🐛 COMMON VULNERABILITIES AND EXPOSURES 5[−]
9 JulFortiWeb SQL Injection Vulnerability Allows Attackers to Execute Malicious SQL CommandsA critical security vulnerability has been discovered in Fortinet’s FortiWeb web application firewall that allows unauthenticated attackers to execute malicious SQL commands through the device’s graphical user interface. The flaw, designated as CVE-2025-25257, po…GBHACKERS.COM
9 JulCitrix Windows Virtual Delivery Agent Vulnerability Lets Attackers Escalate to SYSTEM PrivilegesA critical security vulnerability has been discovered in Citrix’s Windows Virtual Delivery Agent that could allow attackers with low-level system access to escalate their privileges to SYSTEM level, potentially granting them complete control over affected systems. The vulne…GBHACKERS.COM
9 JulWindows BitLocker Vulnerability Lets Attackers Bypass Security ProtectionsMicrosoft has disclosed a significant security vulnerability in Windows BitLocker that allows attackers to bypass critical security protections through a physical attack vector. The vulnerability, designated as CVE-2025-48818, was officially released on July 8, 2025, and affects …GBHACKERS.COM
9 JulMicrosoft Fixes Wormable Remote Code Execution Flaw in Windows and ServerMicrosoft has released critical security updates addressing a severe remote code execution vulnerability that could allow attackers to execute malicious code across networks without user interaction. The vulnerability, tracked as CVE-2025-47981, affects Windows client machines ru…GBHACKERS.COM
9 Jul KEVExploit details released for Citrix Bleed 2 flaw affecting NetScalerSecurity researchers have released a technical analysis and proof-of-concept exploit code for a critical vulnerability fixed last month in Citrix NetScaler appliances that is suspected to have been exploited in the wild, though in a limited capacity and without official confirmat…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 22[−]
9 Jul KEVMicrosoft Patch Tuesday, July 2025 EditionMicrosoft today released updates to fix at least 137 security vulnerabilities in its Windows operating systems and supported software. None of the weaknesses addressed this month are known to be actively exploited, but 14 of the flaws earned Microsoft's most-dire "critical" ratin…KREBSONSECURITY.COM
9 JulZoom for Windows Flaw Allows Attackers to Trigger DoS AttacksSecurity researchers have uncovered two significant vulnerabilities in Zoom Clients for Windows, exposing users to potential Denial of Service (DoS) attacks. The flaws, identified as classic buffer overflow vulnerabilities, could allow an authorized user to disrupt Zoom services …GBHACKERS.COM
9 JulAI Threats, Enterprise Security, and Google's Confusing Gemini Release: Cybersecurity TodayIn this episode of 'Cybersecurity Today,' host Jim Love discusses the recent deep fake attack on high-ranking US government officials using AI voice cloning technology. The conversation highlights the growing ease and risks of AI-generated impersonations. The episode also covers …CYBERSECURITYTODAY.LIBSYN.COM
9 JulSplunk SOAR Addresses Vulnerabilities in Third-Party Packages – Update NowSplunk has published a critical security advisory revealing that its Security Orchestration, Automation and Response (SOAR) platform was shipping vulnerable versions of more than a dozen popular open-source packages—some with publicly available exploits. Advisory SVD-2025-0712 co…GBHACKERS.COM
9 JulMicrosoft Patches 130 Vulnerabilities, Including Critical Flaws in SPNEGO and SQL ServerFor the first time in 2025, Microsoft's Patch Tuesday updates did not bundle fixes for exploited security vulnerabilities, but acknowledged one of the addressed flaws had been publicly known. The patches resolve a whopping 130 vulnerabilities, along with 10 other non-Microsoft CV…THEHACKERNEWS.COM
9 JulTrump seeks unprecedented $1.23 billion cut to federal cyber budgetDonald Trump’s sprawling tax bill, which he signed on July 4, contained a few noteworthy cyber funding items , including $250 million for US Cyber Command to spend on “artificial intelligence lines of effort.” But the administration’s next and more significant funding effort is t…CSOONLINE.COM
9 JulUnpatched Ruckus Vulnerabilities Allow Wireless Environment HackingMultiple vulnerabilities in Ruckus Wireless management products could be exploited to fully compromise the managed environments. The post Unpatched Ruckus Vulnerabilities Allow Wireless Environment Hacking appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulIBM Power11 challenges x86 and GPU giants with security-first server strategyWith the launch of Power11 servers, IBM is shifting the discussion from raw performance numbers to security and reliability, highlighting its claim of zero planned downtime and quick ransomware detection. One of the key highlights of the platform is a one-minute guaranteed ransom…CSOONLINE.COM
