matlock.ca // THREAT INTELLIGENCE

104Articles

8Categories

2025-05-28Date

🚨

Vulnerabilities in CISA KEV Are Not Equally Critical: ReportNew report says organizations should always consider environmental context when assessing the impact of vulnerabilities in CISA KEV catalog. The post Vulnerabilities in CISA KEV Are Not Equally Critical: Report appeared first on SecurityWeek .

KEVSECURITYWEEK.COM — 28 May 2025

🐛

Mimo Hackers Exploit CVE-2025-32432 in Craft CMS to Deploy Cryptominer and Proxyware

THEHACKERNEWS.COM — 28 May 2025

🐛

XenServer Windows VM Tools Flaw Enables Attackers to Run Arbitrary Code

GBHACKERS.COM — 28 May 2025

🐛

Evertz SDN Vulnerabilities Enable Unauthenticated Arbitrary Command Execution

GBHACKERS.COM — 28 May 2025

⚠️

Die wertvollsten Security-Zertifizierungen

CSOONLINE.COM — 28 May 2025

⚠️

Dutch intelligence report says Russian hacker group stole data on 63,000 police officers, targeted NATO government systems

INFOSEC.PUB — 28 May 2025

⚠️

Dutch intelligence report says Russian hacker group stole data on 63,000 police officers, targeted NATO government systems

SH.ITJUST.WORKS — 28 May 2025

⚠️

Will AI agent-fueled attacks force CISOs to fast-track passwordless projects?

CSOONLINE.COM — 28 May 2025

⚠️

Phishing Scams, DNS Hijacking, and Cybersecurity Leadership Shakeup

CYBERSECURITYTODAY.LIBSYN.COM — 28 May 2025

⚠️

Apple Blocks $9 Billion in Fraud Over 5 Years Amid Rising App Store Threats

THEHACKERNEWS.COM — 28 May 2025

⚠️

‘Secure email’: A losing battle CISOs must give up

CSOONLINE.COM — 28 May 2025

⚠️

CISA Publishes ICS Advisories Highlighting New Vulnerabilities and Exploits

GBHACKERS.COM — 28 May 2025

⚠️

MATLAB, Serving Over 5 Million Users, Hit by Ransomware Attack

GBHACKERS.COM — 28 May 2025

⚠️

$223 Million Stolen in Cetus Protocol Hack

SECURITYWEEK.COM — 28 May 2025

⚠️

Quantum Readiness & Zero Trust: Strategies to Strengthen Digital Resilience - BSW #397

YOUTUBE.COM — 2025-05-28

⚠️

251 Amazon-Hosted IPs Used in Exploit Scan Targeting ColdFusion, Struts, and Elasticsearch

THEHACKERNEWS.COM — 28 May 2025

⚠️

CISA Releases Executive Guide on SIEM and SOAR Platforms for Rapid Threat Detection

GBHACKERS.COM — 28 May 2025

⚠️

Location Tracking App for Foreigners in Moscow

SCHNEIER.COM — 2025-05-28

⚠️

Emerging FormBook Malware Threatens Windows Users with Complete System Takeover

GBHACKERS.COM — 28 May 2025

⚠️

New PumaBot Botnet Targets Linux IoT Devices to Steal SSH Credentials and Mine Crypto

THEHACKERNEWS.COM — 28 May 2025

⚠️

Hacker stehlen Coca-Cola-Daten

CSOONLINE.COM — 28 May 2025

⚠️

If you use OneDrive to upload files to ChatGPT or Zoom, don’t

CSOONLINE.COM — 28 May 2025

⚠️

251 Malicious IPs Target Cloud-Based Device Exploiting 75 Exposure Points

GBHACKERS.COM — 28 May 2025

⚠️

Microsoft OneDrive File Picker Flaw Grants Apps Full Cloud Access — Even When Uploading Just One File

THEHACKERNEWS.COM — 28 May 2025

⚠️

Earth Lamia Hackers Exploits Vulnerabilities in Web Applications to Attack Multiple Industries

GBHACKERS.COM — 28 May 2025

⚠️

OneDrive File Picker Flaw Provides ChatGPT and Other Web Apps Full Read Access to Users’ Entire OneDrive

INFOSEC.PUB — 28 May 2025

⚠️

DragonForce Ransomware Actors Exploits RMM Tools to Gain Access to Organizations

GBHACKERS.COM — 28 May 2025

⚠️

Worldwide Operation Shuts Down Hundreds of Ransomware Servers and Domains, Ending Key Attack Infrastructure

GBHACKERS.COM — 28 May 2025

⚠️

DragonForce actors target SimpleHelp vulnerabilities to attack MSP, customers – Sophos News

SH.ITJUST.WORKS — 28 May 2025

⚠️

Cybercriminals Are Turning Ordinary Citizens Into Money Mules in a New ‘Rent-a-Bank-Account’ Scam

