matlock.ca // THREAT INTELLIGENCE

108Articles

9Categories

2025-06-24Date

🐛

China-linked Salt Typhoon Exploits Critical Cisco Vulnerability to Target Canadian Telecom

THEHACKERNEWS.COM — 24 Jun 2025

🐛

Notepad++ Vulnerability Allows Full System Takeover — PoC Released

GBHACKERS.COM — 24 Jun 2025

🐛

Aviatrix Cloud Controller Flaw Enables Remote Code Execution via Authentication Bypass

GBHACKERS.COM — 24 Jun 2025

🐛

WinRAR Vulnerability Exploited with Malicious Archives to Execute Code

GBHACKERS.COM — 24 Jun 2025

🐛

Xiaomi Interoperability App Flaw Allows Unauthorized Access to User Devices

GBHACKERS.COM — 24 Jun 2025

🐛

OPPO Clone Phone Vulnerability Leaks Sensitive Data via Weak WiFi Hotspot

GBHACKERS.COM — 24 Jun 2025

🐛

Critical Convoy Flaw Allows Remote Code Execution on Servers

GBHACKERS.COM — 24 Jun 2025

🐛

Critical Citrix NetScaler bug fixed, upgrade ASAP! (CVE-2025-5777) - Help Net Security

SH.ITJUST.WORKS — 24 Jun 2025

🐛

Zimbra Classic Web Client Vulnerability Allows Arbitrary JavaScript Execution

GBHACKERS.COM — 24 Jun 2025

🐛

Threat Actors Exploit ConnectWise Configuration to Create Signed Malware

GBHACKERS.COM — 24 Jun 2025

🐛

Multiple vulnerabilities in Sitecore CMS | Kaspersky official blog

KASPERSKY.COM — 24 Jun 2025

⚠️

8 effektive Multicloud-Security-Tipps

CSOONLINE.COM — 24 Jun 2025

⚠️

⚡ Weekly Recap: Chrome 0-Day, 7.3 Tbps DDoS, MFA Bypass Tricks, Banking Trojan and More

INFOSEC.PUB — 24 Jun 2025

⚠️

New Echo Chamber Attack Breaks AI Models Using Indirect Prompts

GBHACKERS.COM — 24 Jun 2025

⚠️

Iranian cyber threats overhyped, but CISOs can’t afford to let down their guard

CSOONLINE.COM — 24 Jun 2025

⚠️

The CISO’s 5-step guide to securing AI operations

CSOONLINE.COM — 24 Jun 2025

⚠️

Advanced Malware Campaign Targets WordPress and WooCommerce Sites with Hidden Skimmers

GBHACKERS.COM — 24 Jun 2025

⚠️

How Fuzzing Barcodes Raises the Bar for Secure Code - Artur Cygan - ASW #336

YOUTUBE.COM — 2025-06-24

⚠️

The Guardian and Cambridge University's Department of Computer Science unveil new secure technology to protect sources

SH.ITJUST.WORKS — 24 Jun 2025

⚠️

Hackers Exploit Misconfigured Docker APIs to Mine Cryptocurrency via Tor Network

THEHACKERNEWS.COM — 24 Jun 2025

⚠️

Google Cloud Donates A2A Protocol to Linux Foundation for Smarter, Secure Communication

GBHACKERS.COM — 24 Jun 2025

⚠️

China: Draft cybersecurity amendment doubles down on digital repression - ARTICLE 19

INFOSEC.PUB — 24 Jun 2025

⚠️

China: Draft cybersecurity amendment doubles down on digital repression - ARTICLE 19

SH.ITJUST.WORKS — 24 Jun 2025

⚠️

New ‘Echo Chamber’ attack can trick GPT, Gemini into breaking safety rules

CSOONLINE.COM — 24 Jun 2025

⚠️

Critical Key Derivation Flaws in pbkdf2 Affect Millions of JavaScript Projects, PoC Available

SH.ITJUST.WORKS — 24 Jun 2025

⚠️

PoC Released for Notepad++ Flaw Enables Privilege Escalation to NT AUTHORITY\SYSTEM