9 JulMicrosoft 365 PDF Export Feature Vulnerable to LFI – Sensitive Data at RiskA critical security vulnerability in Microsoft 365’s PDF export functionality has been discovered and subsequently patched, highlighting significant risks to sensitive enterprise data. The vulnerability, which earned its discoverer a $3,000 bounty from Microsoft’s Sec…GBHACKERS.COM
9 JulHackers Exploit IIS Machine Keys to Breach OrganizationsA sophisticated campaign by an initial access broker (IAB) group exploiting leaked Machine Keys from ASP.NET websites to gain unauthorized access to targeted organizations. The threat group, tracked as TGR-CRI-0045, has been active since October 2024 with a significant surge in a…GBHACKERS.COM
9 JulTrend Micro flags BERT: A rapidly growing ransomware threatA new threat actor, BERT, has emerged as a fast-moving ransomware group that has rapidly expanded its activity across Asia, Europe, and the US. Discovered in April, BERT is targeting both Windows and Linux systems. Tracked by Trend Micro as “Water Pombero,” the group is targeting…CSOONLINE.COM
9 JulVerified, featured, and malicious: RedDirection campaign reveals browser marketplace failuresA widespread browser hijacking campaign has infected over 2.3 million users through 18 malicious extensions available on Google Chrome and Microsoft Edge. Dubbed “RedDirection” by researchers at Koi Security, the operation exploited trust indicators such as verified badges, high …CSOONLINE.COM
9 JulNippon Steel Subsidiary Blames Data Breach on Zero-Day AttackNippon Steel Solutions has disclosed a data breach that resulted from the exploitation of a zero-day in network equipment. The post Nippon Steel Subsidiary Blames Data Breach on Zero-Day Attack appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulTapTrap Android Exploit Allows Malicious Apps to Bypass PermissionsA new Android vulnerability called TapTrap that allows malicious apps to bypass the operating system’s permission system without requiring any special permissions themselves. The attack exploits activity transition animations—a core feature of Android’s user interface…GBHACKERS.COM
9 JulThe MFA You Trust Is Lying to You – and Here's How Attackers Exploit ItMFA Authenticator apps aren't cutting it anymore. Attackers are bypassing legacy MFA with fake sites and real-time phishing. Token Ring and BioStick stop them cold—with fingerprint-bound hardware. Learn more from Token. [...]BLEEPINGCOMPUTER.COM
9 JulNew ServiceNow flaw lets attackers enumerate restricted dataA new vulnerability in ServiceNow, dubbed Count(er) Strike, allows low-privileged users to extract sensitive data from tables to which they should not have access. [...]BLEEPINGCOMPUTER.COM
9 JulSupply Chain Attack Unleashed via Compromised VS Code ExtensionA sophisticated supply chain attack targeting cryptocurrency developers through the compromise of ETHcode, a legitimate Visual Studio Code extension with nearly 6,000 installations. The attack, executed through a malicious GitHub pull request, demonstrates how threat actors can w…GBHACKERS.COM
9 JulRuckus Networks leaves severe flaws unpatched in management devicesMultiple vulnerabilities that remain unpatched in Ruckus Wireless management products could be exploited to fully compromise the network environment they serve. [...]BLEEPINGCOMPUTER.COM
9 JulGold Melody IAB Exploits Exposed ASP.NET Machine Keys for Unauthorized Access to TargetsThe Initial Access Broker (IAB) known as Gold Melody has been attributed to a campaign that exploits leaked ASP.NET machine keys to obtain unauthorized access to organizations and peddle that access to other threat actors. The activity is being tracked by Palo Alto Networks Unit …THEHACKERNEWS.COM
9 JulWelcoming Push Security to Have I Been Pwned's Partner ProgramPresently sponsored by: Malwarebytes Browser Guard blocks phishing, ads, scams, and trackers for safer, faster browsing As we gradually roll out HIBP’s Partner Program , we’re aiming to deliver targeted solutions that bridge the gap between being at risk and being p…TROYHUNT.COM
9 JulSmashing Security podcast #425: Call of Duty: From pew-pew to pwnedIn episode 425 of "Smashing Security", Graham reveals how "Call of Duty: WWII" has been weaponised - allowing hackers to hijack your entire PC during online matches, thanks to ancient code and Microsoft’s Game Pass. Meanwhile, Carole digs into a con targeting the recently incarce…GRAHAMCLULEY.COM