GBHACKERS.COM — 28 May 2025

⚠️

Vulnerabilities found in NASA's open source software - Help Net Security

SH.ITJUST.WORKS — 28 May 2025

⚠️

New PumaBot botnet brute forces SSH credentials to breach devices

BLEEPINGCOMPUTER.COM — 28 May 2025

⚠️

Separating hype from reality: How cybercriminals are actually using AI

CSOONLINE.COM — 28 May 2025

⚠️

Risky Business #793 -- Scattered Spider is hijacking MX records

RISKY.BIZ — 28 May 2025

📢

UK Envoy Urges Transatlantic Tech Alliance, Cites China Threat

INFOSEC.PUB — 28 May 2025

📢

UK Envoy Urges Transatlantic Tech Alliance, Cites China Threat

SH.ITJUST.WORKS — 28 May 2025

📢

Czechia blames China for Ministry of Foreign Affairs cyberattack

BLEEPINGCOMPUTER.COM — 28 May 2025

📢

Craft CMS security advisory (AV25-300)

CYBER.GC.CA — 2025-05-28

📢

Czech Republic Blames China-Linked APT31 Hackers for 2022 Cyberattack

THEHACKERNEWS.COM — 28 May 2025

📢

Sem título

SH.ITJUST.WORKS — 28 May 2025

📢

Invest in Security or Watch It All Burn 🔥 #digitaldefense

YOUTUBE.COM — 2025-05-28

🔥

Robinhood Ransomware Operator Arrested for Attacks on Government and Private Networks

GBHACKERS.COM — 28 May 2025

🔥

Data broker giant LexisNexis says breach exposed personal information of over 364,000 people

TECHCRUNCH.COM — 28 May 2025

🔥

Botnet hacks 9,000+ ASUS routers to add persistent SSH backdoor

BLEEPINGCOMPUTER.COM — 28 May 2025

🔥

364,000 Impacted by Data Breach at LexisNexis Risk Solutions

SECURITYWEEK.COM — 28 May 2025

🔥

MATLAB dev confirms ransomware attack behind service outage

SH.ITJUST.WORKS — 28 May 2025

🔥

Iranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on Baltimore

THEHACKERNEWS.COM — 28 May 2025

🔥

Interlock ransomware gang deploys new NodeSnake RAT on universities

BLEEPINGCOMPUTER.COM — 28 May 2025

🔥

Interlock ransomware gang deploys new NodeSnake RAT on universities

SH.ITJUST.WORKS — 28 May 2025

🔥

This Camera Just Took Down an Entire Network 🎥💥

YOUTUBE.COM — 2025-05-28

🔥

MATLAB Maker MathWorks Recovering From Ransomware Attack

SECURITYWEEK.COM — 28 May 2025

🔥

Victoria’s Secret hit by outages as it battles security incident

TECHCRUNCH.COM — 28 May 2025

🔥

Cybersecurity’s Hidden Weapon: Interpretive Thinking

YOUTUBE.COM — 2025-05-28

🕵️

Don't click on that Facebook ad for a text-to-AI-video tool

SH.ITJUST.WORKS — 28 May 2025

🕵️

ISC Stormcast For Wednesday, May 28th, 2025 https://isc.sans.edu/podcastdetail/9468, (Wed, May 28th)

ISC.SANS.EDU — 28 May 2025

🕵️

Zero-Interaction libvpx Flaw in Firefox Allows Attackers to Run Arbitrary Code

GBHACKERS.COM — 28 May 2025

🕵️

Chrome Security Patch Addresses High-Severity Vulnerabilities Enabling Code Execution

GBHACKERS.COM — 28 May 2025

🕵️

Text-to-Malware: How Cybercriminals Weaponize Fake AI-Themed Websites

INFOSEC.PUB — 28 May 2025

🕵️

INE Security And RedTeam Hacker Academy Announce Partnership To Advance Cybersecurity Skills In The Middle East

GBHACKERS.COM — 28 May 2025

🕵️

RSAC Fireside Chat: ‘Purple’ teams dismantle the reactive trap — and can help restore cyber readiness

LASTWATCHDOG.COM — 28 May 2025

🕵️

The Root of AI Hallucinations: Physics Theory Digs Into the ‘Attention’ Flaw

SECURITYWEEK.COM — 28 May 2025

🕵️

Hackers Circulate Over 93 Billion Stolen User Cookies on the Dark Web

GBHACKERS.COM — 28 May 2025

🕵️

Chrome 137, Firefox 139 Patch High-Severity Vulnerabilities

SECURITYWEEK.COM — 28 May 2025

🕵️

OneDrive Gives Web Apps Full Read Access to All Files

SECURITYWEEK.COM — 28 May 2025

🕵️

SilentWerewolf Attack Combines Legitimate Tools with Code Obfuscation for Stealthy Infiltration

GBHACKERS.COM — 28 May 2025

🕵️

VenomRAT Malware Introduces New Tools for Password Theft and Stealthy Access

GBHACKERS.COM — 28 May 2025

🕵️

CyberheistNews Vol 15 #21 I Got This Coinbase-Related Scam in My Personal Inbox Last Week

