matlock.ca // THREAT INTELLIGENCE — 2025-07-07

88Articles

9Categories

2025-07-07Date

🚨

CISA Adds Four Known Exploited Vulnerabilities to CatalogCISA has added four new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2014-3931 Multi-Router Looking Glass (MRLG) Buffer Overflow Vulnerability CVE-2016-10033 PHPMailer Command Injection Vulnerability CVE-2019…

KEVCISA.GOV — Mon, 07 Jul 25 1

🐛

CitrixBleed 2 Vulnerability PoC Published – Experts Warn of Mass Exploitation Risk

GBHACKERS.COM — 07 Jul 2025

🐛

PoC Released for Linux Privilege Escalation Flaw in udisksd and libblockdev

GBHACKERS.COM — 07 Jul 2025

🐛

ScriptCase Vulnerabilities Allow Remote Code Execution and Full Server Compromise

GBHACKERS.COM — 07 Jul 2025

🐛

Vulnerability Report - June 2025

KEVINFOSEC.PUB — 7 Jul 2025

🐛

Grafana Patches Chromium Bugs, Including Zero-Day Exploited in the Wild

KEVSECURITYWEEK.COM — 07 Jul 2025

🐛

Public exploits released for CitrixBleed 2 NetScaler flaw, patch now

BLEEPINGCOMPUTER.COM — 07 Jul 2025

⚠️

Skills gaps send CISOs in search of managed security providers

CSOONLINE.COM — 07 Jul 2025

⚠️

Has CISO become the least desirable role in business?

CSOONLINE.COM — 07 Jul 2025

⚠️

Linux Boot Vulnerability Lets Attackers Bypass Secure Boot Protections

GBHACKERS.COM — 07 Jul 2025

⚠️

RingReaper: New Linux EDR Evasion Tool Exploits io_uring Kernel Feature

GBHACKERS.COM — 07 Jul 2025

⚠️

Qwizzserial Android Malware Masquerades as Legit Apps to Steal Banking Data and Intercept 2FA SMS

GBHACKERS.COM — 07 Jul 2025

⚠️

Threat Actors Use AV/EDR Evasion Framework in the Wild to Deploy Malware Payloads

GBHACKERS.COM — 07 Jul 2025

⚠️

Comodo Internet Security 2025 Flaws Allow Remote Code Execution With SYSTEM Privileges

GBHACKERS.COM — 07 Jul 2025

⚠️

Ingram Micro confirms ransomware attack after days of downtime

CSOONLINE.COM — 07 Jul 2025

⚠️

⚡ Weekly Recap: Chrome 0-Day, Ivanti Exploits, MacOS Stealers, Crypto Heists and More

THEHACKERNEWS.COM — 07 Jul 2025

⚠️

Threat Actors Turn Job Offers into Scams, Causing Over $264 Million in Losses in 2024

GBHACKERS.COM — 07 Jul 2025

⚠️

NightEagle hackers exploit Microsoft Exchange flaw to spy on China’s strategic sectors

CSOONLINE.COM — 07 Jul 2025

⚠️

Exposed JDWP Exploited in the Wild | Wiz Blog

KEVSH.ITJUST.WORKS — 7 Jul 2025

⚠️

Strengthening cyber resilience: Introducing Internal Attack Surface Management (IASM) for Sophos Managed Risk

SOPHOS.COM — 07 Jul 2025

⚠️

Nine Years and Counting: NICE RAMPS Communities Keep Expanding Opportunities in Cybersecurity Work and Learning

NIST.GOV — 07 Jul 2025

⚠️

NightEagle APT Unleashes Custom Malware and Zero-Days to Infiltrate Industrial Systems

GBHACKERS.COM — 07 Jul 2025

⚠️

Identity, AI & Access: Highlights from Identiverse 2025 - ESW #414

YOUTUBE.COM — 2025-07-07

⚠️

How to protect your online store from fraud attacks

KASPERSKY.COM — 07 Jul 2025

⚠️

VenusTech and Salt Typhoon Breach Sheds Light on China’s Covert Cyber Mercenary Networks

GBHACKERS.COM — 07 Jul 2025

⚠️

AiLock Ransomware Emerges with Hybrid Encryption Tactics: ChaCha20 Meets NTRUEncrypt

GBHACKERS.COM — 07 Jul 2025

⚠️

Chaos RAT: Genius Admin Tool or Dangerous Malware?

