MATLOCK.CA
110Articles
10Categories
2025-05-14Date
🚨
CISA adds the notorious TeleMessage flaw to KEV listCISA has added a medium-severity vulnerability discovered in TeleMessage TM SGNL, the messaging application that was used by the former national security advisor Mike Waltz, to its Known Exploited Vulnerabilities (KEV) Catalog. The modified version of the more famous Signal app, …
KEVCSOONLINE.COM — 14 May 2025
🚨
CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2025-32756 Fortinet Multiple Products Stack-Based Buffer Overflow Vulnerability These types of vulnerabilities are frequent attack vectors for malic…
KEVCISA.GOV — Wed, 14 May 25 1
🐛
Patch Tuesday for May: Five zero day vulnerabilities CISOs should focus on
KEVCSOONLINE.COM — 14 May 2025
🐛
Fortinet Patches CVE-2025-32756 Zero-Day RCE Flaw Exploited in FortiVoice Systems
THEHACKERNEWS.COM — 14 May 2025
🐛
Ivanti Patches EPMM Vulnerabilities Exploited for Remote Code Execution in Limited Attacks
THEHACKERNEWS.COM — 14 May 2025
🐛
Critical 0-Day in Windows DWM Enables Privilege Escalation
KEVGBHACKERS.COM — 14 May 2025
🐛
New Windows RDP Vulnerability Enables Network-Based Attacks
GBHACKERS.COM — 14 May 2025
🐛
New Microsoft Scripting Engine Vulnerability Exposes Systems to Remote Code Attacks
GBHACKERS.COM — 14 May 2025
🐛
Windows Ancillary for WinSock 0-Day Vulnerability Actively Exploited to Gain Admin Access
KEVGBHACKERS.COM — 14 May 2025
🐛
Critical Samsung MagicINFO 9 Server Flaw Allows Arbitrary File Writes
GBHACKERS.COM — 14 May 2025
🐛
Windows CLFS Zero-Day Vulnerability Actively Exploited in the Wild
KEVGBHACKERS.COM — 14 May 2025
🐛
Chinese Hackers Exploit SAP NetWeaver Zero-Day Vulnerability to Target Critical Infrastructure
GBHACKERS.COM — 14 May 2025
🐛
Microsoft Alerts on AD CS Flaw Enabling Remote Denial-of-Service Attacks
GBHACKERS.COM — 14 May 2025
🐛
Neue EU-Schwachstellen-Datenbank geht an den Start
CSOONLINE.COM — 14 May 2025
🐛
Microsoft Defender Vulnerability Allows Unauthorized Privilege Gain
GBHACKERS.COM — 14 May 2025
🐛
Critical Vulnerability in Windows Remote Desktop Gateway Allows Denial-of-Service Attacks
GBHACKERS.COM — 14 May 2025
🐛
Critical Microsoft Outlook Flaw Enables Remote Execution of Arbitrary Code
GBHACKERS.COM — 14 May 2025
🐛
China-Nexus Nation State Actors Exploit SAP NetWeaver (CVE-2025-31324) to Target Critical Infrastructures in UK, U.S., and Saudi Arabia
INFOSEC.PUB — 14 May 2025
🐛
China-Nexus Nation State Actors Exploit SAP NetWeaver (CVE-2025-31324) to Target Critical Infrastructures in UK, U.S., and Saudi Arabia
SH.ITJUST.WORKS — 14 May 2025
🐛
New Adobe Photoshop Vulnerability Enables Arbitrary Code Execution
GBHACKERS.COM — 14 May 2025
🐛
Severe Adobe Illustrator Flaw Allows Remote Code Execution
GBHACKERS.COM — 14 May 2025
🐛
News alert: INE Security highlights monthly CVE Labs aimed at sharpening real-world defense