KNOWBE4.COM — 28 May 2025

🕵️

Threat Actors Weaponizing DCOM to Harvest Credentials on Windows Systems

GBHACKERS.COM — 28 May 2025

🕵️

Cerby Raises $40 Million for Identity Automation Platform

SECURITYWEEK.COM — 28 May 2025

🕵️

Vietnamese Hackers Distribute Malware via Fake AI-Themed Websites

SECURITYWEEK.COM — 28 May 2025

🕵️

Threat Actors Weaponize Fake AI-Themed Websites to Deliver Python-based infostealers

GBHACKERS.COM — 28 May 2025

🕵️

Zscaler to Acquire Red Canary, Enhancing AI-Powered Security Operations

GBHACKERS.COM — 28 May 2025

🕵️

Evolution of Zanubis, a banking Trojan for Android

INFOSEC.PUB — 28 May 2025

🕵️

Russian APT28 Hackers Attacking NATO-aligned Organizations to Steal Sensitive Data

GBHACKERS.COM — 28 May 2025

🕵️

You’re Paying for AI… Even If It Says FREE 🧠

YOUTUBE.COM — 2025-05-28

🕵️

Czech Government Condemns Chinese Hack on Critical Infrastructure

SECURITYWEEK.COM — 28 May 2025

🕵️

94 billion browser cookies sold on Telegram | Cybernews

SH.ITJUST.WORKS — 28 May 2025

🕵️

Apple Blocked 2 million Malicious App & $9 Billion in Fraudulent Transactions

GBHACKERS.COM — 28 May 2025

🕵️

Governments Urge Organizations to Prioritize SIEM/SOAR Adoption - Infosecurity Magazine

SH.ITJUST.WORKS — 28 May 2025

🕵️

Dark Partners cybercrime gang fuels large-scale crypto heists

BLEEPINGCOMPUTER.COM — 28 May 2025

🕵️

Cortex XDR Named 2025 Gartner Customers’ Choice for Endpoint Security

PALOALTONETWORKS.COM — 28 May 2025

🕵️

Zanubis Android Malware Harvests Banking Credentials and Executes Remote Commands

GBHACKERS.COM — 28 May 2025

🕵️

New Russia-affiliated actor Void Blizzard targets critical sectors for espionage | Microsoft Security Blog

SH.ITJUST.WORKS — 28 May 2025

🕵️

GitHub becomes go-to platform for malware delivery across Europe - Help Net Security

SH.ITJUST.WORKS — 28 May 2025

🕵️

Microsoft OneDrive File Picker Flaw Grants Apps Full Cloud Access — Even When Uploading Just One File

SH.ITJUST.WORKS — 28 May 2025

🕵️

This Cybersecurity Pioneer Just Pulled Up at BSides 👨‍💻

YOUTUBE.COM — 2025-05-28

🕵️

Botnet hacks 9,000+ ASUS routers to add persistent SSH backdoor

SH.ITJUST.WORKS — 28 May 2025

🕵️

Why CVSS Scores Might Be Useless in 2025

YOUTUBE.COM — 2025-05-28

🕵️

Texas Cyber Command will mean ‘expanding’ cybersecurity help, state official says

SH.ITJUST.WORKS — 28 May 2025

🕵️

APT41 malware abuses Google Calendar for stealthy C2 communication

BLEEPINGCOMPUTER.COM — 28 May 2025

🌐

From Infection to Access: A 24-Hour Timeline of a Modern Stealer Campaign

THEHACKERNEWS.COM — 28 May 2025

🌐

Beware of the fake KeePass | Kaspersky official blog

KASPERSKY.COM — 28 May 2025

🌐

Pakistan Arrests 21 in ‘Heartsender’ Malware Service

KREBSONSECURITY.COM — 28 May 2025

🌐

Smashing Security podcast #419: Star Wars, the CIA, and a WhatsApp malware mirage

GRAHAMCLULEY.COM — 28 May 2025

📡

How 'Browser-in-the-Middle' Attacks Steal Sessions in Seconds

THEHACKERNEWS.COM — 28 May 2025

📡

Apple blocked over $9 billion in App Store fraud in five years

BLEEPINGCOMPUTER.COM — 28 May 2025

📡

Microsoft wants Windows to update all software on your PC

BLEEPINGCOMPUTER.COM — 28 May 2025

📡

Microsoft introduces new Windows backup tool for businesses

BLEEPINGCOMPUTER.COM — 28 May 2025

📡

[Guest Diary] Exploring a Use Case of Artificial Intelligence Assistance with Understanding an Attack, (Wed, May 28th)

ISC.SANS.EDU — 28 May 2025

📡

The CISO Who Chose Family Over Fortune

YOUTUBE.COM — 2025-05-28

📡

When Your Cloud IDE Goes Down… You’re Stuck!

YOUTUBE.COM — 2025-05-28

📡

Security startup Horizon3.ai is raising $100M in new round

TECHCRUNCH.COM — 28 May 2025

📡

Windows 11 KB5058499 update rolls out new Share and Click to Do features

BLEEPINGCOMPUTER.COM — 28 May 2025

📡

Windows 10 KB5058481 update brings seconds back to calendar flyout

BLEEPINGCOMPUTER.COM — 28 May 2025