🚨 CISA KEV 1[−]
7 Jul KEVCISA Adds Four Known Exploited Vulnerabilities to CatalogCISA has added four new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2014-3931 Multi-Router Looking Glass (MRLG) Buffer Overflow Vulnerability CVE-2016-10033 PHPMailer Command Injection Vulnerability CVE-2019…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 6[−]
7 JulCitrixBleed 2 Vulnerability PoC Published – Experts Warn of Mass Exploitation RiskA newly published proof-of-concept (PoC) for the critical CitrixBleed 2 vulnerability (CVE-2025-5777) has sent shockwaves through the cybersecurity community, with experts warning of imminent mass exploitation risks for organizations using Citrix NetScaler ADC and Gateway devices…GBHACKERS.COM
7 JulPoC Released for Linux Privilege Escalation Flaw in udisksd and libblockdevSecurity researchers disclosed a critical local privilege escalation (LPE) vulnerability affecting Fedora, SUSE, and other major Linux distributions. The flaw, tracked as CVE-2025-6019, resides in the interaction between the udisksd daemon and its backend library,&…GBHACKERS.COM
7 JulScriptCase Vulnerabilities Allow Remote Code Execution and Full Server CompromiseTwo critical vulnerabilities have been discovered in ScriptCase, a popular low-code PHP web application generator, which puts thousands of servers at risk of remote code execution and complete compromise. The flaws, tracked as CVE-2025-47227 and CVE-2025-47228, affect the Product…GBHACKERS.COM
7 Jul KEVVulnerability Report - June 2025submitted by cm0002 to cybersecurity 1 points | 0 comments https://www.vulnerability-lookup.org/2025/07/07/vulnerability-report-june-2025/ Introduction This vulnerability report has been generated using data aggregated on Vulnerability-Lookup , with contributions from the platfor…INFOSEC.PUB
7 Jul KEVGrafana Patches Chromium Bugs, Including Zero-Day Exploited in the WildCVE-2025-6554 and three other Chromium vulnerabilities could allow attackers to execute code and corrupt memory remotely. The post Grafana Patches Chromium Bugs, Including Zero-Day Exploited in the Wild appeared first on SecurityWeek .SECURITYWEEK.COM
7 JulPublic exploits released for CitrixBleed 2 NetScaler flaw, patch nowResearchers have released proof-of-concept (PoC) exploits for a critical Citrix NetScaler vulnerability, tracked as CVE-2025-5777 and dubbed CitrixBleed2, warning that the flaw is easily exploitable and can successfully steal user session tokens. [...]BLEEPINGCOMPUTER.COM
⚠️ VULNERABILITY DISCLOSURE 26[−]
7 JulSkills gaps send CISOs in search of managed security providersA shortage of skilled cybersecurity professionals, combined with budget cuts, is fueling growth in the managed security services market. Estimates vary but the managed security service market is expected to enjoy a compound annual growth rate between 11% and 16% to reach up to $8…CSOONLINE.COM
7 JulHas CISO become the least desirable role in business?After nine years as CSO and senior vice president of IT at Sumo Logic, George Gerchow had had enough. The job was stressful and he was burnt out. So, after some soul searching, he took a different job — as head of trust — at MongoDB. Not long after he arrived, the CISO quit, “whi…CSOONLINE.COM
7 JulLinux Boot Vulnerability Lets Attackers Bypass Secure Boot ProtectionsA newly highlighted vulnerability in the Linux boot process exposes a critical weakness in the security posture of many modern distributions. Despite widespread adoption of Secure Boot, full-disk encryption, and bootloader passwords, attackers can still bypass these defenses by e…GBHACKERS.COM
7 JulRingReaper: New Linux EDR Evasion Tool Exploits io_uring Kernel FeatureA new tool named RingReaper is raising eyebrows among defenders and red teamers alike. By leveraging the legitimate, high-performance Linux kernel feature known as io_uring, RingReaper demonstrates how advanced attackers can sidestep even modern Endpoint Detection and Response (E…GBHACKERS.COM
7 JulQwizzserial Android Malware Masquerades as Legit Apps to Steal Banking Data and Intercept 2FA SMSA new and alarming Android malware family, dubbed Qwizzserial, has emerged as a significant threat, particularly targeting users in Uzbekistan. Discovered by Group-IB in March 2024, this SMS stealer is designed to intercept two-factor authentication (2FA) codes and steal sensitiv…GBHACKERS.COM
