matlock.ca // THREAT INTELLIGENCE

105Articles

9Categories

2025-05-20Date

🚨

CISA Adds Actively Exploited Ivanti EPMM Zero-Day to KEV CatalogCybersecurity and Infrastructure Security Agency (CISA) has added two critical zero-day vulnerabilities affecting Ivanti Endpoint Manager Mobile (EPMM) to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The flaws CVE-2025-442…

KEVGBHACKERS.COM — 20 May 2025

🚨

CISA Includes MDaemon Email Server XSS Flaw in KEV CatalogCybersecurity and Infrastructure Security Agency (CISA) has added a cross-site scripting (XSS) vulnerability affecting MDaemon Email Server to its Known Exploited Vulnerabilities (KEV) Catalog on May 19, 2025. This critical addition, identified as CVE-2024-11182, highlights a sec…

KEVGBHACKERS.COM — 20 May 2025

🐛

Ethical hackers exploited zero-day vulnerabilities against popular OS, browsers, VMs and AI frameworks

CSOONLINE.COM — 20 May 2025

🐛

Windows 11 Privilege Escalation Vulnerability Let Attackers Gain Admin Access in Under 300 Milliseconds

GBHACKERS.COM — 20 May 2025

🐛

Qilin Exploits SAP Zero-Day Vulnerability Weeks Ahead of Public Disclosure

KEVGBHACKERS.COM — 20 May 2025

🐛

Security Flaw in WordPress Plugin Puts 22,000 Websites at Risk of Cyber Attacks

GBHACKERS.COM — 20 May 2025

⚠️

Critical pfSense Firewall Flaws Enable Attackers to Inject Malicious Code

GBHACKERS.COM — 20 May 2025

⚠️

Malicious PyPI Packages Exploit Instagram and TikTok APIs to Validate User Accounts

THEHACKERNEWS.COM — 20 May 2025

⚠️

4 ways to safeguard CISO communications from legal liabilities

CSOONLINE.COM — 20 May 2025

⚠️

Malicious npm Package in Koishi Chatbots Steals Sensitive Data in Real Time

GBHACKERS.COM — 20 May 2025

⚠️

O2 VoLTE Flaw Allows Tracking of Customers’ Locations Through Phone Calls

GBHACKERS.COM — 20 May 2025

⚠️

Appsec News & Interviews from RSAC on Identity and AI - Charlotte Wylie, Rami Saas - ASW #331

YOUTUBE.COM — 2025-05-20

⚠️

O2 Service Vulnerability Exposed User Location

SECURITYWEEK.COM — 20 May 2025

⚠️

Critical Multer Vulnerability Puts Millions of Node.js Apps at Risk

GBHACKERS.COM — 20 May 2025

⚠️

WordPress Plugin Flaw Puts 22,000 Websites at Risk of Cyber Attacks

GBHACKERS.COM — 20 May 2025

⚠️

Critical VMware Cloud Foundation Vulnerability Exposes Sensitive Data

GBHACKERS.COM — 20 May 2025

⚠️

Skitnet malware: The new ransomware favorite

CSOONLINE.COM — 20 May 2025

⚠️

Vulnerability Exploitation Probability Metric Proposed by NIST, CISA Researchers

KEVSECURITYWEEK.COM — 20 May 2025

⚠️

You’ve already been targeted: Why patch management is mission-critical

CSOONLINE.COM — 20 May 2025

⚠️

AWS Default IAM Roles Found to Enable Lateral Movement and Cross-Service Exploitation

THEHACKERNEWS.COM — 20 May 2025

⚠️

NATO-Flagged Vulnerability Tops Latest VMware Security Patch Batch

SECURITYWEEK.COM — 20 May 2025

⚠️

Hackers Abuse TikTok and Instagram APIs to Verify Stolen Account Credentials

GBHACKERS.COM — 20 May 2025

⚠️

8 KI-Sicherheitsrisiken, die Unternehmen übersehen

CSOONLINE.COM — 20 May 2025

⚠️

RedisRaider Campaign Targets Linux Servers by Exploiting Misconfigured Redis Instances

GBHACKERS.COM — 20 May 2025

⚠️

The AI Fix #51: Divorce by coffee grounds, and why AI robots need your brain

GRAHAMCLULEY.COM — 20 May 2025

⚠️

Your Speaker Could Hack You – Thanks to AirPlay 💀

YOUTUBE.COM — 2025-05-20

⚠️

More_Eggs Malware Uses Job Application Emails to Distribute Malicious Payloads

GBHACKERS.COM — 20 May 2025

⚠️

Accenture Files Leak – New Research Reveals Projects Controlling Billions of User Data

GBHACKERS.COM — 20 May 2025

⚠️

Hazy Hawk gang exploits DNS misconfigs to hijack trusted domains

BLEEPINGCOMPUTER.COM — 20 May 2025

⚠️

CISA Releases Thirteen Industrial Control Systems Advisories

CISA.GOV — Tue, 20 May 25 1

⚠️

Hazy Hawk Exploits DNS Records to Hijack CDC, Corporate Domains for Malware Delivery

