matlock.ca // THREAT INTELLIGENCE — 2025-05-19

94Articles

8Categories

2025-05-19Date

🚨

CISA Adds Six Known Exploited Vulnerabilities to CatalogCISA has added six new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2025-4427 Ivanti Endpoint Manager Mobile (EPMM) Authentication Bypass Vulnerability CVE-2025-4428 Ivanti Endpoint Manager Mobile (EPMM) Code…

KEVCISA.GOV — Mon, 19 May 25 1

🐛

GNU C(glibc) Vulnerability Let Attackers Execute Arbitrary Code on Millions of Linux Systems

GBHACKERS.COM — 19 May 2025

🐛

Critical Firefox 0-Day Flaws Allow Remote Code Execution

GBHACKERS.COM — 19 May 2025

🐛

Confluence Servers Under Attack: Hackers Leverage Vulnerability for RDP Access and Remote Code Execution

GBHACKERS.COM — 19 May 2025

🐛

Firefox Patches 2 Zero-Days Exploited at Pwn2Own Berlin with $100K in Rewards

THEHACKERNEWS.COM — 19 May 2025

🐛

Active Exploitation of Ivanti EPMM Zero-Day Vulnerability in the Wild

GBHACKERS.COM — 19 May 2025

⚠️

Passwortfreie Authentifizierung: So gelingt der Umstieg auf PKI

CSOONLINE.COM — 19 May 2025

⚠️

Exploiting dMSA for Advanced Active Directory Persistence

GBHACKERS.COM — 19 May 2025

⚠️

Operation RoundPress: Cyber security firm ESET uncovers Russia-aligned espionage operation targeting webmail servers via XSS vulnerabilities to spy on Ukraine

INFOSEC.PUB — 19 May 2025

⚠️

Operation RoundPress: Cyber security firm ESET uncovers Russia-aligned espionage operation targeting webmail servers via XSS vulnerabilities to spy on Ukraine

SH.ITJUST.WORKS — 19 May 2025

⚠️

8 security risks overlooked in the rush to implement AI

KEVCSOONLINE.COM — 19 May 2025

⚠️

Hackers Earn Over $1 Million at Pwn2Own Berlin 2025

SECURITYWEEK.COM — 19 May 2025

⚠️

Pwn2Own Day 3: Zero-Day Exploits Windows 11, VMware ESXi, and Firefox

GBHACKERS.COM — 19 May 2025

⚠️

Hackers Exploit RVTools to Deploy Bumblebee Malware on Windows Systems

GBHACKERS.COM — 19 May 2025

⚠️

AirBorne: attacks on devices via Apple AirPlay | Kaspersky official blog

KASPERSKY.COM — 19 May 2025

⚠️

⚡ Weekly Recap: Zero-Day Exploits, Insider Threats, APT Targeting, Botnets and More

THEHACKERNEWS.COM — 19 May 2025

⚠️

A spoof antivirus makes Windows Defender disable security scans

CSOONLINE.COM — 19 May 2025

⚠️

VMware Hacked As $150,000 Zero-Day Exploit Dropped

INFOSEC.PUB — 19 May 2025

⚠️

Mozilla fixes Firefox zero-days exploited at hacking contest

BLEEPINGCOMPUTER.COM — 19 May 2025

⚠️

Hackers earn $1,078,750 for 28 zero-days at Pwn2Own Berlin

BLEEPINGCOMPUTER.COM — 19 May 2025

⚠️

The State of Cybersecurity Readiness for the Next Big Emergency - Bri Frost, David Avi... - ESW #407

YOUTUBE.COM — 2025-05-19

⚠️

Ransomware Gangs Use Skitnet Malware for Stealthy Data Theft and Remote Access

THEHACKERNEWS.COM — 19 May 2025

⚠️

MY TAKE: Semantics aside, “agentic AI” is already reshaping how we work, think, envision what’s next

LASTWATCHDOG.COM — 19 May 2025

⚠️

Microsoft open-sources Windows Subsystem for Linux at Build 2025

BLEEPINGCOMPUTER.COM — 19 May 2025

⚠️

Microsoft extends Zero Trust to secure the agentic workforce

MICROSOFT.COM — 19 May 2025

⚠️

Ransomware gangs increasingly use Skitnet post-exploitation malware

SH.ITJUST.WORKS — 19 May 2025

⚠️

Auth0-PHP Vulnerability Enables Unauthorized Access for Attackers

GBHACKERS.COM — 19 May 2025

⚠️

Russian APT Exploiting Mail Servers Against Government, Defense Organizations

SH.ITJUST.WORKS — 19 May 2025

⚠️

Firefox Patches 2 Zero-Days Exploited at Pwn2Own Berlin with $100K in Rewards

SH.ITJUST.WORKS — 19 May 2025

⚠️

Hackers Exploit AutoIT Scripts to Deploy Malware Targeting Windows Systems

GBHACKERS.COM — 19 May 2025

⚠️

Cache Timing Techniques Used to Bypass Windows 11 KASLR and Reveal Kernel Base

GBHACKERS.COM — 19 May 2025

⚠️

The Future of Science is... Artificial?