9 JulMultiple Vulnerabilities in Mozilla Thunderbird Could Allow for Arbitrary Code ExecutionMultiple vulnerabilities have been discovered in Mozilla Thunderbird, the most severe of which could allow for arbitrary code execution. Mozilla Thunderbird is an email client. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code exec…CISECURITY.ORG
📋 SECURITY BULLETINS 4[−]
9 JulSplunk Enterprise Addresses Vulnerabilities in Bundled Third-Party Packages – Update NowSplunk has released critical security updates for its Enterprise platform, addressing multiple vulnerabilities in bundled third-party packages across several product versions. The company issued Advisory SVD-2025-0710 on July 7, 2025, urging immediate updates to protect against v…GBHACKERS.COM
9 JulIvanti, Fortinet, Splunk Release Security UpdatesIvanti, Fortinet, and Splunk have released patches for critical- and high-severity vulnerabilities in their products. The post Ivanti, Fortinet, Splunk Release Security Updates appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulICS Patch Tuesday: Vulnerabilities Addressed by Siemens, Schneider, Phoenix ContactIndustrial solutions providers Siemens, Schneider Electric and Phoenix Contact have released July 2025 Patch Tuesday ICS security advisories. The post ICS Patch Tuesday: Vulnerabilities Addressed by Siemens, Schneider, Phoenix Contact appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulMicrosoft confirms Windows Server Update Services (WSUS) sync is brokenMicrosoft has confirmed a widespread issue in Windows Server Update Services (WSUS) that prevents organizations from syncing with Microsoft Update and deploying the latest Windows updates. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 8[−]
9 JulYet Another Strava Privacy LeakThis time it’s the Swedish prime minister’s bodyguards . (Last year, it was the US Secret Service and Emmanuel Macron’s bodyguards . in 2018, it was secret US military bases .) This is ridiculous. Why do people continue to make their data public?SCHNEIER.COM
9 JulDoNot APT Expands Operations, Targets European Foreign Ministries with LoptikMod MalwareA threat actor with suspected ties to India has been observed targeting a European foreign affairs ministry with malware capable of harvesting sensitive data from compromised hosts. The activity has been attributed by Trellix Advanced Research Center to an advanced persistent thr…THEHACKERNEWS.COM
🔥 INCIDENT REPORTING 8[−]
9 JulCanadian Electric Utility Says Power Meters Disrupted by CyberattackNova Scotia Power is notifying individuals affected by the recent data breach, including in the United States. The post Canadian Electric Utility Says Power Meters Disrupted by Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulChinese Hacker Xu Zewei Arrested for Ties to Silk Typhoon Group and U.S. Cyber AttacksA Chinese national has been arrested in Milan, Italy, for his alleged links to a state-sponsored hacking group known as Silk Typhoon and for carrying out cyber attacks against American organizations and government agencies. The 33-year-old, Xu Zewei, has been charged with nine co…THEHACKERNEWS.COM
9 JulPsychological Contract Breach and the Power of Security Culture - Research InsightsEmployees are expected to behave securely, and the definition of “securely” is often written down in a myriad of security policies. Yet, people do not always comply with security policies or make use of available tools.KNOWBE4.COM
9 JulHeim & Haus: Cyberangriff auf großen Hersteller von BauelementenDer Produzent für Bauelemente Heim & Haus ist Opfer einer Cyberattacke. www.heimhaus.de Heim & Haus zählt zu den größten deutschen Produzenten für Bauelemente wie Fenster, Dächer, Markisen und Rollläden. Das Unternehmen informiert nun seine Kunden auf seiner Website , das…CSOONLINE.COM
9 JulIngram Micro starts restoring systems after ransomware attackIngram Micro has begun restoring systems and business services after suffering a massive SafePay ransomware attack right before the July 4th holiday. [...]BLEEPINGCOMPUTER.COM
9 JulAiLock ransomware: What you need to knowThe AiLock ransomware gang gives its victims just 72 hours to respond and five days to pay up... or else. If you don’t comply? They will grass you up to regulators, email your competitors, and leak your data for good measure. What a lovely bunch of cybercriminals... Read more in …FORTRA.COM
9 JulBitcoin Depot breach exposes data of nearly 27,000 crypto usersBitcoin Depot, an operator of Bitcoin ATMs, is notifying customers of a data breach incident that has exposed their sensitive information. [...]BLEEPINGCOMPUTER.COM