7 JulThreat Actors Use AV/EDR Evasion Framework in the Wild to Deploy Malware PayloadsElastic Security Labs has uncovered multiple campaigns leveraging SHELLTER, a commercial AV/EDR evasion framework originally designed for offensive security evaluations by red teams. Since late April 2025, threat actors have been using what appears to be Shellter Elite v11.0, rel…GBHACKERS.COM
7 JulComodo Internet Security 2025 Flaws Allow Remote Code Execution With SYSTEM PrivilegesSecurity researchers have uncovered a series of critical vulnerabilities in Comodo Internet Security 2025, exposing users to remote code execution (RCE) attacks that could grant threat actors SYSTEM-level privileges. These flaws affect Comodo Internet Security Premium version 12.…GBHACKERS.COM
7 JulIngram Micro confirms ransomware attack after days of downtimeIngram Micro is facing a major cybersecurity crisis as a ransomware attack has triggered a multi-day IT outage, disrupting services for customers and partners across the globe. The outage , which reportedly began on July 3, has impacted several of the company’s core platforms and…CSOONLINE.COM
7 Jul⚡ Weekly Recap: Chrome 0-Day, Ivanti Exploits, MacOS Stealers, Crypto Heists and MoreEverything feels secure—until one small thing slips through. Even strong systems can break if a simple check is missed or a trusted tool is misused. Most threats don’t start with alarms—they sneak in through the little things we overlook. A tiny bug, a reused password, a quiet co…THEHACKERNEWS.COM
7 JulThreat Actors Turn Job Offers into Scams, Causing Over $264 Million in Losses in 2024In an era marked by a persistent cost-of-living crisis and economic uncertainty, many individuals are seeking side hustles or better-paying jobs to make ends meet. However, threat actors are exploiting this desperation with sophisticated employment scams, netting over $264 millio…GBHACKERS.COM
7 JulNightEagle hackers exploit Microsoft Exchange flaw to spy on China’s strategic sectorsA previously undocumented Advanced Persistent Threat (APT) group, “NightEagle,” has been found targeting the Chinese government and critical sectors using an unidentified Microsoft Exchange zero-day flaw. According to a discovery made by RedDrip, the threat intelligence unit of C…CSOONLINE.COM
7 Jul KEVExposed JDWP Exploited in the Wild | Wiz Blogsubmitted by kid to cybersecurity 1 points | 0 comments https://www.wiz.io/blog/exposed-jdwp-exploited-in-the-wildSH.ITJUST.WORKS
7 JulStrengthening cyber resilience: Introducing Internal Attack Surface Management (IASM) for Sophos Managed RiskEnhanced vulnerability management delivered as a managed service.SOPHOS.COM
7 JulNine Years and Counting: NICE RAMPS Communities Keep Expanding Opportunities in Cybersecurity Work and LearningA lot has changed in America’s cybersecurity workforce development ecosystem since 2016: employment in cybersecurity occupations has grown by more than 300,000 [1]; the number of information security degrees awarded annually has more than tripled to nearly 35,000 [2]; and a wide …NIST.GOV
7 JulNightEagle APT Unleashes Custom Malware and Zero-Days to Infiltrate Industrial SystemsThe advanced attack campaigns of a top Advanced Persistent Threat (APT) group known as “NightEagle,” internally coded as APT-Q-95, were revealed by top cybersecurity company Qian Pangu in a ground-breaking revelation at the 2025 Malaysia National Cyber Defense and Sec…GBHACKERS.COM
7 JulIdentity, AI & Access: Highlights from Identiverse 2025 - ESW #414Single Sign On (SSO) and Multi Factor Authentication (MFA) is critical to secure operations for companies of all sizes. Why is the foundation of cybersecurity still locked behind enterprise licensing? Single Sign-On (SSO) and Multi-Factor Authentication (MFA) are essential—not op…YOUTUBE.COM
7 JulHow to protect your online store from fraud attacksWe break down the types of attacks targeting e-commerce in 2025, the direct and indirect damage they cause, and how to defend against them.KASPERSKY.COM
7 JulVenusTech and Salt Typhoon Breach Sheds Light on China’s Covert Cyber Mercenary NetworksThe dark web forum DarkForums, which has been a site for data breaches and leaks since BreachForums was shut down in mid-April, was the scene of two major leaks in late May involving Chinese cybersecurity organizations: VenusTech, a well-known IT security vendor, and Salt Typhoon…GBHACKERS.COM
