74Articles
8Categories
2025-07-14Date
🚨 CISA KEV 2[−]
14 Jul KEVCitrixBleed 2 Flaw Poses Unacceptable Risk: CISACISA considers the recently disclosed CitrixBleed 2 vulnerability an unacceptable risk and has added it to the KEV catalog. The post CitrixBleed 2 Flaw Poses Unacceptable Risk: CISA appeared first on SecurityWeek .SECURITYWEEK.COM
14 Jul KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation.  CVE-2025-47812 Wing FTP Server Improper Neutralization of Null Byte or NUL Character Vulnerability These types of vulnerabilities are freque…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
14 JulServiceNow-Leck ermöglicht Datendiebstahlsrcset="https://b2b-contenthub.com/wp-content/uploads/2025/07/shutterstock_2539620143.jpg?quality=50&strip=all 5689w, https://b2b-contenthub.com/wp-content/uploads/2025/07/shutterstock_2539620143.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 22[−]
14 JulSecurity vulnerability on U.S. trains that let anyone activate the brakes on the rear car, was known for 13 years — operators refused to fix the issue until nowsubmitted by cm0002 to cybersecurity 3 points | 0 comments https://www.tomshardware.com/tech-industry/cyber-security/security-vulnerability-on-u-s-trains-that-let-anyone-activate-the-brakes-on-the-rear-car-was-known-for-13-years-operators-refused-to-fix-the-issue-until-nowINFOSEC.PUB
14 JulWinRAR 0‑Day Exploit Listed for $80K on Dark Web ForumA sophisticated zero-day exploit targeting WinRAR, one of the world’s most popular file compression utilities, has surfaced on a dark web marketplace with a hefty price tag of $80,000. The previously unknown remote code execution (RCE) vulnerability affects both the latest …GBHACKERS.COM
14 JuleSIM Vulnerability in Kigen's eUICC Cards Exposes Billions of IoT Devices to Malicious AttacksCybersecurity researchers have discovered a new hacking technique that exploits weaknesses in the eSIM technology used in modern smartphones, exposing users to severe risks. The issues impact the Kigen eUICC card. According to the Irish company's website, more than two billion SI…THEHACKERNEWS.COM
14 JulGrok-4 Jailbroken Using Echo Chamber and Crescendo Exploit ComboSecurity researchers have successfully demonstrated a sophisticated jailbreak attack against Grok-4, X’s advanced AI language model, by combining two powerful exploit techniques known as Echo Chamber and Crescendo. This breakthrough highlights growing concerns about the vul…GBHACKERS.COM
14 JulUrgent Cyber Threats: Citrix Exploit, Fortinet RCE, and AI VulnerabilitiesIn this episode of 'Cybersecurity Today,' hosted by David Shipley from the Exchange Security 2025 conference, urgent updates are provided on critical cybersecurity vulnerabilities and threats. CISA mandates a 24-hour patch for Citrix NetScaler due to a severe vulnerability active…CYBERSECURITYTODAY.LIBSYN.COM
14 JulKongTuke Campaign Deploys Modified Interlock RAT Using FileFix Method Against Windows EnvironmentsResearchers from The DFIR Report, collaborating with Proofpoint, have uncovered a resilient PHP-based variant of the Interlock ransomware group’s remote access trojan (RAT), marking a significant evolution from the previously documented JavaScript-driven NodeSnake. This ada…GBHACKERS.COM
14 JulPutting AI-assisted ‘vibe hacking’ to the testAttackers are increasingly leveraging large language models (LLMs) to enhance attack workflows, but for all their advances in helping to write malicious scripts, these tools are not yet ready to turn run-of-the-mill cybercriminals into exploit developers. According to tests perfo…CSOONLINE.COM
14 JulThreats Actors Use Sophisticated Hacking Tools to Destroy Organizations Critical InfrastructureThreat actors, ranging from state-sponsored organizations to non-state actors, are using sophisticated cyber weapons to breach and destroy vital infrastructure in a time when digital and physical security are becoming more intertwined. These tools, often manifesting as malware ag…GBHACKERS.COM