SH.ITJUST.WORKS — 24 Jun 2025

⚠️

Hackers Exploit Misconfigured Docker APIs to Mine Cryptocurrency via Tor Network

SH.ITJUST.WORKS — 24 Jun 2025

⚠️

Why a Classic MCP Server Vulnerability Can Undermine Your Entire AI Agent

TRENDMICRO.COM — 24 Jun 2025

⚠️

US House reportedly bans WhatsApp from staffers’ devices over security concerns

COMPUTERWORLD.COM — 24 Jun 2025

⚠️

Web3’s Weakest Link: The Access Control Nightmare!

YOUTUBE.COM — 2025-06-24

⚠️

Over 2,000 Devices Compromised by Weaponized Social Security Statement Phishing Attacks

GBHACKERS.COM — 24 Jun 2025

⚠️

Why Cybersecurity Training Might Be Hurting Your Team 🧠

YOUTUBE.COM — 2025-06-24

⚠️

Anton’s Security Blog Quarterly Q2 2025

KEVMEDIUM.COM — 24 Jun 2025

⚠️

He Ran SATAN in 1995… And It Broke Everything 👀

YOUTUBE.COM — 2025-06-24

⚠️

CISA Releases Eight Industrial Control Systems Advisories

CISA.GOV — Tue, 24 Jun 25 1

⚠️

Bank of America, Netflix, and Microsoft Hacked to Inject Fake Phone Numbers

GBHACKERS.COM — 24 Jun 2025

⚠️

New Guidance Released for Reducing Memory-Related Vulnerabilities

CISA.GOV — Tue, 24 Jun 25 1

⚠️

The AI Fix #56: ChatGPT traps man in a cult of one, and AI is actually stupid

GRAHAMCLULEY.COM — 24 Jun 2025

⚠️

LLMs Are Teaching Developers BAD Habits 😤

YOUTUBE.COM — 2025-06-24

📋

Windows 10 users can get extended security updates using Microsoft points

BLEEPINGCOMPUTER.COM — 24 Jun 2025

📢

U.S. House Bans WhatsApp on Official Devices Over Security and Data Protection Issues

THEHACKERNEWS.COM — 24 Jun 2025

📢

NCSC Warns of SHOE RACK Malware Targeting Fortinet Firewalls via DOH & SSH Protocols

GBHACKERS.COM — 24 Jun 2025

📢

HPE security advisory (AV25-366)

CYBER.GC.CA — 2025-06-24

📢

Mozilla security advisory (AV25-367)

CYBER.GC.CA — 2025-06-24

📢

GitHub security advisory (AV25-368)

CYBER.GC.CA — 2025-06-24

📢

Siemens Notifies Customers of Microsoft Defender Antivirus Issue

SH.ITJUST.WORKS — 24 Jun 2025

🔥

China-linked LapDogs campaign drops backdoor with fake certs, targeting mainly Small Office/Home Office (SOHO) devices

INFOSEC.PUB — 24 Jun 2025

🔥

China-linked LapDogs campaign drops backdoor with fake certs, targeting mainly Small Office/Home Office (SOHO) devices

SH.ITJUST.WORKS — 24 Jun 2025

🔥

Apple, Netflix, Microsoft Sites ‘Hacked’ for Tech Support Scams

SECURITYWEEK.COM — 24 Jun 2025

🔥

APT28 Uses Signal Chat to Deploy BEARDSHELL Malware and COVENANT in Ukraine

THEHACKERNEWS.COM — 24 Jun 2025

🔥

DHS Warns of Pro-Iranian Hacktivists Targeting U.S. Networks

GBHACKERS.COM — 24 Jun 2025

🔥

Data of more than 740,000 stolen in ransomware attack on Michigan hospital network | The Record from Recorded Future News

