MATLOCK.CA
112Articles
8Categories
2025-06-17Date
🚨
U.S. CISA adds Apple products, and TP-Link routers flaws to its Known Exploited Vulnerabilities catalogsubmitted by kid to cybersecurity 3 points | 0 comments https://securityaffairs.com/179086/security/u-s-cisa-adds-apple-products-and-tp-link-routers-flaws-to-its-known-exploited-vulnerabilities-catalog.html
KEVSH.ITJUST.WORKS — 17 Jun 2025
🚨
CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation.    CVE-2023-0386 Linux Kernel Improper Ownership Management Vulnerability  These types of vulnerabilities are frequent attack vecto…
KEVCISA.GOV — Tue, 17 Jun 25 1
🐛
Zyxel Devices Under Attack as Hackers Exploit UDP Port RCE Flaw
GBHACKERS.COM — 17 Jun 2025
🐛
Hackers Weaponize Langflow Vulnerability to Launch Flodrix Botnet
KEVGBHACKERS.COM — 17 Jun 2025
🐛
CISA Alerts: iOS Zero‑Click Flaw Actively Exploited
KEVGBHACKERS.COM — 17 Jun 2025
🐛
Recent Langflow Vulnerability Exploited by Flodrix Botnet
SECURITYWEEK.COM — 17 Jun 2025
🐛
Hackers Exploiting Chrome Zero‑Day Vulnerability in the Wild
KEVGBHACKERS.COM — 17 Jun 2025
🐛
TP-Link Router Flaw CVE-2023-33538 Under Active Exploit, CISA Issues Immediate Alert
KEVTHEHACKERNEWS.COM — 17 Jun 2025
🐛
Critical sslh Vulnerabilities Allow Remote Denial-of-Service Attacks
GBHACKERS.COM — 17 Jun 2025
🐛
ASUS Armoury Crate Vulnerability Lets Hackers Gain System-Level Access on Windows
GBHACKERS.COM — 17 Jun 2025
🐛
Sicherheitsrisiko bei Salesforce Industry Cloud
CSOONLINE.COM — 17 Jun 2025
🐛
BeyondTrust Tools RCE Vulnerability Allows Attackers Execute Arbitrary Code
GBHACKERS.COM — 17 Jun 2025
🐛
Critical Langflow Vulnerability (CVE-2025-3248) Actively Exploited to Deliver Flodrix Botnet
KEVTRENDMICRO.COM — 17 Jun 2025
⚠️
Apache Tomcat Flaws Allow Auth Bypass and DoS Attacks
GBHACKERS.COM — 17 Jun 2025
⚠️
DeerStealer Malware Deployed Through Exploitation of Windows Run Prompt by Threat Actors
GBHACKERS.COM — 17 Jun 2025
⚠️
8 tips for mastering multicloud security
CSOONLINE.COM — 17 Jun 2025
⚠️
Krimineller Online-Marktplatz abgeschaltet
CSOONLINE.COM — 17 Jun 2025
⚠️
Android Devices Under Siege: How Threat Actors Abuse OEM Permissions for Privilege Escalation
GBHACKERS.COM — 17 Jun 2025
⚠️
Operation 999: Ransomware tabletop tests cyber execs’ response
CSOONLINE.COM — 17 Jun 2025
⚠️
Threat Modeling With Good Questions and Without Checklists - Farshad Abasi - ASW #335
YOUTUBE.COM — 2025-06-17
⚠️
Asus Armoury Crate Vulnerability Leads to Full System Compromise
SECURITYWEEK.COM — 17 Jun 2025
⚠️
New Flodrix Botnet Variant Exploits Langflow AI Server RCE Bug to Launch DDoS Attacks
THEHACKERNEWS.COM — 17 Jun 2025
⚠️
Water Curse Hacker Group Uses 76 GitHub Accounts to Spread Multistage Malware
GBHACKERS.COM — 17 Jun 2025
⚠️
Organizations Warned of Vulnerability Exploited Against Discontinued TP-Link Routers
KEVSECURITYWEEK.COM — 17 Jun 2025
⚠️
Where AI Provides Value
SCHNEIER.COM — 2025-06-17
⚠️