LASTWATCHDOG.COM — 14 May 2025
🐛
Samsung Patches CVE-2025-4632 Used to Deploy Mirai Botnet via MagicINFO 9 Exploit
KEVTHEHACKERNEWS.COM — 14 May 2025
🐛
Ivanti patches two EPMM flaws exploited in the wild
KEVCSOONLINE.COM — 14 May 2025
⚠️
Spain to vet power plants’ cybersecurity for ‘great blackout’ cause
CSOONLINE.COM — 14 May 2025
⚠️
Mark's and Spencer Data Breach, Vulnerable Routers, Fortinet Exploits, and New Ransomware Threats
CYBERSECURITYTODAY.LIBSYN.COM — 14 May 2025
⚠️
Critical Microsoft Office Vulnerabilities Enable Malicious Code Execution
GBHACKERS.COM — 14 May 2025
⚠️
Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers
SECURITYWEEK.COM — 14 May 2025
⚠️
Microsoft Fixes 78 Flaws, 5 Zero-Days Exploited; CVSS 10 Bug Impacts Azure DevOps Server
THEHACKERNEWS.COM — 14 May 2025
⚠️
CISO Communication and Hiring, as they Combat Threat and Penetration Testing Trends - ... - BSW #395
YOUTUBE.COM — 2025-05-14
⚠️
Fortinet Patches Zero-Day Exploited Against FortiVoice Appliances
KEVSECURITYWEEK.COM — 14 May 2025
⚠️
Weaponized PyPI Package Targets Developers to Steal Source Code
GBHACKERS.COM — 14 May 2025
⚠️
Researchers discover new security vulnerability in Intel processors
INFOSEC.PUB — 14 May 2025
⚠️
Learning How to Hack: Why Offensive Security Training Benefits Your Entire Security Team
THEHACKERNEWS.COM — 14 May 2025
⚠️
EU Cybersecurity Agency ENISA Launches European Vulnerability Database
SECURITYWEEK.COM — 14 May 2025
⚠️
SAP patches second zero-day flaw exploited in recent attacks
SH.ITJUST.WORKS — 14 May 2025
⚠️
Patch Tuesday, May 2025 Edition
KREBSONSECURITY.COM — 14 May 2025
⚠️
Microsoft Defender Vulnerability Allows Attackers to Elevate Privileges
SH.ITJUST.WORKS — 14 May 2025
⚠️
Threat Actors Exploit AI and LLM Tools for Offensive Cyber Operations
GBHACKERS.COM — 14 May 2025
⚠️
Nation-State Actors Target Healthcare Institutions to Sabotage IT and OT Systems
GBHACKERS.COM — 14 May 2025
⚠️
Fashion giant Dior discloses cyberattack, warns of data breach
BLEEPINGCOMPUTER.COM — 14 May 2025
⚠️
Katz Stealer Malware Hits 78+ Chromium and Gecko-Based Browsers
GBHACKERS.COM — 14 May 2025
⚠️
Chipmaker Patch Tuesday: Intel, AMD, Arm Respond to New CPU Attacks
SECURITYWEEK.COM — 14 May 2025
⚠️
Researchers Unveil New Mechanism to Track Compartmentalized Cyber Threats
GBHACKERS.COM — 14 May 2025
⚠️
Steel giant Nucor Corporation facing disruptions after cyberattack
BLEEPINGCOMPUTER.COM — 14 May 2025
⚠️
Focused Phishing: Attack Targets Victims With Trusted Sites and Live Validation
BLEEPINGCOMPUTER.COM — 14 May 2025
⚠️
Threat Actors Leverage Weaponized HTML Files to Deliver Horabot Malware
GBHACKERS.COM — 14 May 2025
⚠️
Microsoft primes 71 fixes for May Patch Tuesday
KEVSOPHOS.COM — 14 May 2025
⚠️
Australian Human Rights Commission leaks docs to search engines
BLEEPINGCOMPUTER.COM — 14 May 2025
⚠️