SH.ITJUST.WORKS — 24 Jun 2025

🔥

Steel giant Nucor confirms hackers stole data in recent breach

SH.ITJUST.WORKS — 24 Jun 2025

🔥

Canada says Salt Typhoon hacked telecom firm via Cisco flaw

SH.ITJUST.WORKS — 24 Jun 2025

🔥

Russian court releases several REvil ransomware gang members | CyberScoop

SH.ITJUST.WORKS — 24 Jun 2025

🔥

Aflac-Datenleck: Versicherungsbranche im Visier von Hackern

CSOONLINE.COM — 24 Jun 2025

🔥

The State of Ransomware 2025

SOPHOS.COM — 24 Jun 2025

🔥

Gonjeshke Darande Hackers Pose as Activists to Infiltrate Iranian Crypto Exchange

GBHACKERS.COM — 24 Jun 2025

🔥

Aflac, one of the USA’s largest insurers, is the latest to fall “under siege” to hackers

GRAHAMCLULEY.COM — 24 Jun 2025

🔥

This One Framework Could Cut Your Response Time in Half" 🛡️🔥 #InfoSecQuickie

YOUTUBE.COM — 2025-06-24

🔥

Insider threats, migrating away from cloud, RSAC interviews with Cyera and Blumira - Y... - ESW #411

YOUTUBE.COM — 2025-06-24

🕵️

Typhoon-like gang slinging TLS certificate 'signed' by LAPD

SH.ITJUST.WORKS — 24 Jun 2025

🕵️

ISC Stormcast For Tuesday, June 24th, 2025 https://isc.sans.edu/podcastdetail/9502, (Tue, Jun 24th)

ISC.SANS.EDU — 24 Jun 2025

🕵️

Honeypot or just vv irresponsible database?

INFOSEC.PUB — 24 Jun 2025

🕵️

OWASP Launches AI Testing Guide to Uncover Vulnerabilities in AI Systems

GBHACKERS.COM — 24 Jun 2025

🕵️

LapDogs Hackers Compromise 1,000 SOHO Devices Using Custom Backdoor for Stealthy Attacks

GBHACKERS.COM — 24 Jun 2025

🕵️

Photo-Stealing Spyware Sneaks Into Apple App Store, Google Play

SECURITYWEEK.COM — 24 Jun 2025

🕵️

North Korean Hackers Use Malicious Zoom Apps to Execute System-Takeover Attacks

GBHACKERS.COM — 24 Jun 2025

🕵️

Chinese APT Hacking Routers to Build Espionage Infrastructure

SECURITYWEEK.COM — 24 Jun 2025

🕵️

Identity Is the New Perimeter: Why Proofing and Verification Are Business Imperatives

SECURITYWEEK.COM — 24 Jun 2025

🕵️

Prometei Botnet Activity Spikes

SECURITYWEEK.COM — 24 Jun 2025

🕵️

Here’s a Subliminal Channel You Haven’t Considered Before

SCHNEIER.COM — 2025-06-24

🕵️

US Warns of Heightened Risk of Iranian Cyber-Attacks After Military St - Infosecurity Magazine

SH.ITJUST.WORKS — 24 Jun 2025

🕵️

Critical Authentication Bypass Flaw Patched in Teleport - SecurityWeek

SH.ITJUST.WORKS — 24 Jun 2025

🕵️

Cobalt Strike Operators Leverage PowerShell Loaders Across Chinese, Russian, and Global Infrastructure

SH.ITJUST.WORKS — 24 Jun 2025

🕵️

APT28 hackers use Signal chats to launch new malware attacks on Ukraine

SH.ITJUST.WORKS — 24 Jun 2025

🕵️

The Biggest Chinese Data Leak "Ever"

SH.ITJUST.WORKS — 24 Jun 2025

🕵️

Prometei Botnet Activity Spikes - SecurityWeek

SH.ITJUST.WORKS — 24 Jun 2025

🕵️

CyberheistNews Vol 15 #25 Microsoft & KnowBe4 Collab: Strengthen Email Security Through Strategic Integration

KNOWBE4.COM — 24 Jun 2025

🕵️

Echo Chamber Jailbreak Tricks LLMs Like OpenAI and Google into Generating Harmful Content

