwing to Pay $8.4 Million in Settlement Over Cybersecurity Failures

SECURITYWEEK.COM — 02 May 2025

🕵️

RSA Conference 2025 Announcement Summary (Day 3)

SECURITYWEEK.COM — 02 May 2025

🕵️

Microsoft Accounts Go Passwordless by Default

SECURITYWEEK.COM — 02 May 2025

🕵️

ISC Stormcast For Friday, May 2nd, 2025 https://isc.sans.edu/podcastdetail/9434, (Fri, May 2nd)

ISC.SANS.EDU — 02 May 2025

🕵️

Your KnowBe4 Fresh Content Updates from April 2025

KNOWBE4.COM — 02 May 2025

🕵️

Disney Hacker Admits Guilt After Stealing 1.1TB of Internal Data

GBHACKERS.COM — 02 May 2025

🕵️

Strategien für eine sichere digitale Zukunft von der RSA

CSOONLINE.COM — 02 May 2025

🕵️

Microsoft ernennt Deputy-CISO für Europa

CSOONLINE.COM — 02 May 2025

🕵️

Your Data Won’t Survive the Next Global Cyber War

YOUTUBE.COM — 2025-05-02

🕵️

Off-Topic Friday

INFOSEC.PUB — 2 May 2025

🕵️

A Flaw With the Security Level Slider in Tor Browser

INFOSEC.PUB — 2 May 2025

🕵️

A Flaw With the Security Level Slider in Tor Browser

PROGRAMMING.DEV — 2 May 2025

🕵️

A Flaw With the Security Level Slider in Tor Browser

SH.ITJUST.WORKS — 2 May 2025

🕵️

Friday Squid Blogging: Pyjama Squid

SCHNEIER.COM — 2025-05-02

🕵️

Privacy for Agentic AI

SCHNEIER.COM — 2025-05-02

🕵️

Weekly Update 450

TROYHUNT.COM — 02 May 2025

🕵️

How NSA Can Spy on Air-Gapped Networks? Meet FIREWALK

INFOSEC.PUB — 2 May 2025

🌐

MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks

THEHACKERNEWS.COM — 02 May 2025

🌐

Why Cybersecurity Experts Always Go Back to Basics 🔒

YOUTUBE.COM — 2025-05-02

📡

Recommended contract clauses for security operations centre procurement (ITSM.00.500)

CYBER.GC.CA — 2025-05-02

📡

Microsoft fixes Exchange Online bug flagging Gmail emails as spam

BLEEPINGCOMPUTER.COM — 02 May 2025

📡

xAI Dev Leaks API Key for Private SpaceX, Tesla LLMs

KREBSONSECURITY.COM — 02 May 2025

📡

Microsoft Sets Passkeys Default for New Accounts; 15 Billion Users Gain Passwordless Support

THEHACKERNEWS.COM — 02 May 2025

📡

Dating app Raw exposed users’ location data and personal information

TECHCRUNCH.COM — 02 May 2025

📡

RSAC 2025 wrap-up – Week in security with Tony Anscombe

WELIVESECURITY.COM — 02 May 2025