7 JulAiLock Ransomware Emerges with Hybrid Encryption Tactics: ChaCha20 Meets NTRUEncryptThe AiLock ransomware organization, which Zscaler first discovered in March 2025, has become a powerful force in the ransomware-as-a-service (RaaS) market, which is a frightening trend for cybersecurity professionals. This malicious entity operates with a sophisticated structure,…GBHACKERS.COM
7 JulChaos RAT: Genius Admin Tool or Dangerous Malware?When cybersecurity expert Doug White breaks down Chaos RAT, things get complicated fast. Is it a brilliant tool for sysadmins... or just malware in disguise? This remote administration tool, freely available on GitHub, offers full control over Windows and Linux systems. While hac…YOUTUBE.COM
7 JulBladedFeline Exploits Whisper and PrimeCache to Breach IIS and Microsoft Exchange ServersESET researchers have uncovered a series of malicious tools deployed by BladedFeline, an Iran-aligned advanced persistent threat (APT) group, targeting Kurdish and Iraqi government officials. Active since at least 2017, BladedFeline has been linked with medium confidence to the n…GBHACKERS.COM
7 JulVersion 1.1 Was Safe… But 1.5 Could Be Malware 🧨When Doug White said "version 1.1 was safe, but 1.5 is not," cybersecurity pros everywhere felt that. In just 60 seconds, this short unpacks the hidden risks behind software updates and how even trusted tools can turn malicious overnight. It’s a wake-up call for developers, sysad…YOUTUBE.COM
7 JulSEO Poisoning Campaign Targets 8,500+ SMB Users with Malware Disguised as AI ToolsCybersecurity researchers have disclosed a malicious campaign that leverages search engine optimization (SEO) poisoning techniques to deliver a known malware loader called Oyster (aka Broomstick or CleanUpLoader). The malvertising activity, per Arctic Wolf, promotes fake websites…THEHACKERNEWS.COM
7 JulAbusing Trust: Threat Actors Leverage Signed Drivers for Stealthy Windows Kernel ExploitsCybercriminals continue to use kernel-level malware as a preferred weapon against Windows systems amid a terrifying increase in cyberthreats. Operating at ring 0 the highest privilege level in the operating system such malware grants attackers unparalleled access to disable secur…GBHACKERS.COM
7 JulNon-Human Accounts: The Silent Cybersecurity RiskMost cybersecurity pros focus on protecting human users—but what about machines? This short dives into the hidden world of non-human identities: bots, APIs, service accounts, and CICD tokens. In some enterprises, these accounts outnumber humans 100 to 1 and often go unmanaged. Th…YOUTUBE.COM
7 JulNew Slopsquatting Attack Exploits Coding Agent Workflows to Deliver Malware“Slopsquatting” is a new supply-chain danger that has surfaced in the quickly changing field of AI-driven software development, presenting serious hazards to developers who depend on sophisticated coding agents. Unlike traditional typosquatting, which capitalizes on h…GBHACKERS.COM
📋 SECURITY BULLETINS 1[−]
7 JulWindows Update Revamped with Smarter Interface for Security NotificationsMicrosoft has announced a significant update to the Windows Update experience, introducing a smarter and more responsive interface designed to keep users better informed about their device’s security status. This latest update, available for Windows 11 version 21H2 and Windows 10…GBHACKERS.COM
📢 SECURITY ADVISORIES 9[−]
7 JulManufacturing Security: Why Default Passwords Must GoIf you didn't hear about Iranian hackers breaching US water facilities, it's because they only managed to control a single pressure station serving 7,000 people. What made this attack noteworthy wasn't its scale, but how easily the hackers gained access — by simply usi…THEHACKERNEWS.COM
7 JulNSB Warns of Cybersecurity Risks Linked to Popular Chinese Apps Like Rednote, Weibo, TikTok, WeChat, and Baidu CloudTaiwan’s National Security Bureau (NSB) has issued a stark warning about cybersecurity risks associated with several widely used China-developed mobile applications, including Rednote, Weibo, TikTok, WeChat, and Baidu Cloud. Following an in-depth investigation conducted in collab…GBHACKERS.COM
🔥 INCIDENT REPORTING 18[−]
