MATLOCK.CA
94Articles
7Categories
2025-06-09Date
🚨
CISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation.  CVE-2025-32433 Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability  CVE-2024-42009 RoundCube Webm…
KEVCISA.GOV — Mon, 09 Jun 25 1
🐛
Jenkins Gatling Plugin Flaw Allows CSP Bypass, Exposing Systems to Attack
GBHACKERS.COM — 09 Jun 2025
🐛
Mirai Botnets Exploiting Wazuh Security Platform Vulnerability
SECURITYWEEK.COM — 09 Jun 2025
🐛
Two Distinct Botnets Exploit Wazuh Server Vulnerability to Launch Mirai-Based Attacks
THEHACKERNEWS.COM — 09 Jun 2025
🐛
Over 84,000 Roundcube instances vulnerable to actively exploited flaw
KEVBLEEPINGCOMPUTER.COM — 09 Jun 2025
⚠️
Cybersecurity Today: Massive Smart TV Botnets and Major US Cyber Policy Overhaul
CYBERSECURITYTODAY.LIBSYN.COM — 09 Jun 2025
⚠️
Critical Salesforce Vulnerability Exposes Global Users to SOQL Injection Attacks
GBHACKERS.COM — 09 Jun 2025
⚠️
Weekly Update 455
TROYHUNT.COM — 09 Jun 2025
⚠️
The enterprise security news, more secure by removing credentials, & RSAC interviews -... - ESW #410
YOUTUBE.COM — 2025-06-09
⚠️
Cloud assets have 115 vulnerabilities on average — some several years old
CSOONLINE.COM — 09 Jun 2025
⚠️
CISOs reposition their roles for business leadership
CSOONLINE.COM — 09 Jun 2025
⚠️
Unmasking the silent saboteur you didn’t know was running the show
CSOONLINE.COM — 09 Jun 2025
⚠️
⚡ Weekly Recap: Chrome 0-Day, Data Wipers, Misused Tools and Zero-Click iPhone Attacks
THEHACKERNEWS.COM — 09 Jun 2025
⚠️
Chrome extension privacy promises undone by hardcoded secrets, leaky HTTP
CSOONLINE.COM — 09 Jun 2025
⚠️
Kettering Health Confirms Interlock Ransomware Breach and Data Theft
GBHACKERS.COM — 09 Jun 2025
⚠️
Kaspersky study looks at how cybercriminals use games, TV shows, and anime to target Gen Z | Kaspersky official blog
KASPERSKY.COM — 09 Jun 2025
⚠️
Grocery wholesale giant United Natural Foods hit by cyberattack
BLEEPINGCOMPUTER.COM — 09 Jun 2025
⚠️
Hackers Deploy FormBook Malware via Weaponized Excel Files to Target Windows Systems
GBHACKERS.COM — 09 Jun 2025
⚠️
Over 1,000 Employees Departed CISA Since Trump Administration Began
GBHACKERS.COM — 09 Jun 2025
⚠️
OpenAI Shuts Down ChatGPT Accounts Linked to Russian, Iranian & Chinese Cyber
GBHACKERS.COM — 09 Jun 2025
⚠️
Designing Blue Team playbooks with Wazuh for proactive cyber defense
BLEEPINGCOMPUTER.COM — 09 Jun 2025
⚠️
APT41 Hackers Leverage Google Calendar for Malware C2 in Attacks on Government Entities
GBHACKERS.COM — 09 Jun 2025
⚠️
Meta Bypassed Privacy Protections to Track Android Users
GBHACKERS.COM — 09 Jun 2025
⚠️
Google Warns of Surge in Cyberattacks Targeting US Users to Steal Login Credentials
GBHACKERS.COM — 09 Jun 2025
⚠️
Skitnet Malware Actively Adopted by Ransomware Gangs to Enhance Operational Efficiency
GBHACKERS.COM — 09 Jun 2025
⚠️
New AI tool targets critical hole in thousands of open source apps
INFOWORLD.COM — 09 Jun 2025
⚠️
Designing Blue Team playbooks with Wazuh for proactive incident response
BLEEPINGCOMPUTER.COM — 09 Jun 2025
⚠️
Empowering Developers: Fostering a Culture of Security in AppSec - Danielle Ruderman - CSP #213
YOUTUBE.COM — 2025-06-09
⚠️
OctoSQL & Vulnerability Data, (Sun, Jun 8th)
ISC.SANS.EDU — 09 Jun 2025
⚠️
New Salesforce SOQL Injection 0-Day Vulnerability Exposes Millions of Deployments