THEHACKERNEWS.COM — 20 May 2025

⚠️

NATO-Flagged Vulnerability Tops Latest VMware Security Patch Batch

SH.ITJUST.WORKS — 20 May 2025

⚠️

SK Telecom says malware breach lasted 3 years, impacted 27 million numbers

BLEEPINGCOMPUTER.COM — 20 May 2025

⚠️

EU High Level Group (established by EU commission) recommends forcing all devices in the EU to be sold with ”integrated Law Enforcement access” and sanctioning non-EU approved messaging services

SH.ITJUST.WORKS — 20 May 2025

⚠️

VanHelsing ransomware builder leaked on hacking forum

BLEEPINGCOMPUTER.COM — 20 May 2025

⚠️

Premium WordPress 'Motors' theme vulnerable to admin takeover attacks

BLEEPINGCOMPUTER.COM — 20 May 2025

⚠️

What Do You Want Me to DEPRIORITIZE? (CISO Reality Check)

YOUTUBE.COM — 2025-05-20

⚠️

Microsoft’s Upgrade Plan: Waste More, Upgrade Faster

YOUTUBE.COM — 2025-05-20

⚠️

PowerSchool hacker pleads guilty to student data extortion scheme

BLEEPINGCOMPUTER.COM — 20 May 2025

⚠️

Threat Actors Deploy LummaC2 Malware to Exfiltrate Sensitive Data from Organizations

CISA.GOV — 20 May 2025

📋

Microsoft Issues Urgent Patch to Resolve BitLocker Recovery Problem

GBHACKERS.COM — 20 May 2025

📢

Madhu Gottumukkala Officially Announced as CISA Deputy Director

SECURITYWEEK.COM — 20 May 2025

📢

South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware

THEHACKERNEWS.COM — 20 May 2025

📢

Red Hat security advisory (AV25-280)

CYBER.GC.CA — 2025-05-20

📢

Ubuntu security advisory (AV25-279)

CYBER.GC.CA — 2025-05-20

📢

IBM security advisory (AV25-281)

CYBER.GC.CA — 2025-05-20

📢

Dell security advisory (AV25-282)

CYBER.GC.CA — 2025-05-20

📢

[Control systems] CISA ICS security advisories (AV25–283)

CYBER.GC.CA — 2025-05-20

📢

AWS, Honeywell, Marriott… What Do They Want from World Governments?

YOUTUBE.COM — 2025-05-20

📢

Atlassian security advisory (AV25-284)

CYBER.GC.CA — 2025-05-20

📢

Mozilla security advisory (AV25-285)

CYBER.GC.CA — 2025-05-20

📢

VMware security advisory (AV25-286)

CYBER.GC.CA — 2025-05-20

🔥

DDoSecrets publishes 410 GB of heap dumps, hacked from TeleMessage's archive server

INFOSEC.PUB — 20 May 2025

🔥

The Crowded Battle: Key Insights from the 2025 State of Pentesting Report

THEHACKERNEWS.COM — 20 May 2025

🔥

Threat Actors Deploy Bumblebee Malware via Poisoned Bing SEO Results

GBHACKERS.COM — 20 May 2025

🔥

Event Preview: 2025 Threat Detection & Incident Response (Virtual) Summit

SECURITYWEEK.COM — 20 May 2025

🔥

Cyberattack on Serviceaide Compromises Data of 480,000 Catholic Health Patients

GBHACKERS.COM — 20 May 2025

🔥

DDoSecrets Adds 410GB of TeleMessage Breach Data to Index

SH.ITJUST.WORKS — 20 May 2025

🔥

Interlock ransomware evolving under the radar

SH.ITJUST.WORKS — 20 May 2025

🔥

100+ Fake Chrome Extensions Found Hijacking Sessions, Stealing Credentials, Injecting Ads

THEHACKERNEWS.COM — 20 May 2025

🔥

LockBit Leak Shows Affiliates Use Pressure Tactics, Rarely Get Paid

SH.ITJUST.WORKS — 20 May 2025

🔥

A familiar playbook with a twist: 3AM ransomware actors dropped virtual machine with vishing and Quick Assist

SOPHOS.COM — 20 May 2025

🔥

New Nitrogen Ransomware Targets Financial Firms in the US, UK and Canada

SH.ITJUST.WORKS — 20 May 2025

🔥

SK Telecom says malware breach lasted 3 years, impacted 27 million numbers

SH.ITJUST.WORKS — 20 May 2025

🔥

Mobile carrier Cellcom confirms cyberattack behind extended outages

BLEEPINGCOMPUTER.COM — 20 May 2025

🕵️

ISC Stormcast For Tuesday, May 20th, 2025 https://isc.sans.edu/podcastdetail/9458, (Tue, May 20th)

ISC.SANS.EDU — 20 May 2025

🕵️

Microsoft 365 Users Targeted by Tycoon2FA Linked Phishing Attack to Steal Credentials