PyPI, npm, and AI Tools Exploited in Malware Surge Targeting DevOps and Cloud Environments
SH.ITJUST.WORKS — 17 Jun 2025
⚠️
Hard-Coded 'b' Password in Sitecore XP Sparks Major RCE Risk in Enterprise Deployments
THEHACKERNEWS.COM — 17 Jun 2025
⚠️
Hackers Manipulate Search Engines to Push Malicious Sites
GBHACKERS.COM — 17 Jun 2025
⚠️
New Flodrix Botnet Variant Exploits Langflow AI Server RCE Bug to Launch DDoS Attacks
SH.ITJUST.WORKS — 17 Jun 2025
⚠️
Malicious PyPI package targets Chimera users to steal AWS tokens, CI/CD secrets
CSOONLINE.COM — 17 Jun 2025
⚠️
Phishing goes prime time: Hackers use trusted sites to hijack search rankings
CSOONLINE.COM — 17 Jun 2025
⚠️
Critical Vulnerabilities in Sitecore Could Lead to Widespread Enterprise Attacks
GBHACKERS.COM — 17 Jun 2025
⚠️
Zyxel Firewall Vulnerability Again in Attacker Crosshairs
SECURITYWEEK.COM — 17 Jun 2025
⚠️
Hacker steals 1 million Cock.li user records in webmail data breach
BLEEPINGCOMPUTER.COM — 17 Jun 2025
⚠️
Security, risk and compliance in the world of AI agents
CSOONLINE.COM — 17 Jun 2025
⚠️
Two Factor Insecurity: How Google, Amazon, Meta and thousands of other companies leave customers vulnerable over one-time codes to save time and money
INFOSEC.PUB — 17 Jun 2025
⚠️
Two Factor Insecurity: How Google, Amazon, Meta and thousands of other companies leave customers vulnerable over one-time codes to save time and money
SH.ITJUST.WORKS — 17 Jun 2025
⚠️
Sitecore CMS exploit chain starts with hardcoded 'b' password
BLEEPINGCOMPUTER.COM — 17 Jun 2025
⚠️
Kubernetes Runs the Internet... But Some Still Don't Trust Open Source?
YOUTUBE.COM — 2025-06-17
⚠️
New Veeam RCE flaw lets domain users hack backup servers
BLEEPINGCOMPUTER.COM — 17 Jun 2025
⚠️
XDSpy Threat Actors Exploit Windows LNK Zero-Day Vulnerability to Target Windows System Users
GBHACKERS.COM — 17 Jun 2025
⚠️
New Veeam RCE flaw lets domain users hack backup servers
SH.ITJUST.WORKS — 17 Jun 2025
⚠️
CISA Releases Five Industrial Control Systems Advisories
CISA.GOV — Tue, 17 Jun 25 1
⚠️
How Social Pressure Silently Controls Cybersecurity Decisions
YOUTUBE.COM — 2025-06-17
⚠️
LangSmith Bug Could Expose OpenAI Keys and User Data via Malicious Agents
THEHACKERNEWS.COM — 17 Jun 2025
⚠️
New Chaos RAT Variants Targeting Windows and Linux Systems to Steal Sensitive Data
GBHACKERS.COM — 17 Jun 2025
⚠️
Your Favorite Command Line Tool Just Turned 27! 🎉
YOUTUBE.COM — 2025-06-17
⚠️
BusKill Warrant Canary 2025-2026
INFOSEC.PUB — 17 Jun 2025
⚠️
Why Enterprise Linux Updates Are a Nightmare 😱
YOUTUBE.COM — 2025-06-17
⚠️
New ClickFix Malware Variant ‘LightPerlGirl’ Targets Users in Stealthy Hack
SECURITYWEEK.COM — 17 Jun 2025
⚠️
MDEAutomator: Open-source endpoint management, incident response in MDE
INFOSEC.PUB — 17 Jun 2025
⚠️
MY TAKE: Microsoft owns AI jailbreak risk — Google, Meta, Amazon, OpenAI look the other way
LASTWATCHDOG.COM — 17 Jun 2025
⚠️
Did Log4Shell Just Change Open Source Forever?