14 Jul8 tough trade-offs every CISO must navigateOne key to success in the C-suite is being able to balance multiple competing interests. And while each executive faces high-pressure choices, CISOs in particular contend with trade-offs that could have monumental consequences for their businesses and their careers. Increasingly …CSOONLINE.COM
14 JulRenderShock 0-Click Exploit Executes Payloads Silently via Background ProcessA new class of cyberattack called RenderShock has been identified that can compromise enterprise systems without requiring any user interaction, exploiting the very productivity features designed to help workers preview and process files automatically. Unlike traditional malware …GBHACKERS.COM
14 JulHackers Weaponize Compiled HTML Help to Deliver Malicious PayloadThreat actors have exploited Microsoft Compiled HTML Help (CHM) files to distribute malware, with a notable sample named deklaracja.chm uploaded to VirusTotal from Poland. This CHM file, a binary container for compressed HTML and associated objects, serves as a delivery vehicle f…GBHACKERS.COM
14 JulNew Forensic Method Reveals Hidden Traces of RDP Exploits by HackersCybersecurity researchers have unveiled advanced techniques for tracking attackers who use Remote Desktop Protocol (RDP) to move laterally through compromised networks, turning the very technology hackers rely on into a digital fingerprint that reveals their every move. The break…GBHACKERS.COM
14 JulNew Grok-4 AI breached within 48 hours using ‘whispered’ jailbreaksxAI’s newly launched Grok-4 is already showing cracks in its defenses, falling to recently revealed multi-conversational, suggestive jailbreak techniques. Two days after Elon Musk’s latest edition of large language models (LLMs) hit the streets, researchers at NeuralTrust managed…CSOONLINE.COM
14 JulBusiness Logic Vulnerability in Dell’s Payment API — Reported via Bugcrowd | by Yeswehack | May, 2025 | InfoSec Write-upssubmitted by kid to cybersecurity 1 points | 0 comments https://infosecwriteups.com/business-logic-vulnerability-in-dells-payment-api-reported-via-bugcrowd-f2dc2192227cSH.ITJUST.WORKS
14 JulGigabyte UEFI Firmware Vulnerability Allows Code Execution in SMM Privileged ModeCritical security vulnerabilities in Gigabyte motherboard firmware have been disclosed that allow attackers to execute arbitrary code in System Management Mode (SMM), the most privileged execution level on x86 processors. The flaws, identified by security researchers at Binarly R…GBHACKERS.COM
14 Jul⚡ Weekly Recap: Scattered Spider Arrests, Car Exploits, macOS Malware, Fortinet RCE and MoreIn cybersecurity, precision matters—and there’s little room for error. A small mistake, missed setting, or quiet misconfiguration can quickly lead to much bigger problems. The signs we’re seeing this week highlight deeper issues behind what might look like routine incidents: outd…THEHACKERNEWS.COM
14 JulThe 10 most common IT security mistakesEncrypted files and a text file containing a ransom note clearly indicate that a company has fallen victim to a cyberattack. But this is only the end of a long chain of attacks. The perpetrators often move around the network unhindered and unnoticed for several weeks or months. I…CSOONLINE.COM
14 JulSecurity vulnerability on U.S. trains that let anyone activate the brakes on the rear car was known for 13 years — operators refused to fix the issue until nowsubmitted by floofloof to cybersecurity 3 points | 0 comments https://www.tomshardware.com/tech-industry/cyber-security/security-vulnerability-on-u-s-trains-that-let-anyone-activate-the-brakes-on-the-rear-car-was-known-for-13-years-operators-refused-to-fix-the-issue-until-nowSH.ITJUST.WORKS
14 JulTrain Hack Gets Proper Attention After 20 Years: ResearcherA vulnerability affecting systems named End-of-Train and Head-of-Train can be exploited by hackers to cause trains to brake. The post Train Hack Gets Proper Attention After 20 Years: Researcher appeared first on SecurityWeek .SECURITYWEEK.COM
14 JulMonzy Merza, How Much AI is Too Much, and the Weekly News - Monzy Merza - ESW #415Segment 1: Interview with Monzy Merza - There is a Right and Wrong Way to use AI in the SOC In the rush to score AI funding dollars, a lot of startups build a basic wrapper around existing generative AI services like those offered by OpenAI and Anthropic. As a result, these servi…YOUTUBE.COM