YOUTUBE.COM — 2025-07-07

⚠️

BladedFeline Exploits Whisper and PrimeCache to Breach IIS and Microsoft Exchange Servers

GBHACKERS.COM — 07 Jul 2025

⚠️

Version 1.1 Was Safe… But 1.5 Could Be Malware 🧨

YOUTUBE.COM — 2025-07-07

⚠️

SEO Poisoning Campaign Targets 8,500+ SMB Users with Malware Disguised as AI Tools

THEHACKERNEWS.COM — 07 Jul 2025

⚠️

Abusing Trust: Threat Actors Leverage Signed Drivers for Stealthy Windows Kernel Exploits

GBHACKERS.COM — 07 Jul 2025

⚠️

Non-Human Accounts: The Silent Cybersecurity Risk

YOUTUBE.COM — 2025-07-07

⚠️

New Slopsquatting Attack Exploits Coding Agent Workflows to Deliver Malware

GBHACKERS.COM — 07 Jul 2025

📋

Windows Update Revamped with Smarter Interface for Security Notifications

GBHACKERS.COM — 07 Jul 2025

📢

Manufacturing Security: Why Default Passwords Must Go

THEHACKERNEWS.COM — 07 Jul 2025

📢

Ubuntu security advisory (AV25-395)

CYBER.GC.CA — 2025-07-07

📢

Qualcomm security advisory – July 2025 monthly rollup (AV25-397)

CYBER.GC.CA — 2025-07-07

📢

IBM security advisory (AV25-396)

CYBER.GC.CA — 2025-07-07

📢

Red Hat security advisory (AV25-398)

CYBER.GC.CA — 2025-07-07

📢

NSB Warns of Cybersecurity Risks Linked to Popular Chinese Apps Like Rednote, Weibo, TikTok, WeChat, and Baidu Cloud

GBHACKERS.COM — 07 Jul 2025

📢

Dell security advisory (AV25-399)

CYBER.GC.CA — 2025-07-07

📢

[Control systems] CISA ICS security advisories (AV25-400)

CYBER.GC.CA — 2025-07-07

📢

Splunk security advisory (AV25-401)

CYBER.GC.CA — 2025-07-07

🔥

4 Wege aus der Security-Akronymhölle

CSOONLINE.COM — 07 Jul 2025

🔥

Ingram Micro Ransomware Attack and the Rise of Linux SSH Server Compromises

CYBERSECURITYTODAY.LIBSYN.COM — 07 Jul 2025

🔥

Ransomware-Attacke auf Ingram Micro

CSOONLINE.COM — 07 Jul 2025

🔥

BERT Ransomware Group Targets Asia and Europe on Multiple Platforms

TRENDMICRO.COM — 07 Jul 2025

🔥

XWorm RAT Deploys New Stagers and Loaders to Bypass Defenses

GBHACKERS.COM — 07 Jul 2025

🔥

No evidence of stolen data in Glasgow cyber attack

SH.ITJUST.WORKS — 7 Jul 2025

🔥

Ingram Micro outage caused by SafePay ransomware attack

SH.ITJUST.WORKS — 7 Jul 2025

🔥

Data breach reveals Catwatchful 'stalkerware' is spying on thousands of phones | TechCrunch

SH.ITJUST.WORKS — 7 Jul 2025

🔥

Ingram Micro Scrambling to Restore Systems After Ransomware Attack

SECURITYWEEK.COM — 07 Jul 2025

🔥

Ingram Micro Confirms Ransomware Incident Impacting Internal Infrastructure

GBHACKERS.COM — 07 Jul 2025

🔥

Ingram Micro says ongoing outage caused by ransomware attack

TECHCRUNCH.COM — 07 Jul 2025

🔥

BERT Ransomware Group Targets Asia and Europe on Multiple Platforms | Trend Micro (US)

SH.ITJUST.WORKS — 7 Jul 2025

🔥

Inside the ZIP Trap: How APT36 Targets BOSS Linux to Exfiltrate Critical Data

GBHACKERS.COM — 07 Jul 2025

🔥

Hunters International Shuts Down, Offers Free Decryptors as It Morphs Into World Leaks

SECURITYWEEK.COM — 07 Jul 2025

🔥

Employee arrested after Brazil’s central bank service provider hacked for US $140 million