SH.ITJUST.WORKS — 9 Jun 2025
⚠️
Jenkins Gatling Plugin Vulnerability Let Attackers Bypass Content-Security-Policy Protection
SH.ITJUST.WORKS — 9 Jun 2025
⚠️
Warning: Crooks Are Using Vishing Attacks to Compromise Salesforce Instances
KNOWBE4.COM — 09 Jun 2025
⚠️
Google patched bug leaking phone numbers tied to accounts
BLEEPINGCOMPUTER.COM — 09 Jun 2025
⚠️
Trump takes aim at Biden’s cyber executive order but leaves it largely untouched
CSOONLINE.COM — 09 Jun 2025
📢
Trump Cybersecurity Executive Order Targets Digital Identity, Sanctions Policies
SECURITYWEEK.COM — 09 Jun 2025
📢
Multiple QNAP Flaws Allow Remote Attackers to Hijack User Accounts
GBHACKERS.COM — 09 Jun 2025
📢
Ubuntu security advisory (AV25-323)
CYBER.GC.CA — 2025-06-09
📢
IBM security advisory (AV25-324)
CYBER.GC.CA — 2025-06-09
📢
Dell security advisory (AV25-325)
CYBER.GC.CA — 2025-06-09
📢
[Control systems] CISA ICS security advisories (AV25–326)
CYBER.GC.CA — 2025-06-09
🔥
Beware for Developers: 16 React Native Packages with Millions of Downloads Compromised Overnight
GBHACKERS.COM — 09 Jun 2025
🔥
New DuplexSpy RAT Gives Attackers Full Control Over Windows Machines
GBHACKERS.COM — 09 Jun 2025
🔥
Think Your IdP or CASB Covers Shadow IT? These 5 Risks Prove Otherwise
THEHACKERNEWS.COM — 09 Jun 2025
🔥
EU Prepares for Transnational Cyberattacks - BankInfoSecurity
SH.ITJUST.WORKS — 9 Jun 2025
🔥
Tax resolution firm Optima Tax Relief hit by ransomware, data leaked
SH.ITJUST.WORKS — 9 Jun 2025
🔥
Shared Intel Q&A: Can risk-informed patching finally align OT security with real-world threats?
LASTWATCHDOG.COM — 09 Jun 2025
🔥
Major US grocery distributor warns of disruption after cyberattack
TECHCRUNCH.COM — 09 Jun 2025
🔥
Sensata Technologies says personal data stolen by ransomware gang
BLEEPINGCOMPUTER.COM — 09 Jun 2025
🔥
What Happens When a Cyber Attack Hits an Ambulance? 🚨
YOUTUBE.COM — 2025-06-09
🔥
New Report Reveals Chinese Hackers Attempted to Breach SentinelOne Servers
GBHACKERS.COM — 09 Jun 2025
🔥
Grocery wholesale giant United Natural Foods hit by cyberattack
SH.ITJUST.WORKS — 9 Jun 2025
🔥
Paragon says it canceled contracts with Italy over government’s refusal to investigate spyware attack on journalist
TECHCRUNCH.COM — 09 Jun 2025
🔥
SentinelOne shares new details on China-linked breach attempt
BLEEPINGCOMPUTER.COM — 09 Jun 2025
🔥
US infrastructure could crumble under cyberattack, ex-NSA advisor warns
INFOSEC.PUB — 9 Jun 2025
🕵️
ISC Stormcast For Monday, June 9th, 2025 https://isc.sans.edu/podcastdetail/9484, (Mon, Jun 9th)
ISC.SANS.EDU — 09 Jun 2025
🕵️
Old AT&T data leak repackaged to link SSNs, DOBs to 49M phone numbers
INFOSEC.PUB — 9 Jun 2025
🕵️
Kimsuky Strikes Again – Coordinated Attacks Target Facebook, Email, and Telegram
GBHACKERS.COM — 09 Jun 2025
🕵️
Kali GPT-Revolutionizing Penetration Testing with AI on Kali Linux
GBHACKERS.COM — 09 Jun 2025
🕵️
OpenAI Bans ChatGPT Accounts Used by Russian, Iranian and Chinese Hacker Groups
THEHACKERNEWS.COM — 09 Jun 2025
🕵️
HelloTDS Malware Spread via FakeCaptcha Infrastructure Infects Millions of Devices
GBHACKERS.COM — 09 Jun 2025
🕵️
Malicious npm Utility Packages Enable Attackers to Wipe Production Systems
GBHACKERS.COM — 09 Jun 2025
🕵️
Australian Naval Operations Accidentally Jam New Zealand’s Internet and Radio