YOUTUBE.COM — 2025-06-17
⚠️
A Vulnerability in Grafana Could Allow for Arbitrary Code Execution
CISECURITY.ORG — 17 Jun 2025
📢
Citrix security advisory (AV25-350)
CYBER.GC.CA — 2025-06-17
📢
BeyondTrust security advisory (AV25-351)
CYBER.GC.CA — 2025-06-17
📢
Veeam security advisory (AV25-352)
CYBER.GC.CA — 2025-06-17
📢
Google Chrome security advisory (AV25-353)
CYBER.GC.CA — 2025-06-17
🔥
GCHQ Intern Sentenced to 7 Years for Illegally Copying Secret Files to Smartphone
GBHACKERS.COM — 17 Jun 2025
🔥
Freedman Healthcare hacked, database software used by 27 state public health departments | Cybernews
SH.ITJUST.WORKS — 17 Jun 2025
🔥
Hackers claim attack on Scania, website down​ | Cybernews
SH.ITJUST.WORKS — 17 Jun 2025
🔥
Backups Are Under Attack: How to Protect Your Backups
THEHACKERNEWS.COM — 17 Jun 2025
🔥
Washington Post Staffer Emails Targeted in Cyber Breach
SH.ITJUST.WORKS — 17 Jun 2025
🔥
UK watchdog fines 23andMe over 2023 data breach
TECHCRUNCH.COM — 17 Jun 2025
🔥
UK fines 23andMe for ‘profoundly damaging’ breach exposing genetics data
BLEEPINGCOMPUTER.COM — 17 Jun 2025
🔥
Hacker steals 1 million Cock.li user records in webmail data breach
SH.ITJUST.WORKS — 17 Jun 2025
🔥
Pro-Israel hacktivist group claims reponsibility for alleged Iranian bank hack
TECHCRUNCH.COM — 17 Jun 2025
🔥
Scania confirms insurance claim data breach in extortion attempt
BLEEPINGCOMPUTER.COM — 17 Jun 2025
🔥
Physical Security Over Firewalls? Here’s Why
YOUTUBE.COM — 2025-06-17
🔥
Infecting insurance firms with ransomware… for dummies
GRAHAMCLULEY.COM — 17 Jun 2025
🕵️
ISC Stormcast For Tuesday, June 17th, 2025 https://isc.sans.edu/podcastdetail/9496, (Tue, Jun 17th)
ISC.SANS.EDU — 17 Jun 2025
🕵️
Cyberbedrohung für Internet-User weiter auf Rekordhoch
CSOONLINE.COM — 17 Jun 2025
🕵️
150K+ Users Affected by Malicious Loan Apps on iOS and Google Play
GBHACKERS.COM — 17 Jun 2025
🕵️
Hackers Use Fake Verification Prompt and Clickfix Technique to Deploy Fileless AsyncRAT
GBHACKERS.COM — 17 Jun 2025
🕵️
WhatsApp’s Status Tab Set to Feature Ads as Meta Monetizes Platform
GBHACKERS.COM — 17 Jun 2025
🕵️
Circumvent Raises $6 Million for Cloud Security Platform
SECURITYWEEK.COM — 17 Jun 2025
🕵️
Scattered Spider, fresh off retail sector attack spree, pivots to insurance industry | CyberScoop
SH.ITJUST.WORKS — 17 Jun 2025
🕵️
Hackers switch to targeting U.S. insurance companies
SH.ITJUST.WORKS — 17 Jun 2025
🕵️
US Insurance Industry Warned of Scattered Spider Attacks
SECURITYWEEK.COM — 17 Jun 2025
🕵️
Kali Linux 2025.2 released with 13 new tools, car hacking updates
SH.ITJUST.WORKS — 17 Jun 2025
🕵️
CyberheistNews Vol 15 #24 [Red Alert] How a Fake Cybersecurity Firm Turned Out a Real Threat
KNOWBE4.COM — 17 Jun 2025
🕵️
Google Warns of Scattered Spider Attacks Targeting IT Support Teams at U.S. Insurance Firms
THEHACKERNEWS.COM — 17 Jun 2025
🕵️
New Sophisticated Multi-Stage Malware Campaign Weaponizes VBS Files to Execute PowerShell Script
SH.ITJUST.WORKS — 17 Jun 2025
🕵️