BITDEFENDER.COM — 07 Jul 2025

🔥

Qantas is being extorted in recent data-theft cyberattack

BLEEPINGCOMPUTER.COM — 07 Jul 2025

🔥

Atomic macOS infostealer adds backdoor for persistent attacks

BLEEPINGCOMPUTER.COM — 07 Jul 2025

🔥

Alleged Chinese hacker tied to Silk Typhoon arrested for cyberespionage

BLEEPINGCOMPUTER.COM — 07 Jul 2025

🕵️

ISC Stormcast For Monday, July 7th, 2025 https://isc.sans.edu/podcastdetail/9514, (Mon, Jul 7th)

ISC.SANS.EDU — 07 Jul 2025

🕵️

AWS CDK announced that its turning on telemetry by default

SH.ITJUST.WORKS — 7 Jul 2025

🕵️

TAG-140 Deploys DRAT V2 RAT, Targeting Indian Government, Defense, and Rail Sectors

THEHACKERNEWS.COM — 07 Jul 2025

🕵️

Massive spike in use of .es domains for phishing abuse

INFOSEC.PUB — 7 Jul 2025

🕵️

Microsoft to Remove PowerShell 2.0 from Windows 11 Due to Security Risks

GBHACKERS.COM — 07 Jul 2025

🕵️

Hiding Prompt Injections in Academic Papers

SCHNEIER.COM — 2025-07-07

🕵️

New Phishing Attack Impersonates DWP to Steal Credit Card Information from Users

GBHACKERS.COM — 07 Jul 2025

🕵️

Hackers target vibe coders with malicious tools | Cybernews

SH.ITJUST.WORKS — 7 Jul 2025

🕵️

Cyber crooks jump on .es domain for credential phishing trip • The Register

SH.ITJUST.WORKS — 7 Jul 2025

🕵️

EU Launches Plan to Implement Quantum-Secure Infrastructure - Infosecurity Magazine

SH.ITJUST.WORKS — 7 Jul 2025

🕵️

Eight Malicious Firefox Extensions Expose Users to Credential Theft and Surveillance

GBHACKERS.COM — 07 Jul 2025

🕵️

Over 1,000 Fake Domains Imitating Amazon Prime Day Created to Target Online Shoppers

GBHACKERS.COM — 07 Jul 2025

🕵️

Batavia Spyware Targets Employees via Weaponized Word Documents Delivering Malware Payloads

GBHACKERS.COM — 07 Jul 2025

🕵️

Mentorship Monday - Discussions for career and learning!

INFOSEC.PUB — 7 Jul 2025

🕵️

How the Batavia spyware targeting Russian organizations works

INFOSEC.PUB — 7 Jul 2025

🕵️

How the Batavia spyware targeting Russian organizations works

SH.ITJUST.WORKS — 7 Jul 2025

🕵️

Learn how to build an AI-powered, unified SOC in new Microsoft e-book

MICROSOFT.COM — 07 Jul 2025

🕵️

Parrot Security OS 6.4 Released – What’s New!

GBHACKERS.COM — 07 Jul 2025

🕵️

Malware Attacks on Android Devices Surge in Q2, Driven by Banking Trojans and Spyware

GBHACKERS.COM — 07 Jul 2025

🕵️

Bluetooth flaws could let hackers spy through your microphone

INFOSEC.PUB — 7 Jul 2025

🕵️

Bluetooth flaws could let hackers spy through your microphone

SH.ITJUST.WORKS — 7 Jul 2025

🌐

What's My (File)Name?, (Mon, Jul 7th)

ISC.SANS.EDU — 07 Jul 2025

🌐

Hackers abuse leaked Shellter red team tool to deploy infostealers

BLEEPINGCOMPUTER.COM — 07 Jul 2025

🌐

'Batavia' Windows spyware campaign targets dozens of Russian orgs

BLEEPINGCOMPUTER.COM — 07 Jul 2025

📡

Employee gets $920 for credentials used in $140 million bank heist

BLEEPINGCOMPUTER.COM — 07 Jul 2025

📡

Unless users take action, Android will let Gemini access third-party apps

ARSTECHNICA.COM — 07 Jul 2025

📡

Congratulations to the top MSRC 2025 Q2 security researchers!

MSRC.MICROSOFT.COM — 07 Jul 2025