Ransomware gangs join ongoing SAP NetWeaver attacks
BLEEPINGCOMPUTER.COM — 14 May 2025
⚠️
BianLian and RansomExx Exploit SAP NetWeaver Flaw to Deploy PipeMagic Trojan
THEHACKERNEWS.COM — 14 May 2025
⚠️
This One Word Is Wasting Millions in Cybersecurity
YOUTUBE.COM — 2025-05-14
⚠️
Cyber CEO Arrested… Or Was He? 👀 #ITDrama
YOUTUBE.COM — 2025-05-14
⚠️
Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution
CISECURITY.ORG — 14 May 2025
⚠️
Risky Business #791 -- Woof! Copilot for Sharepoint coughs up creds and keys
RISKY.BIZ — 14 May 2025
📋
ICS Patch Tuesday: Vulnerabilities Addressed by Siemens, Schneider, Phoenix Contact
SECURITYWEEK.COM — 14 May 2025
📋
Microsoft fixes Linux boot issues on dual-boot Windows systems
BLEEPINGCOMPUTER.COM — 14 May 2025
📢
Microsoft security advisory – May 2025 monthly rollup (AV25-269)
CYBER.GC.CA — 2025-05-14
📢
Intel security advisory (AV25-268)
CYBER.GC.CA — 2025-05-14
📢
Ivanti security advisory (AV25-267)
CYBER.GC.CA — 2025-05-14
📢
Fortinet security advisory (AV25-266)
CYBER.GC.CA — 2025-05-14
📢
Kosovar Administrator of Cybercrime Marketplace Extradited to US
SECURITYWEEK.COM — 14 May 2025
📢
Ivanti security advisory (AV25-270)
CYBER.GC.CA — 2025-05-14
📢
Adobe security advisory (AV25–271)
CYBER.GC.CA — 2025-05-14
📢
[Control systems] Siemens security advisory (AV25-272)
CYBER.GC.CA — 2025-05-14
📢
Palo Alto Networks security advisory (AV25-273)
CYBER.GC.CA — 2025-05-14
📢
Google Chrome security advisory (AV25-274)
CYBER.GC.CA — 2025-05-14
📢
Juniper Networks security advisory (AV25-275)
CYBER.GC.CA — 2025-05-14
📢
Jenkins security advisory (AV25-276)
CYBER.GC.CA — 2025-05-14
📢
[Control systems] Schneider Electric security advisory (AV25-277)
CYBER.GC.CA — 2025-05-14
📢
Google Chrome to block admin-level browser launches for better security
BLEEPINGCOMPUTER.COM — 14 May 2025
🔥
Marks & Spencer räumt Cyberangriff ein
CSOONLINE.COM — 14 May 2025
🔥
Earth Ammit Breached Drone Supply Chains via ERP in VENOM, TIDRONE Campaigns
THEHACKERNEWS.COM — 14 May 2025
🔥
Twilio denies breach following leak of alleged Steam 2FA codes
SH.ITJUST.WORKS — 14 May 2025
🔥
Australian Human Rights Commission Data Breach Exposes Sensitive Documents Submitted via Website
SH.ITJUST.WORKS — 14 May 2025
🔥
Healthcare Cyberattacks in 2024 Expose 276 Million Patient Records Compromised
GBHACKERS.COM — 14 May 2025
🔥
Why Critical Infrastructure Might Be Next in the Cyber War
YOUTUBE.COM — 2025-05-14
🔥
Ransomware gangs join ongoing SAP NetWeaver attacks
SH.ITJUST.WORKS — 14 May 2025
🕵️
ISC Stormcast For Wednesday, May 14th, 2025 https://isc.sans.edu/podcastdetail/9450, (Wed, May 14th)
ISC.SANS.EDU — 14 May 2025
🕵️
Earth Ammit Hackers Deploy New Tools to Target Military Drones
GBHACKERS.COM — 14 May 2025
🕵️
Researchers Unveil New Threat-Hunting Techniques to Detect Azure Managed Identity Abuse
GBHACKERS.COM — 14 May 2025
🕵️