9 JulQantas confirms data breach impacts 5.7 million customersAustralian airline Qantas has confirmed that 5.7 million people have been impacted by a recent data breach, in which threat actors stole customers' data. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 18[−]
9 JulISC Stormcast For Wednesday, July 9th, 2025 https://isc.sans.edu/podcastdetail/9518, (Wed, Jul 9th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
9 JulAlleged Chinese State Hacker Wanted by US Arrested in ItalyXu Zewei has been arrested on charges that he is a member of the Chinese state-sponsored hacking group Hafnium (Silk Typhoon). The post Alleged Chinese State Hacker Wanted by US Arrested in Italy appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulAct now: Secure Boot certificates expire in June 2026 - Windows IT Pro Blogsubmitted by cm0002 to cybersecurity 2 points | 0 comments https://techcommunity.microsoft.com/blog/windows-itpro-blog/act-now-secure-boot-certificates-expire-in-june-2026/4426856INFOSEC.PUB
9 JulBuilding Trust in the Digital AgeRegulatory frameworks in Europe call for solutions delivering strong cybersecurity, operational resilience and support organization's control over their data. The post Building Trust in the Digital Age appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
9 JulSolarWinds Settlement, Upgrade Your Leadership Instincts to Build Your Legacy - BSW #403SEC settles with SolarWinds. We react! In the leadership and communications section, The Skills and Habits Aspiring CEOs Need to Build, Why People Really Quit — And How Great Managers Make Them Want to Stay, The Small Actions That Become Your Legacy, and more! Visit https://www.s…YOUTUBE.COM
9 JulAnatsa Android Banking Malware Targets Users in the U.S. and Canada via Google PlayA sophisticated new campaign involving the Anatsa Android banking trojan, marking its third major offensive against mobile banking customers in the United States and Canada. This latest operation demonstrates the malware’s evolving threat landscape and its operators’ …GBHACKERS.COM
9 JulXwormRAT Hackers Leverage Code Injection for Sophisticated Malware DeploymentA sophisticated new distribution method for XwormRAT malware that leverages steganography techniques to hide malicious code within legitimate files. This discovery highlights the evolving tactics of cybercriminals who are increasingly using advanced obfuscation methods to bypass …GBHACKERS.COM
9 JulGoogle Launches Advanced Protection for Vulnerable Users via Chrome on AndroidGoogle has announced the expansion of its Advanced Protection Program to Chrome on Android, providing enhanced security features specifically designed for high-risk users including journalists, elected officials, and public figures. The new device-level security setting, availabl…GBHACKERS.COM
9 JulSamsung Announces Security Improvements for Galaxy SmartphonesNew Samsung Galaxy features include protections for on-device AI, expanded cross-device threat detection, and quantum-resistant encryption for network security. The post Samsung Announces Security Improvements for Galaxy Smartphones appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulU.S. Sanctions North Korean Andariel Hacker Behind Fraudulent IT Worker SchemeThe U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) on Tuesday sanctioned a member of a North Korean hacking group called Andariel for their role in the infamous remote information technology (IT) worker scheme. The Treasury said Song Kum Hyok, a 38-year…THEHACKERNEWS.COM
9 JulFUNNULL Uses Amazon and Microsoft Cloud to Hide Malicious InfrastructureA sophisticated threat network called “Triad Nexus,” which operates through the FUNNULL content delivery network (CDN) to hide malicious infrastructure within major Western cloud providers including Amazon and Microsoft. The operation, led by sanctioned individual Liz…GBHACKERS.COM
9 JulSparkKitty Malware Steals Photos from iOS and Android DevicesA sophisticated Trojan malware campaign has been targeting mobile device users across iOS and Android platforms since February 2024, with cybersecurity researchers identifying a significant escalation in photo theft capabilities that poses particular risks to cryptocurrency users…GBHACKERS.COM
9 JulWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 2 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
9 JulTreasury sanctions North Korean over IT worker malware schemeThe U.S. Department of the Treasury sanctioned cyber actor Song Kum Hyok for his association with North Korea's hacking group Andariel and for facilitating IT worker schemes that generated revenue for the Pyongyang regime. [...]BLEEPINGCOMPUTER.COM