GBHACKERS.COM — 20 May 2025

🕵️

Tor Browser 14.5.2 Released: Bug Fixes and Enhanced Features

GBHACKERS.COM — 20 May 2025

🕵️

W3LL Phishing Kit Launches Active Campaign to Steal Outlook Login Credentials

GBHACKERS.COM — 20 May 2025

🕵️

Chinese Hackers Deploy MarsSnake Backdoor in Multi-Year Attack on Saudi Organization

THEHACKERNEWS.COM — 20 May 2025

🕵️

CloudSEK Raises $19 Million for Threat Intelligence Platform

SECURITYWEEK.COM — 20 May 2025

🕵️

DPRK IT Workers Impersonate Polish and US Nationals to Secure Full-Stack Developer Positions

GBHACKERS.COM — 20 May 2025

🕵️

All things infostealers. Week 20, 2025 – Kinda Blog by CryptoLek

INFOSEC.PUB — 20 May 2025

🕵️

DoorDash Hack

SCHNEIER.COM — 2025-05-20

🕵️

O2 UK patches bug leaking mobile user location from call metadata

SH.ITJUST.WORKS — 20 May 2025

🕵️

Windows 10 emergency updates fix BitLocker recovery issues

SH.ITJUST.WORKS — 20 May 2025

🕵️

TrustCloud Raises $15 Million for Security Assurance Platform

SECURITYWEEK.COM — 20 May 2025

🕵️

Go-Based Malware Deploys XMRig Miner on Linux Hosts via Redis Configuration Abuse

SH.ITJUST.WORKS — 20 May 2025

🕵️

Hackers Use Weaponized RAR Archives to Deliver Pure Malware in Targeted Attacks

GBHACKERS.COM — 20 May 2025

🕵️

CyberheistNews Vol 15 #20 How to Protect Your Business from Scattered Spider's Latest Attack Methods

KNOWBE4.COM — 20 May 2025

🕵️

Regeneron to Buy 23andMe for $256M Amid Growing Data Privacy Concerns

GBHACKERS.COM — 20 May 2025

🕵️

Kimsuky APT Group Deploys PowerShell Payloads to Deliver XWorm RAT

GBHACKERS.COM — 20 May 2025

🕵️

Why That Security Trend Spike Is Actually Fake (Sorta)

YOUTUBE.COM — 2025-05-20

🕵️

RVTools hit in supply chain attack to deliver Bumblebee malware

INFOSEC.PUB — 20 May 2025

🕵️

RVTools hit in supply chain attack to deliver Bumblebee malware

SH.ITJUST.WORKS — 20 May 2025

🕵️

Service desks are under attack: What can you do about it?

SH.ITJUST.WORKS — 20 May 2025

🕵️

The Sting of Fake Kling: Facebook Malvertising Lures Victims to Fake AI Generation Website

INFOSEC.PUB — 20 May 2025

🕵️

The Sting of Fake Kling: Facebook Malvertising Lures Victims to Fake AI Generation Website

PROGRAMMING.DEV — 20 May 2025

🕵️

The Sting of Fake Kling: Facebook Malvertising Lures Victims to Fake AI Generation Website

SH.ITJUST.WORKS — 20 May 2025

🕵️

RSAC 2025: Welcome to the Age of AI Surrender

YOUTUBE.COM — 2025-05-20

🕵️

AI Shame Is Real… Even in Cybersecurity

YOUTUBE.COM — 2025-05-20

🕵️

WSL, Defendnot, Clippy, Crawlomatic, Take It Down, Pwn2Own, Aaran Leyland, and More.. - SWN #478

YOUTUBE.COM — 2025-05-20

🌐

Go-Based Malware Deploys XMRig Miner on Linux Hosts via Redis Configuration Abuse

THEHACKERNEWS.COM — 20 May 2025

🌐

RVTools hit in supply chain attack to deliver Bumblebee malware

BLEEPINGCOMPUTER.COM — 20 May 2025

🌐

KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS

KREBSONSECURITY.COM — 20 May 2025

🌐

Trojanized RVTools push Bumblebee malware in SEO poisoning campaign

BLEEPINGCOMPUTER.COM — 20 May 2025

📡

Sophos Partners with Capsule on New Cyber Insurance Program

SOPHOS.COM — 20 May 2025

📡

SEC Twitter hack: Man imprisoned for role in attack that caused Bitcoin’s price to soar.

BITDEFENDER.COM — 20 May 2025

📡

Service desks are under attack: What can you do about it?

BLEEPINGCOMPUTER.COM — 20 May 2025

📡

Researchers Scanning the Internet, (Tue, May 20th)

ISC.SANS.EDU — 20 May 2025

📡

CISO vs. CFO: Who Actually Runs the Business?

YOUTUBE.COM — 2025-05-20

📡

AI, Data Scraping & Cybersecurity: The War Has Begun ⚔️

YOUTUBE.COM — 2025-05-20

📡

The people in Elon Musk’s DOGE universe

TECHCRUNCH.COM — 20 May 2025

📡

Phishing through Google Ads: attacks on SEO and marketing

KASPERSKY.COM — 20 May 2025

📡

SAFECOM and National Council of Statewide Interoperability Coordinators (NCSWIC) develop Artificial Intelligence in Emergency Communications Centers Infographic

CISA.GOV — Tue, 20 May 25 1