14 JulEpisource is notifying millions of people that their health data was stolenThe UnitedHealth-owned medical coding service was hacked earlier this year by a ransomware gang.TECHCRUNCH.COM
14 JulUK launches vulnerability research program for external expertsUK's National Cyber Security Centre (NCSC) has announced a new Vulnerability Research Initiative (VRI) that aims to strengthen relations with external cybersecurity experts. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 8[−]
14 JulCyberschutz-Verpflichtung für Firmen ab 2026srcset="https://b2b-contenthub.com/wp-content/uploads/2025/07/shutterstock_2507986833.jpg?quality=50&strip=all 7063w, https://b2b-contenthub.com/wp-content/uploads/2025/07/shutterstock_2507986833.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
14 JulTrump administration to spend $1 billion on ‘offensive’ hacking operationsA top Democrat criticized the move to spend a billion on offensive hacking operations as the budget guts a billion from U.S. cyber defense.TECHCRUNCH.COM
🔥 INCIDENT REPORTING 13[−]
14 JulLouis Vuitton Suffers Data Breach—Customer Information StolenLuxury fashion house Louis Vuitton has confirmed that customer data from its UK operations was compromised in a cyber-attack, marking the latest in a series of high-profile retail breaches targeting major brands. The incident, which occurred on July 2, 2025, resulted in unauthori…GBHACKERS.COM
14 JulElmo has been hacked, claims Trump is in Epstein files, calls for Jews to be exterminatedOver the weekend, Sesame Street star Elmo's verified account was apparently hijacked and used to post a string of profane messages, including one describing Donald Trump as a “child f****r” and referencing Jeffrey Epstein.GRAHAMCLULEY.COM
14 JulLouis Vuitton Data Breach Hits Customers in Several CountriesLouis Vuitton customers in the UK, South Korea, Turkey and possibly other countries are being notified of a data breach. The post Louis Vuitton Data Breach Hits Customers in Several Countries appeared first on SecurityWeek .SECURITYWEEK.COM
14 JulDark Web Profile: Arkana Ransomware - SOCRadar® Cyber Intelligence Inc.submitted by kid to cybersecurity 1 points | 0 comments https://socradar.io/dark-web-profile-arkana-ransomware/SH.ITJUST.WORKS
14 JulRansomware Delivered Through GitHub: A PowerShell-Powered Attacksubmitted by kid to cybersecurity 4 points | 0 comments https://www.sonicwall.com/blog/ransomware-delivered-through-github-a-powershell-powered-attackSH.ITJUST.WORKS
14 JulAlabama city hack exposed financial data, citizens​ | Cybernewssubmitted by kid to cybersecurity 4 points | 0 comments https://cybernews.com/security/gardendale-alabama-ransomware-attack/SH.ITJUST.WORKS
14 JulNew Interlock RAT Variant Distributed via FileFix AttacksThe Interlock ransomware group has partnered with the KongTuke TDS to distribute a new RAT variant via FileFix attacks. The post New Interlock RAT Variant Distributed via FileFix Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
14 JulElmo’s X account hacked to publish racist and antisemetic postsA hacker compromised Elmo's X account on Sunday and published abusive posts.TECHCRUNCH.COM
14 JulGlobal Louis Vuitton data breach impacts UK, South Korea, and Turkeysubmitted by kid to cybersecurity 1 points | 0 comments https://securityaffairs.com/179908/data-breach/global-louis-vuitton-data-breach-impacts-uk-south-korea-and-turkey.htmlSH.ITJUST.WORKS
14 JulInterlock Ransomware Unleashes New RAT in Widespread Campaign - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/interlock-ransomware-new-rat/SH.ITJUST.WORKS
14 JulInterlock ransomware adopts FileFix method to deliver malwareHackers have adopted the new technique called 'FileFix' in Interlock ransomware attacks to drop a remote access trojan (RAT) on targeted systems. [...]BLEEPINGCOMPUTER.COM
14 JulThe Unusual Suspect: Git ReposWhile phishing and ransomware dominate headlines, another critical risk quietly persists across most enterprises: exposed Git repositories leaking sensitive data. A risk that silently creates shadow access into core systems Git is the backbone of modern software development, host…THEHACKERNEWS.COM