9 JulReflectiz Joins the Datadog MarketplaceReflectiz, a leading cybersecurity company specializing in web exposure management, today announced a new integration with Datadog, Inc. (NASDAQ: DDOG), the monitoring and security platform for cloud applications. This integration combines advanced website security intelligence w…GBHACKERS.COM
9 JulMicrosoft expands Zero Trust workshop to cover network, SecOps, and moreThe Microsoft Zero Trust workshop has been expanded to cover all six pillars of Zero Trust security, providing a comprehensive guide for organizations to modernize their security posture. The post Microsoft expands Zero Trust workshop to cover network, SecOps, and more appeared f…MICROSOFT.COM
9 JulNews alert: Reflectiz expands Datadog’s security scope to cover client-side web vulnerabilitiesBOSTON, July 9, 2025, CyberNewswire — Reflectiz , a leading cybersecurity company specializing in web exposure management, today announced a new integration with Datadog , Inc. (NASDAQ: DDOG), the monitoring and security platform for cloud applications. This integration com…LASTWATCHDOG.COM
9 JulMY TAKE: Microsoft gave rise to the ‘knowledge worker’—and now it’s rendering them obsoleteWhen Chris Sacca declared that AI would decimate professional services, he wasn’t exaggerating. He was just early. Related: Are we Super F**ked by AI? Now, with Microsoft laying off 15,000 workers in two months , we have confirmation that this … (more…) The post MY TAKE: Mi…LASTWATCHDOG.COM
🌐 CYBER THREAT LANDSCAPE 2[−]
9 JulHow To Automate Ticket Creation, Device Identification and Threat Triage With TinesRun by the team at workflow orchestration and AI platform Tines, the Tines library features over 1,000 pre-built workflows shared by security practitioners from across the community - all free to import and deploy through the platform’s Community Edition. A recent standout is a w…THEHACKERNEWS.COM
🎙️ PODCASTS 1[−]
9 JulHow CISOs are training the next generation of cyber leadersIt’s easy for cybersecurity leaders to get caught up on the day-to-day of making sure teams are delivering and risks are being managed that the opportunity to prepare those same professionals to become the next generation of leaders is missed. But with cybersecurity now firmly po…CSOONLINE.COM
📡 INFOSEC NEWS 9[−]
9 JulHow to protect your cell phone number from SIM swap attacksThese carrier security settings can prevent your phone number from being hijacked or stolen.TECHCRUNCH.COM
9 JulIs a Gemini AI update about to kill privacy on your Android device? | Kaspersky official blogA Google Gemini update gives the AI app access to your Phone, Messages, WhatsApp, and Utilities data. A step-by-step guide for Android users to protect their privacy.KASPERSKY.COM
9 JulGet your exhibit table at TechCrunch Disrupt 2025Time is running out to secure your exhibit table at TechCrunch Disrupt 2025, October 27-29, at Moscone West in San Francisco. This is your chance to get your startup in front of 10,000+ startup pioneers, VC leaders, and tech enthusiasts. Learn more and grab your table here before…TECHCRUNCH.COM
9 JulSetting up Your Own Certificate Authority for Development: Why and How., (Wed, Jul 9th)There are several reasons why one would set up an internal certificate authority. Some are configured to support strong authentication schemes, some for additional flexibility and convenience. I am going to cover the second part. In particular, it can be helpful for developers to…ISC.SANS.EDU
9 JulJack Dorsey says his ‘secure’ new Bitchat app has not been tested for securityDorsey admitted that his new messaging app had not been reviewed or tested for security issues prior to its launch.TECHCRUNCH.COM
9 JulGoogle reveals details on Android’s Advanced Protection for ChromeGoogle is sharing more information on how Chrome operates when Android mobile users enable Advanced Protection, highlighting strong security improvements. [...]BLEEPINGCOMPUTER.COM
9 JulBrowser extensions turn nearly 1 million browsers into website-scraping botsExtensions load unknown sites into invisible Windows. What could go wrong?ARSTECHNICA.COM
9 JulAs Texas floods, so does the internet – with dangerous liesAs Texas reels from devastating floods, conspiracy theorists are hard at work.GRAHAMCLULEY.COM
9 JulMicrosoft Authenticator on iOS moves backups fully to iCloudMicrosoft is rolling out a new backup system in September for its Authenticator app on iOS, removing the requirement to use a Microsoft personal account to back up TOTP secrets and account names. [...]BLEEPINGCOMPUTER.COM