YOUTUBE.COM — 2025-05-19

⚠️

No Resources Left? Time for Strategic Refusal!

YOUTUBE.COM — 2025-05-19

📋

CISA to Stop Publishing Cybersecurity Alerts and Advisories on Webpages

GBHACKERS.COM — 19 May 2025

📋

Windows 10 emergency updates fix BitLocker recovery issues

BLEEPINGCOMPUTER.COM — 19 May 2025

📢

Health Care Data Breach Costs BreachForums Admin $700,000 Fine

GBHACKERS.COM — 19 May 2025

📢

Botnet Dismantled in International Operation, Russian and Kazakhstani Administrators Indicted

INFOSEC.PUB — 19 May 2025

📢

CISA Welcomes Madhu Gottumukkala as the New Deputy Director

CISA.GOV — Mon, 19 May 25 1

📢

Japan passed a law allowing preemptive offensive cyber actions

SH.ITJUST.WORKS — 19 May 2025

🔥

200,000 Harbin Clinic Patients Impacted by NRS Data Breach

SECURITYWEEK.COM — 19 May 2025

🔥

UK Legal Aid Agency Finds Data Breach Following Cyberattack

SECURITYWEEK.COM — 19 May 2025

🔥

Pharma giant Regeneron to buy 23andMe and its customers’ data for $256M

TECHCRUNCH.COM — 19 May 2025

🔥

UK Legal Aid Agency confirms applicant data stolen in data breach

BLEEPINGCOMPUTER.COM — 19 May 2025

🔥

Google Reveals Hackers Targeting US Following UK Retailer Attacks

GBHACKERS.COM — 19 May 2025

🔥

$4.8M or a Few Laptops? Why Companies Still Gamble

YOUTUBE.COM — 2025-05-19

🔥

Cocospy stalkerware apps go offline after data breach

TECHCRUNCH.COM — 19 May 2025

🔥

Hacker Arrested for Taking Over SEC Social Media to Spread False Bitcoin News

GBHACKERS.COM — 19 May 2025

🔥

Ransomware gang INC claims recent attack on South African Airways - Comparitech

SH.ITJUST.WORKS — 19 May 2025

🔥

RVTools Official Site Hacked to Deliver Bumblebee Malware via Trojanized Installer

THEHACKERNEWS.COM — 19 May 2025

🔥

New Report Finds 67% of Organizations Experienced Cyber Attacks in the Last Year

GBHACKERS.COM — 19 May 2025

🔥

Arla Foods confirms cyberattack disrupts production, causes delays

BLEEPINGCOMPUTER.COM — 19 May 2025

🔥

BreachRx Lands $15 Million as Investors Bet on Breach-Workflow Software

SECURITYWEEK.COM — 19 May 2025

🔥

Have I Been Pwned 2.0 is Now Live!

TROYHUNT.COM — 19 May 2025

🔥

Fake KeePass password manager leads to ESXi ransomware attack

BLEEPINGCOMPUTER.COM — 19 May 2025

🕵️

ISC Stormcast For Monday, May 19th, 2025 https://isc.sans.edu/podcastdetail/9456, (Mon, May 19th)

ISC.SANS.EDU — 19 May 2025

🕵️

RAT Dropped By Two Layers of AutoIT Code, (Mon, May 19th)

ISC.SANS.EDU — 19 May 2025

🕵️

Russian hackers are interested in chaos and money, says NATO cyber defense director

INFOSEC.PUB — 19 May 2025

🕵️

Russian hackers are interested in chaos and money, says NATO cyber defense director

SH.ITJUST.WORKS — 19 May 2025

🕵️

Prison Sentence for Man Involved in SEC X Account Hack

SECURITYWEEK.COM — 19 May 2025

🕵️

New ModiLoader Malware Campaign Targets Windows PCs, Harvesting User Credentials

GBHACKERS.COM — 19 May 2025

🕵️

Spiking Neural Networks: Brain-Inspired Chips That Could Keep Your Data Safe

SECURITYWEEK.COM — 19 May 2025

🕵️

The NSA’s “Fifty Years of Mathematical Cryptanalysis (1937–1987)”

SCHNEIER.COM — 2025-05-19

🕵️

480,000 Catholic Health Patients Impacted by Serviceaide Data Leak

SECURITYWEEK.COM — 19 May 2025

🕵️

How Scattered Spider TTPs are evolving in 2025

SH.ITJUST.WORKS — 19 May 2025

🕵️

The AI Fix nominated for top podcast award. Vote now!