Apache Tomcat Flaws Allow Auth Bypass and DoS Attacks
SH.ITJUST.WORKS — 17 Jun 2025
🕵️
Katz Stealer Enhances Credential Theft Capabilities with System Fingerprinting and Persistence Mechanisms
SH.ITJUST.WORKS — 17 Jun 2025
🕵️
Silver Fox APT Targets Taiwan with Complex Gh0stCringe and HoldingHands RAT Malware
THEHACKERNEWS.COM — 17 Jun 2025
🕵️
Two Predictions. One’s AI. One’s Football. Both 🔥
YOUTUBE.COM — 2025-06-17
🕵️
How Long Until the Phishing Starts? About Two Weeks, (Tue, Jun 17th)
ISC.SANS.EDU — 17 Jun 2025
🕵️
Baby Tigers Bite — The Hidden Risks of Scaling AI Too Fast
PALOALTONETWORKS.COM — 17 Jun 2025
🕵️
Kimsuky and Konni APT Groups Lead Active Attacks Targeting East Asia
GBHACKERS.COM — 17 Jun 2025
🕵️
KnowBe4 Collaborates with Microsoft: Strengthening Email Security Through Strategic Integration
KNOWBE4.COM — 17 Jun 2025
🕵️
Beware: Weaponized Research Papers Delivering Malware Through Password-Protected Documents
GBHACKERS.COM — 17 Jun 2025
🕵️
New Sophisticated Multi-Stage Malware Campaign Uses VBS Files to Execute PowerShell Script
GBHACKERS.COM — 17 Jun 2025
🕵️
This Is the 'Talkies' Moment of Cybersecurity 😮
YOUTUBE.COM — 2025-06-17
🕵️
Threat Actor Abuses TeamFiltration for Entra ID Account Takeovers
INFOSEC.PUB — 17 Jun 2025
🕵️
New KimJongRAT Stealer Uses Weaponized LNK File to Deploy PowerShell-Based Dropper
GBHACKERS.COM — 17 Jun 2025
🕵️
Hackers Can Hide Images in Text Data and Embeds Directly into DNS TXT Records
INFOSEC.PUB — 17 Jun 2025
🕵️
New Sorillus RAT Targets European Organizations Through Tunneling Services
GBHACKERS.COM — 17 Jun 2025
🕵️
AI Zombie Lawyer, Scattered Spider, ASUS, Mainframes, GrayAlpha, Backups, Josh Marpet - SWN #486
YOUTUBE.COM — 2025-06-17
🎙️
The AI Fix #55: Atari beats ChatGPT at chess, and Apple says AI “thinking” is an illusion
GRAHAMCLULEY.COM — 17 Jun 2025
📡
Meta Starts Showing Ads on WhatsApp After 6-Year Delay From 2018 Announcement
THEHACKERNEWS.COM — 17 Jun 2025
📡
Google to scale up AI-powered fraud detection and security operations in India
TECHCRUNCH.COM — 17 Jun 2025
📡
How to buy and connect a travel eSIM with Kaspersky eSIM Store | Kaspersky official blog
KASPERSKY.COM — 17 Jun 2025
📡
Are Forgotten AD Service Accounts Leaving You at Risk?
THEHACKERNEWS.COM — 17 Jun 2025
📡
Microsoft fixes Surface Hub boot issues with emergency update
BLEEPINGCOMPUTER.COM — 17 Jun 2025
📡
How to automate IT ticket handling with AI and Tines
BLEEPINGCOMPUTER.COM — 17 Jun 2025
📡
Why Fixing Security Alerts Might Be a Waste of Time! 🤯
YOUTUBE.COM — 2025-06-17
📡
Instagram 'BMO' ads use AI deepfakes to scam banking customers
BLEEPINGCOMPUTER.COM — 17 Jun 2025
📡
Observability startup Coralogix becomes a unicorn, eyes India expansion
TECHCRUNCH.COM — 17 Jun 2025
📡
Paddle settles for $5 million over facilitating tech support scams
BLEEPINGCOMPUTER.COM — 17 Jun 2025
📡
Instagram ads mimicking BMO, EQ Banks are finance scams
BLEEPINGCOMPUTER.COM — 17 Jun 2025
📡
Instagram ads mimicking BMO, EQ Bank are finance scams
BLEEPINGCOMPUTER.COM — 17 Jun 2025