matlock.ca // THREAT INTELLIGENCE

77Articles

9Categories

2025-07-09Date

🐛

FortiWeb SQL Injection Vulnerability Allows Attackers to Execute Malicious SQL Commands

GBHACKERS.COM — 09 Jul 2025

🐛

Citrix Windows Virtual Delivery Agent Vulnerability Lets Attackers Escalate to SYSTEM Privileges

GBHACKERS.COM — 09 Jul 2025

🐛

Windows BitLocker Vulnerability Lets Attackers Bypass Security Protections

GBHACKERS.COM — 09 Jul 2025

🐛

Microsoft Fixes Wormable Remote Code Execution Flaw in Windows and Server

GBHACKERS.COM — 09 Jul 2025

🐛

Exploit details released for Citrix Bleed 2 flaw affecting NetScaler

KEVCSOONLINE.COM — 09 Jul 2025

⚠️

Microsoft Patch Tuesday, July 2025 Edition

KEVKREBSONSECURITY.COM — 09 Jul 2025

⚠️

Zoom for Windows Flaw Allows Attackers to Trigger DoS Attacks

GBHACKERS.COM — 09 Jul 2025

⚠️

AI Threats, Enterprise Security, and Google's Confusing Gemini Release: Cybersecurity Today

CYBERSECURITYTODAY.LIBSYN.COM — 09 Jul 2025

⚠️

Splunk SOAR Addresses Vulnerabilities in Third-Party Packages – Update Now

GBHACKERS.COM — 09 Jul 2025

⚠️

Microsoft Patches 130 Vulnerabilities, Including Critical Flaws in SPNEGO and SQL Server

THEHACKERNEWS.COM — 09 Jul 2025

⚠️

Trump seeks unprecedented $1.23 billion cut to federal cyber budget

CSOONLINE.COM — 09 Jul 2025

⚠️

Unpatched Ruckus Vulnerabilities Allow Wireless Environment Hacking

SECURITYWEEK.COM — 09 Jul 2025

⚠️

IBM Power11 challenges x86 and GPU giants with security-first server strategy

CSOONLINE.COM — 09 Jul 2025

⚠️

Microsoft 365 PDF Export Feature Vulnerable to LFI – Sensitive Data at Risk

GBHACKERS.COM — 09 Jul 2025

⚠️

Hackers Exploit IIS Machine Keys to Breach Organizations

GBHACKERS.COM — 09 Jul 2025

⚠️

Trend Micro flags BERT: A rapidly growing ransomware threat

CSOONLINE.COM — 09 Jul 2025

⚠️

Verified, featured, and malicious: RedDirection campaign reveals browser marketplace failures

CSOONLINE.COM — 09 Jul 2025

⚠️

Nippon Steel Subsidiary Blames Data Breach on Zero-Day Attack

SECURITYWEEK.COM — 09 Jul 2025

⚠️

TapTrap Android Exploit Allows Malicious Apps to Bypass Permissions

GBHACKERS.COM — 09 Jul 2025

⚠️

The MFA You Trust Is Lying to You – and Here's How Attackers Exploit It

BLEEPINGCOMPUTER.COM — 09 Jul 2025

⚠️

New ServiceNow flaw lets attackers enumerate restricted data

BLEEPINGCOMPUTER.COM — 09 Jul 2025

⚠️

Supply Chain Attack Unleashed via Compromised VS Code Extension

GBHACKERS.COM — 09 Jul 2025

⚠️

Ruckus Networks leaves severe flaws unpatched in management devices

BLEEPINGCOMPUTER.COM — 09 Jul 2025

⚠️

Gold Melody IAB Exploits Exposed ASP.NET Machine Keys for Unauthorized Access to Targets

THEHACKERNEWS.COM — 09 Jul 2025

⚠️

Welcoming Push Security to Have I Been Pwned's Partner Program

TROYHUNT.COM — 09 Jul 2025

⚠️

Smashing Security podcast #425: Call of Duty: From pew-pew to pwned

GRAHAMCLULEY.COM — 09 Jul 2025

⚠️

Multiple Vulnerabilities in Mozilla Thunderbird Could Allow for Arbitrary Code Execution

CISECURITY.ORG — 09 Jul 2025

📋

Splunk Enterprise Addresses Vulnerabilities in Bundled Third-Party Packages – Update Now

GBHACKERS.COM — 09 Jul 2025

📋

Ivanti, Fortinet, Splunk Release Security Updates

SECURITYWEEK.COM — 09 Jul 2025

📋

ICS Patch Tuesday: Vulnerabilities Addressed by Siemens, Schneider, Phoenix Contact

SECURITYWEEK.COM — 09 Jul 2025

📋

Microsoft confirms Windows Server Update Services (WSUS) sync is broken

BLEEPINGCOMPUTER.COM — 09 Jul 2025

📢

Yet Another Strava Privacy Leak

SCHNEIER.COM — 2025-07-09

📢

DoNot APT Expands Operations, Targets European Foreign Ministries with LoptikMod Malware

THEHACKERNEWS.COM — 09 Jul 2025

📢

HPE security advisory (AV25-409)

CYBER.GC.CA — 2025-07-09

📢

ServiceNow security advisory (AV25-410)

CYBER.GC.CA — 2025-07-09

📢

GitLab security advisory (AV25-412)

CYBER.GC.CA — 2025-07-09

📢

Citrix security advisory (AV25-411)

CYBER.GC.CA — 2025-07-09

📢

Jenkins security advisory (AV25-413)