7 Jul4 Wege aus der Security-AkronymhölleGefangen im Buchstabensud? mikeledray | shutterstock.com Vor seinen MAGA- und DOGE-Eskapaden wurde Elon Musk in erster Linie als visionärer Entrepreneur wahrgenommen. Damals, im Jahr 2010, ließ er den Mitarbeitern seines Raumfahrtunternehmens SpaceX ein Memo zukommen . Darin krit…CSOONLINE.COM
7 JulIngram Micro Ransomware Attack and the Rise of Linux SSH Server CompromisesIn this episode of Cybersecurity Today, host David Shipley discusses the recent Safe Play ransomware attack on technology distributor Ingram Micro, exploring its impact and ongoing recovery efforts. The script also examines a new campaign targeting misconfigured Linux servers to …CYBERSECURITYTODAY.LIBSYN.COM
7 JulRansomware-Attacke auf Ingram MicroDie Webseiten von Ingram Micro sind aufgrund einer Cyberattacke aktuell nicht erreichbar. Screenshot by Foundry / Julia Mutzbauer Die Internetseiten des globalen IT-Distributors Ingram Micro sind laut Aussagen von Kunden seit vergangenen Donnerstag (3. Juli 2025) nicht mehr errei…CSOONLINE.COM
7 JulBERT Ransomware Group Targets Asia and Europe on Multiple PlatformsBERT is a newly emerged ransomware group that pairs simple code with effective execution—carrying out attacks across Europe and Asia. In this entry, we examine the group’s tactics, how their variants have evolved, and the tools they use to get past defenses and speed up encryptio…TRENDMICRO.COM
7 JulXWorm RAT Deploys New Stagers and Loaders to Bypass DefensesThe XWorm Remote Access Trojan (RAT), a longstanding favorite among cybercriminals, has recently showcased a significant evolution in its attack methodology, employing an array of sophisticated stagers and loaders to evade detection and infiltrate systems. Known for its comprehen…GBHACKERS.COM
7 JulNo evidence of stolen data in Glasgow cyber attacksubmitted by kid to cybersecurity 1 points | 0 comments https://www.bbc.com/news/articles/c23g71lrln4oSH.ITJUST.WORKS
7 JulIngram Micro outage caused by SafePay ransomware attacksubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/ingram-micro-outage-caused-by-safepay-ransomware-attack/SH.ITJUST.WORKS
7 JulData breach reveals Catwatchful 'stalkerware' is spying on thousands of phones | TechCrunchsubmitted by kid to cybersecurity 1 points | 0 comments https://techcrunch.com/2025/07/02/data-breach-reveals-catwatchful-stalkerware-spying-on-thousands-android-phones/SH.ITJUST.WORKS
7 JulIngram Micro Scrambling to Restore Systems After Ransomware AttackThe IT products and services giant did not say how the intrusion occurred or whether any data was stolen from its systems. The post Ingram Micro Scrambling to Restore Systems After Ransomware Attack appeared first on SecurityWeek .SECURITYWEEK.COM
7 JulIngram Micro Confirms Ransomware Incident Impacting Internal InfrastructureIngram Micro Holding Corporation (NYSE: INGM), a global leader in technology distribution and supply chain solutions, has confirmed that it recently experienced a ransomware attack targeting certain internal systems. The company issued a statement today addressing the ongoing sys…GBHACKERS.COM
7 JulIngram Micro says ongoing outage caused by ransomware attackIngram Micro is one of the largest distributors of tech and cloud products.TECHCRUNCH.COM
7 JulBERT Ransomware Group Targets Asia and Europe on Multiple Platforms | Trend Micro (US)submitted by kid to cybersecurity 2 points | 0 comments https://www.trendmicro.com/en_us/research/25/g/bert-ransomware-group-targets-asia-and-europe-on-multiple-platforms.htmlSH.ITJUST.WORKS
7 JulInside the ZIP Trap: How APT36 Targets BOSS Linux to Exfiltrate Critical DataCYFIRMA has uncovered a highly sophisticated cyber-espionage campaign orchestrated by APT36, also known as Transparent Tribe, a Pakistan-based threat actor with a notorious history of targeting Indian defense and government sectors. This latest operation marks a significant shift…GBHACKERS.COM
7 JulHunters International Shuts Down, Offers Free Decryptors as It Morphs Into World LeaksThe notorious Hive successor ceases ransomware operations but pivots to pure data extortion under the new World Leaks brand. The post Hunters International Shuts Down, Offers Free Decryptors as It Morphs Into World Leaks appeared first on SecurityWeek .SECURITYWEEK.COM