As US vuln-tracking falters, EU enters with its own security bug database
SH.ITJUST.WORKS — 14 May 2025
🕵️
Vulnerabilities Patched by Juniper, VMware and Zoom
SECURITYWEEK.COM — 14 May 2025
🕵️
Google’s Advanced Protection Now on Android
SCHNEIER.COM — 2025-05-14
🕵️
Vulnerabilities Patched by Juniper, VMware and Zoom
SH.ITJUST.WORKS — 14 May 2025
🕵️
Horabot Malware Targets 6 Latin American Nations Using Invoice-Themed Phishing Emails
SH.ITJUST.WORKS — 14 May 2025
🕵️
Unit 42 Develops Agentic AI Attack Framework
PALOALTONETWORKS.COM — 14 May 2025
🕵️
Hackers Weaponize KeePass Password Manager to Deliver Malware & Steal Passwords
SH.ITJUST.WORKS — 14 May 2025
🕵️
89 million Steam account details just got leaked, so now's a good time to change your password
INFOSEC.PUB — 14 May 2025
🕵️
New HTTPBot Botnet Rapidly Expands to Target Windows Machines
GBHACKERS.COM — 14 May 2025
🕵️
Is AI Use in the Workplace Out of Control?
SECURITYWEEK.COM — 14 May 2025
🕵️
TA406 Hackers Target Government Entities to Steal Login Credentials
GBHACKERS.COM — 14 May 2025
🕵️
Google Threat Intelligence Releases Actionable Threat Hunting Technique for Malicious .desktop Files
GBHACKERS.COM — 14 May 2025
🕵️
How to Use the WRONG Remote Desktop (Microsoft Style) 🧠💥
YOUTUBE.COM — 2025-05-14
🕵️
Insight: Rogue communication devices found in Chinese solar power inverters
SH.ITJUST.WORKS — 14 May 2025
🕵️
Upcoming Speaking Engagements
SCHNEIER.COM — 2025-05-14
🕵️
Xinbi Telegram Market Tied to $8.4B in Crypto Crime, Romance Scams, North Korea Laundering
THEHACKERNEWS.COM — 14 May 2025
🕵️
Google Ships Android ‘Advanced Protection’ Mode to Thwart Surveillance Spyware
SECURITYWEEK.COM — 14 May 2025
🕵️
Caught Being a Nerd in Public? This Happens…
YOUTUBE.COM — 2025-05-14
🌐
Horabot Malware Targets 6 Latin American Nations Using Invoice-Themed Phishing Emails
THEHACKERNEWS.COM — 14 May 2025
🌐
Hackers behind UK retail attacks now targeting US companies
BLEEPINGCOMPUTER.COM — 14 May 2025
🎙️
Smashing Security podcast #417: Hello, Pervert! – Sextortion scams and Discord disasters
GRAHAMCLULEY.COM — 14 May 2025
📡
Another day, another phishing campaign abusing google.com open redirects, (Wed, May 14th)
ISC.SANS.EDU — 14 May 2025
📡
How to implement zero trust: first steps and success factors
KASPERSKY.COM — 14 May 2025
📡
Kosovo extradites BlackDB admin to face US cybercrime charges
BLEEPINGCOMPUTER.COM — 14 May 2025
📡
CTM360 Identifies Surge in Phishing Attacks Targeting Meta Business Users
THEHACKERNEWS.COM — 14 May 2025
📡
They Say Data Is Like Oil… But They’re WRONG! 🚨
YOUTUBE.COM — 2025-05-14
📡
A Cyber Expert’s Warning: If You Can’t Predict It, You Can’t Secure It!
YOUTUBE.COM — 2025-05-14
📡
Sophos Firewall v21.5: DNS protection
SOPHOS.COM — 14 May 2025
📡
White House scraps plan to block data brokers from selling Americans’ sensitive data
TECHCRUNCH.COM — 14 May 2025