CYBER.GC.CA — 2025-07-09

📢

Palo Alto Networks security advisory (AV25-414)

CYBER.GC.CA — 2025-07-09

🔥

Canadian Electric Utility Says Power Meters Disrupted by Cyberattack

SECURITYWEEK.COM — 09 Jul 2025

🔥

Chinese Hacker Xu Zewei Arrested for Ties to Silk Typhoon Group and U.S. Cyber Attacks

THEHACKERNEWS.COM — 09 Jul 2025

🔥

Psychological Contract Breach and the Power of Security Culture - Research Insights

KNOWBE4.COM — 09 Jul 2025

🔥

Heim & Haus: Cyberangriff auf großen Hersteller von Bauelementen

CSOONLINE.COM — 09 Jul 2025

🔥

Ingram Micro starts restoring systems after ransomware attack

BLEEPINGCOMPUTER.COM — 09 Jul 2025

🔥

AiLock ransomware: What you need to know

FORTRA.COM — 09 Jul 2025

🔥

Bitcoin Depot breach exposes data of nearly 27,000 crypto users

BLEEPINGCOMPUTER.COM — 09 Jul 2025

🔥

Qantas confirms data breach impacts 5.7 million customers

BLEEPINGCOMPUTER.COM — 09 Jul 2025

🕵️

ISC Stormcast For Wednesday, July 9th, 2025 https://isc.sans.edu/podcastdetail/9518, (Wed, Jul 9th)

ISC.SANS.EDU — 09 Jul 2025

🕵️

Alleged Chinese State Hacker Wanted by US Arrested in Italy

SECURITYWEEK.COM — 09 Jul 2025

🕵️

Act now: Secure Boot certificates expire in June 2026 - Windows IT Pro Blog

INFOSEC.PUB — 9 Jul 2025

🕵️

Building Trust in the Digital Age

PALOALTONETWORKS.COM — 09 Jul 2025

🕵️

SolarWinds Settlement, Upgrade Your Leadership Instincts to Build Your Legacy - BSW #403

YOUTUBE.COM — 2025-07-09

🕵️

Anatsa Android Banking Malware Targets Users in the U.S. and Canada via Google Play

GBHACKERS.COM — 09 Jul 2025

🕵️

XwormRAT Hackers Leverage Code Injection for Sophisticated Malware Deployment

GBHACKERS.COM — 09 Jul 2025

🕵️

Google Launches Advanced Protection for Vulnerable Users via Chrome on Android

GBHACKERS.COM — 09 Jul 2025

🕵️

Samsung Announces Security Improvements for Galaxy Smartphones

SECURITYWEEK.COM — 09 Jul 2025

🕵️

U.S. Sanctions North Korean Andariel Hacker Behind Fraudulent IT Worker Scheme

THEHACKERNEWS.COM — 09 Jul 2025

🕵️

FUNNULL Uses Amazon and Microsoft Cloud to Hide Malicious Infrastructure

GBHACKERS.COM — 09 Jul 2025

🕵️

SparkKitty Malware Steals Photos from iOS and Android Devices

GBHACKERS.COM — 09 Jul 2025

🕵️

What are You Working on Wednesday

INFOSEC.PUB — 9 Jul 2025

🕵️

Treasury sanctions North Korean over IT worker malware scheme

BLEEPINGCOMPUTER.COM — 09 Jul 2025

🕵️

Reflectiz Joins the Datadog Marketplace

GBHACKERS.COM — 09 Jul 2025

🕵️

Microsoft expands Zero Trust workshop to cover network, SecOps, and more

MICROSOFT.COM — 09 Jul 2025

🕵️

News alert: Reflectiz expands Datadog’s security scope to cover client-side web vulnerabilities

LASTWATCHDOG.COM — 09 Jul 2025

🕵️

MY TAKE: Microsoft gave rise to the ‘knowledge worker’—and now it’s rendering them obsolete

LASTWATCHDOG.COM — 09 Jul 2025

🌐

How To Automate Ticket Creation, Device Identification and Threat Triage With Tines

THEHACKERNEWS.COM — 09 Jul 2025

🌐

Cyber threat bulletin: Iranian cyber threat to Canada from Israel-Iran conflict

CYBER.GC.CA — 2025-07-09

🎙️

How CISOs are training the next generation of cyber leaders

CSOONLINE.COM — 09 Jul 2025

📡

How to protect your cell phone number from SIM swap attacks

TECHCRUNCH.COM — 09 Jul 2025

📡

Is a Gemini AI update about to kill privacy on your Android device? | Kaspersky official blog

KASPERSKY.COM — 09 Jul 2025

📡

Get your exhibit table at TechCrunch Disrupt 2025

TECHCRUNCH.COM — 09 Jul 2025

📡

Setting up Your Own Certificate Authority for Development: Why and How., (Wed, Jul 9th)

ISC.SANS.EDU — 09 Jul 2025

📡

Jack Dorsey says his ‘secure’ new Bitchat app has not been tested for security

TECHCRUNCH.COM — 09 Jul 2025

📡

Google reveals details on Android’s Advanced Protection for Chrome

BLEEPINGCOMPUTER.COM — 09 Jul 2025

📡

Browser extensions turn nearly 1 million browsers into website-scraping bots

ARSTECHNICA.COM — 09 Jul 2025

📡

As Texas floods, so does the internet – with dangerous lies

GRAHAMCLULEY.COM — 09 Jul 2025

📡

Microsoft Authenticator on iOS moves backups fully to iCloud

BLEEPINGCOMPUTER.COM — 09 Jul 2025