SH.ITJUST.WORKS — 24 Jun 2025

🕵️

Siemens Notifies Customers of Microsoft Defender Antivirus Issue

SECURITYWEEK.COM — 24 Jun 2025

🕵️

EagleSpy v5 RAT Promoted by Hacker for Stealthy Android Access

GBHACKERS.COM — 24 Jun 2025

🕵️

Weaponized DMV-Themed Phishing Scam Targets U.S. Citizens to Steal Personal and Financial Data

GBHACKERS.COM — 24 Jun 2025

🕵️

Hackers Target Over 70 Microsoft Exchange Servers to Steal Credentials via Keyloggers

THEHACKERNEWS.COM — 24 Jun 2025

🕵️

New DRAT V2 Update Enhances C2 Protocol with Shell Command Execution Capabilities

GBHACKERS.COM — 24 Jun 2025

🕵️

New FileFix attack weaponizes Windows File Explorer for stealthy commands

SH.ITJUST.WORKS — 24 Jun 2025

🕵️

Microsoft is named a Leader in The Forrester Wave™: Security Analytics Platforms, 2025

MICROSOFT.COM — 24 Jun 2025

🕵️

Cybersecurity Metrics That Actually Get You Paid 💰

YOUTUBE.COM — 2025-06-24

🕵️

Where Top Security Teams Put Their Budget (And Why)

YOUTUBE.COM — 2025-06-24

🕵️

SonicWall warns of trojanized NetExtender stealing VPN logins

BLEEPINGCOMPUTER.COM — 24 Jun 2025

🕵️

The Rise of Malware: Salt Typhoon and Spark Kitty - SWN #488

YOUTUBE.COM — 2025-06-24

🕵️

Cloud Security, Coffee, and Chaos: A True IT Horror Story

YOUTUBE.COM — 2025-06-24

🕵️

LLMs in Courtrooms: Cybersecurity’s New Problem?

YOUTUBE.COM — 2025-06-24

🕵️

Don't panic, but it's only a matter of time before critical 'CitrixBleed 2' is under attack

INFOSEC.PUB — 24 Jun 2025

🌐

Researchers Find Way to Shut Down Cryptominer Campaigns Using Bad Shares and XMRogue

THEHACKERNEWS.COM — 24 Jun 2025

🌐

How Today’s Pentest Models Compare and Why Continuous Wins

BLEEPINGCOMPUTER.COM — 24 Jun 2025

🌐

Quick Password Brute Forcing Evolution Statistics, (Tue, Jun 24th)

ISC.SANS.EDU — 24 Jun 2025

🎙️

Between Buzz and Reality: The CTEM Conversation We All Need

THEHACKERNEWS.COM — 24 Jun 2025

📡

US bans WhatsApp from House of Representatives staff devices

TECHCRUNCH.COM — 24 Jun 2025

📡

US House bans WhatsApp on staff devices over security concerns

BLEEPINGCOMPUTER.COM — 24 Jun 2025

📡

FileFix attack weaponizes Windows File Explorer for stealthy commands

BLEEPINGCOMPUTER.COM — 24 Jun 2025

📡

Trezor’s support platform abused in crypto theft phishing attacks

BLEEPINGCOMPUTER.COM — 24 Jun 2025

📡

Microsoft fixes known issue that breaks Windows 11 updates

BLEEPINGCOMPUTER.COM — 24 Jun 2025

📡

Windows 10 KB5061087 update released with 13 changes and fixes

BLEEPINGCOMPUTER.COM — 24 Jun 2025

📡

Roadmap for the migration to post-quantum cryptography for the Government of Canada (ITSM.40.001)

CYBER.GC.CA — 2025-06-24

📡

Google Cloud donates A2A AI protocol to the Linux Foundation

BLEEPINGCOMPUTER.COM — 24 Jun 2025

📡

Claude catches up to ChatGPT with built-in memory support

BLEEPINGCOMPUTER.COM — 24 Jun 2025

📡

Google rolls out text-to-image model Imagen 4 for free

BLEEPINGCOMPUTER.COM — 24 Jun 2025