7 JulEmployee arrested after Brazil’s central bank service provider hacked for US $140 millionThis month could barely have started any worse for some financial institutions in Brazil. Approximately US $140 million was stolen from the reserve accounts of six financial institutions after a cyber attack hit a service provider. Read more in my article on the Hot for Security …BITDEFENDER.COM
7 JulQantas is being extorted in recent data-theft cyberattackQantas has confirmed that it is now being extorted by threat actors following a cyberattack that potentially exposed the data for 6 million customers. [...]BLEEPINGCOMPUTER.COM
7 JulAtomic macOS infostealer adds backdoor for persistent attacksMalware analyst discovered a new version of the Atomic macOS info-stealer (also known as 'AMOS') that comes with a backdoor, to attackers persistent access to compromised systems. [...]BLEEPINGCOMPUTER.COM
7 JulAlleged Chinese hacker tied to Silk Typhoon arrested for cyberespionageA Chinese national was arrested in Milan, Italy, last week for allegedly being linked to the state-sponsored Silk Typhoon hacking group, which responsible for cyberattacks against American organizations and government agencies. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 21[−]
7 JulISC Stormcast For Monday, July 7th, 2025 https://isc.sans.edu/podcastdetail/9514, (Mon, Jul 7th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
7 JulAWS CDK announced that its turning on telemetry by defaultsubmitted by vk6flab to cybersecurity 1 points | 0 comments https://github.com/aws/aws-cdk/issues/34892/SH.ITJUST.WORKS
7 JulTAG-140 Deploys DRAT V2 RAT, Targeting Indian Government, Defense, and Rail SectorsA hacking group with ties other than Pakistan has been found targeting Indian government organizations with a modified variant of a remote access trojan (RAT) called DRAT. The activity has been attributed by Recorded Future's Insikt Group to a threat actor tracked as TAG-140, whi…THEHACKERNEWS.COM
7 JulMassive spike in use of .es domains for phishing abusesubmitted by cm0002 to cybersecurity 2 points | 0 comments https://www.theregister.com/2025/07/05/spain_domains_phishing/INFOSEC.PUB
7 JulMicrosoft to Remove PowerShell 2.0 from Windows 11 Due to Security RisksMicrosoft has announced a significant change for Windows 11 users: the removal of Windows PowerShell 2.0, a legacy scripting platform, from upcoming builds. This move, first revealed in the Windows 11 Insider Preview Build 27891 released to the Canary Channel, is part of the comp…GBHACKERS.COM
7 JulHiding Prompt Injections in Academic PapersAcademic papers were found to contain hidden instructions to LLMs: It discovered such prompts in 17 articles, whose lead authors are affiliated with 14 institutions including Japan’s Waseda University, South Korea’s KAIST, China’s Peking University and the Natio…SCHNEIER.COM
7 JulNew Phishing Attack Impersonates DWP to Steal Credit Card Information from UsersA sophisticated phishing campaign targeting UK residents has been active since late May 2025, with a significant surge in activity during the second half of June. This malicious operation impersonates the Department for Work and Pensions (DWP), a key UK government body responsibl…GBHACKERS.COM
7 JulHackers target vibe coders with malicious tools | Cybernewssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/security/critical-flaw-and-malicious-extensions-plague-openvsx/SH.ITJUST.WORKS
7 JulCyber crooks jump on .es domain for credential phishing trip • The Registersubmitted by kid to cybersecurity 1 points | 0 comments https://www.theregister.com/2025/07/05/spain_domains_phishing/SH.ITJUST.WORKS
7 JulEU Launches Plan to Implement Quantum-Secure Infrastructure - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/eu-plan-quantum-secure/SH.ITJUST.WORKS
7 JulEight Malicious Firefox Extensions Expose Users to Credential Theft and SurveillanceThe Socket Threat Research Team recently discovered a troubling network of malicious Firefox browser extensions that pose serious threats to user security and privacy. Initially focusing on a single extension, “Shell Shockers,” which redirected users to tech support s…GBHACKERS.COM
7 JulOver 1,000 Fake Domains Imitating Amazon Prime Day Created to Target Online ShoppersOnline customers around the world are getting ready for huge discounts and unique offers as July 8, the much-anticipated Amazon Prime Day 2025, draws near. However, this global shopping event has also become a prime target for cybercriminals, with over 1,000 newly registered doma…GBHACKERS.COM