GBHACKERS.COM — 09 Jun 2025
🕵️
Nigerian Involved in Hacking US Tax Preparation Firms Sentenced to Prison
SECURITYWEEK.COM — 09 Jun 2025
🕵️
US Seeks Forfeiture of $7.74M in Cryptocurrency Tied to North Korean IT Workers
SECURITYWEEK.COM — 09 Jun 2025
🕵️
New Way to Track Covertly Android Users
SCHNEIER.COM — 2025-06-09
🕵️
Librarian Ghouls carry out attacks with data theft and crypto miner deployment
INFOSEC.PUB — 9 Jun 2025
🕵️
iMessage Zero-Click Attacks Suspected in Targeting of High-Value EU, US Individuals
SECURITYWEEK.COM — 09 Jun 2025
🕵️
Malware found in NPM packages with 1 million weekly downloads
SH.ITJUST.WORKS — 9 Jun 2025
🕵️
Over 20 Malicious Apps on Google Play Target Users for Seed Phrases
SH.ITJUST.WORKS — 9 Jun 2025
🕵️
Chinese Hackers Infiltrated U.S. Telecom Networks a Year Earlier Than Previously Known
SH.ITJUST.WORKS — 9 Jun 2025
🕵️
Operation DRAGONCLONE: Chinese Telecom Targeted by VELETRIX & VShell Malware
SH.ITJUST.WORKS — 9 Jun 2025
🕵️
Seraphic Security UnveilsBrowserTotal™ – Free AI-PoweredBrowser Security Assessment For Enterprises
GBHACKERS.COM — 09 Jun 2025
🕵️
Malicious NPM Packages Disguised as Express Utilities Allow Attackers to Wipe Systems
SECURITYWEEK.COM — 09 Jun 2025
🕵️
React Native Aria Packages Backdoored in Supply Chain Attack
SECURITYWEEK.COM — 09 Jun 2025
🕵️
New Blitz Malware Targets Windows Servers to Deploy Monero Miner
GBHACKERS.COM — 09 Jun 2025
🕵️
Guardz Banks $56M Series B for All-in-One SMB Security
SECURITYWEEK.COM — 09 Jun 2025
🕵️
U.S. Targets $7.7M in Crypto Tied to North Korean IT Worker Scam
GBHACKERS.COM — 09 Jun 2025
🕵️
Bitter Malware Employs Custom-Built Tools to Evade Detection in Advanced Attacks
GBHACKERS.COM — 09 Jun 2025
🕵️
Over 70 Organizations Across Multiple Sectors Targeted by China-Linked Cyber Espionage Group
THEHACKERNEWS.COM — 09 Jun 2025
🕵️
No One Checked the Firmware!? Seriously?
YOUTUBE.COM — 2025-06-09
🕵️
New DuplexSpy RAT Gives Attackers Full Control Over Windows Machines
SH.ITJUST.WORKS — 9 Jun 2025
🕵️
Mentorship Monday - Discussions for career and learning!
INFOSEC.PUB — 9 Jun 2025
🕵️
BadBox 2.0 botnet infects millions of IoT devices worldwide, FBI warns
SH.ITJUST.WORKS — 9 Jun 2025
🕵️
Chinese Espionage Crews Circle SentinelOne in Year-Long Reconnaissance Campaign
SECURITYWEEK.COM — 09 Jun 2025
🕵️
Chinese Hackers and User Lapses Turn Smartphones Into a ‘Mobile Security Crisis’
SECURITYWEEK.COM — 09 Jun 2025
🕵️
Spear-Phishing Campaign Targets Financial Executives
KNOWBE4.COM — 09 Jun 2025
🕵️
News alert: Seraphic launches BrowserTotal™ — a free AI-powered tool to stress test browser security
LASTWATCHDOG.COM — 09 Jun 2025
🕵️
Securing AI Agent Innovation with Prisma AIRS MCP Server
PALOALTONETWORKS.COM — 09 Jun 2025
🕵️
Is Lynis (audit tool) worth using in 2025?
SH.ITJUST.WORKS — 9 Jun 2025
📡
Google fixes bug that could reveal users’ private phone numbers
TECHCRUNCH.COM — 09 Jun 2025
📡
Adrian Sanabria’s Honest Reaction to MITRE Ingenuity Evaluations 😲
YOUTUBE.COM — 2025-06-09
📡
Linux Foundation unveils decentralized WordPress plugin manager
BLEEPINGCOMPUTER.COM — 09 Jun 2025
📡
Stolen Ticketmaster data from Snowflake attacks briefly for sale again
BLEEPINGCOMPUTER.COM — 09 Jun 2025
📡
Keeping Pace and Embracing Emerging Technologies
TRENDMICRO.COM — 09 Jun 2025