GRAHAMCLULEY.COM — 19 May 2025

🕵️

Mentorship Monday - Discussions for career and learning!

INFOSEC.PUB — 19 May 2025

🕵️

Detecting malicious Unicode

INFOSEC.PUB — 19 May 2025

🕵️

USN-7292-1: Dropbear vulnerabilities | Ubuntu security notices | Ubuntu

INFOSEC.PUB — 19 May 2025

🕵️

Massives Datenleck in Cloud-Speichern

CSOONLINE.COM — 19 May 2025

🕵️

New 'Defendnot' tool tricks Windows into disabling Microsoft Defender

SH.ITJUST.WORKS — 19 May 2025

🕵️

You're Securing Code, Not People… And That’s the Problem.

YOUTUBE.COM — 2025-05-19

🕵️

Massive data leak: 200 billion files exposed in cloud buckets

SH.ITJUST.WORKS — 19 May 2025

🕵️

Skitnet Malware Employs Stealth Techniques to Execute Payload and Maintain Persistence Techniques

GBHACKERS.COM — 19 May 2025

🕵️

Investigating Cobalt Strike Beacons Using Shodan: A Researcher’s Guide

GBHACKERS.COM — 19 May 2025

🕵️

Volkswagen Car Hack Exposes Owner’s Personal Data and Service Records

GBHACKERS.COM — 19 May 2025

🕵️

Printer Company Procolored Served Infected Software for Months

SECURITYWEEK.COM — 19 May 2025

🕵️

Top 5 Advances in Unsupervised Learning for Cybersecurity

INFOSEC.PUB — 19 May 2025

🕵️

How Much Do CEOs Really Know About Cyber Risk?

YOUTUBE.COM — 2025-05-19

🕵️

Shadow AI Is The New Shadow IT… And It’s Worse

YOUTUBE.COM — 2025-05-19

🕵️

New Hannibal Stealer Uses Stealth and Obfuscation to Evade Detection

GBHACKERS.COM — 19 May 2025

🕵️

Chinese APT Hackers Target Organizations Using Korplug Loaders and Malicious USB Drives

GBHACKERS.COM — 19 May 2025

🕵️

New Phishing Attack Poses as Zoom Meeting Invites to Steal Login Credentials

GBHACKERS.COM — 19 May 2025

🕵️

Beware of Coinbase Scams

KNOWBE4.COM — 19 May 2025

🕵️

Warning: Phishing Kits Can Auto-Generate Tailored Login Pages

KNOWBE4.COM — 19 May 2025

🕵️

The who, where, and how of APT attacks in Q4 2024–Q1 2025

WELIVESECURITY.COM — 19 May 2025

🕵️

ESET APT Activity Report Q4 2024–Q1 2025

WELIVESECURITY.COM — 19 May 2025

🕵️

Fake CAPTCHA Attacks Deploy Infostealers and RATs in a Multistage Payload Chain

TRENDMICRO.COM — 19 May 2025

📡

Why CTEM is the Winning Bet for CISOs in 2025

THEHACKERNEWS.COM — 19 May 2025

📡

Microsoft confirms new "Advanced" Settings for Windows 11

BLEEPINGCOMPUTER.COM — 19 May 2025

📡

How Data Science Can Fix Your CMDB Accuracy!

YOUTUBE.COM — 2025-05-19

📡

Microsoft unveils Windows AI Foundry for AI-powered PC apps

BLEEPINGCOMPUTER.COM — 19 May 2025

📡

The Dev Security Dilemma: Speed vs. Safety 🚀🔒

YOUTUBE.COM — 2025-05-19

📡

O2 UK patches bug leaking mobile user location from call metadata

BLEEPINGCOMPUTER.COM — 19 May 2025

📡

OpenAI plans to combine multiple models into GPT-5

BLEEPINGCOMPUTER.COM — 19 May 2025