7 JulBatavia Spyware Targets Employees via Weaponized Word Documents Delivering Malware PayloadsBatavia, an unidentified spyware, has been using a sophisticated phishing operation to target Russian industrial organizations since July 2024. Kaspersky researchers have identified a sharp rise in detections since early March 2025, with over 100 users across dozens of organizati…GBHACKERS.COM
7 JulMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
7 JulHow the Batavia spyware targeting Russian organizations workssubmitted by Pro to cybersecurity 1 points | 0 comments https://securelist.com/batavia-spyware-steals-data-from-russian-organizations/116866/INFOSEC.PUB
7 JulHow the Batavia spyware targeting Russian organizations workssubmitted by Pro to cybersecurity 1 points | 0 comments https://securelist.com/batavia-spyware-steals-data-from-russian-organizations/116866/SH.ITJUST.WORKS
7 JulLearn how to build an AI-powered, unified SOC in new Microsoft e-bookRead Coordinated Defense: Building an AI-powered, unified SOC, the new e-book on how organizations can unify security operations to better meet the challenges of today’s cyberthreat landscape. The post Learn how to build an AI-powered, unified SOC in new Microsoft e-book appeared…MICROSOFT.COM
7 JulParrot Security OS 6.4 Released – What’s New!The Parrot Security team has released Parrot Security OS 6.4, a robust update featuring community-driven enhancements and contributions. As the probable final chapter of the 6.x series, this release refines the security-focused OS and sets the stage for the upcoming Parrot 7. Par…GBHACKERS.COM
7 JulMalware Attacks on Android Devices Surge in Q2, Driven by Banking Trojans and SpywareDr.Web Security Space for mobile devices reported that malware activity on Android devices increased significantly in the second quarter of 2025. Adware trojans, particularly from the Android.HiddenAds family, remained the most prevalent threat, despite an 8.62% decrease in user …GBHACKERS.COM
7 JulBluetooth flaws could let hackers spy through your microphonesubmitted by Pro to cybersecurity 1 points | 0 comments https://insinuator.net/2025/06/airoha-bluetooth-security-vulnerabilities/INFOSEC.PUB
7 JulBluetooth flaws could let hackers spy through your microphonesubmitted by Pro to cybersecurity 2 points | 0 comments https://insinuator.net/2025/06/airoha-bluetooth-security-vulnerabilities/SH.ITJUST.WORKS
🌐 CYBER THREAT LANDSCAPE 3[−]
7 JulWhat's My (File)Name?, (Mon, Jul 7th)Modern malware implements a lot of anti-debugging and anti-analysis features. Today, when a malware is spread in the wild, there are chances that it will be automatically sent into a automatic analysis pipe, and a sandbox. To analyze a sample in a sandbox, it must be "copied" int…ISC.SANS.EDU
7 JulHackers abuse leaked Shellter red team tool to deploy infostealersShellter Project, the vendor of a commercial AV/EDR evasion loader for penetration testing, confirmed that hackers used its Shellter Elite product in attacks after a customer leaked a copy of the software. [...]BLEEPINGCOMPUTER.COM
7 Jul'Batavia' Windows spyware campaign targets dozens of Russian orgsA previously undocumented spyware called 'Batavia' has been targeting large industrial enterprises in Russia in a phishing email campaign that uses contract-related lures. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 3[−]
7 JulEmployee gets $920 for credentials used in $140 million bank heistHackers stole nearly $140 million from six banks in Brazil by using an employee's credentials from C&M, a company that offers financial connectivity solutions. [...]BLEEPINGCOMPUTER.COM
7 JulUnless users take action, Android will let Gemini access third-party appsImportant changes to Android devices took effect starting Monday.ARSTECHNICA.COM
7 JulCongratulations to the top MSRC 2025 Q2 security researchers!Congratulations to all the researchers recognized in this quarter’s Microsoft Researcher Recognition Program leaderboard! Thank you to everyone for your hard work and continued partnership to secure customers. The top three researchers of the 2025 Q2 Security Researcher Leaderboa…MSRC.MICROSOFT.COM