14 JulNew PHP-Based Interlock RAT Variant Uses FileFix Delivery Mechanism to Target Multiple IndustriesThreat actors behind the Interlock ransomware group have unleashed a new PHP variant of its bespoke remote access trojan (RAT) as part of a widespread campaign using a variant of ClickFix called FileFix. "Since May 2025, activity related to the Interlock RAT has been observed in …THEHACKERNEWS.COM
🕵️ THREAT INTELLIGENCE 21[−]
14 JulThirteen Romanians Arrested for Phishing the UK’s Tax ServiceInvestigators from HMRC joined more than 100 Romanian police officers to arrest the 13 Romanian suspects in the counties of Ilfov, Giurgiu and Calarasi. The post Thirteen Romanians Arrested for Phishing the UK’s Tax Service appeared first on SecurityWeek .SECURITYWEEK.COM
14 JulISC Stormcast For Monday, July 14th, 2025 https://isc.sans.edu/podcastdetail/9524, (Mon, Jul 14th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
14 JulNvidia warns of Rowhammer attacks on GPUssubmitted by cm0002 to cybersecurity 1 points | 0 comments https://www.theregister.com/2025/07/13/infosec_in_brief/INFOSEC.PUB
14 JulHacker sollen 170 Cyberangriffe in Deutschland verübt habenDie Angreifer sollen zum “Wizard Spider”-Netzwerk gehören. Alliance Images – shutterstock.com Eine international agierende Hackergruppe soll in Deutschland mindestens 170 Cyberangriffe verübt haben. “Ziel waren insbesondere Behörden, Krankenhäuser und größere Unternehmen”, teilte…CSOONLINE.COM
14 JulHackers Inject Malware Into Gravity Forms WordPress PluginTwo Gravity Forms WordPress plugin versions available on the official download page were injected with malware in a supply chain attack. The post Hackers Inject Malware Into Gravity Forms WordPress Plugin appeared first on SecurityWeek .SECURITYWEEK.COM
14 JulWeaponized Games: Threat Actors Target Gen Z Gamers Through Popular TitlesKaspersky security researchers have discovered sophisticated threat actor activities that take advantage of the digitally native Gen Z population, which was born between 1997 and 2012 and is heavily involved in gaming, streaming, and anime, for malevolent purposes. Over a one-yea…GBHACKERS.COM
14 JulFlaws in Gigabyte Firmware Allow Security Bypass, Backdoor DeploymentVulnerabilities in Gigabyte firmware implementations could allow attackers to disable Secure Boot and execute code during the early boot phase. The post Flaws in Gigabyte Firmware Allow Security Bypass, Backdoor Deployment appeared first on SecurityWeek .SECURITYWEEK.COM
14 JulMicrosoft Explains How to Find and Stop Processes Blocking Files in WindowsMicrosoft has provided comprehensive guidance on resolving one of Windows users’ most frustrating issues: the dreaded “The process cannot access the file because it is being used by another process” error message. This common problem occurs when multiple program…GBHACKERS.COM
14 JulGoogle Gemini Tricked Into Showing Phishing Message Hidden in EmailGoogle Gemini for Workspace can be tricked into displaying a phishing message when asked to summarize an email. The post Google Gemini Tricked Into Showing Phishing Message Hidden in Email appeared first on SecurityWeek .SECURITYWEEK.COM
14 JulCyber-Insurance Premiums Drop, but Coverage Is Keysubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/vulnerabilities-threats/cyber-insurance-premiums-drop-coverage-key-resilienceSH.ITJUST.WORKS
14 JulWindows 10 KB5062554 update breaks emoji panel search featuresubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/microsoft/windows-10-kb5062554-update-breaks-emoji-panel-search-feature/SH.ITJUST.WORKS
14 JulGoogle Gemini flaw hijacks email summaries for phishingsubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/google-gemini-flaw-hijacks-email-summaries-for-phishing/SH.ITJUST.WORKS
14 JulFlaws in Gigabyte Firmware Allow Security Bypass, Backdoor Deployment - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/flaws-in-gigabyte-firmware-allow-security-bypass-backdoor-deployment/SH.ITJUST.WORKS
14 JulGoogle Gemini-Lücke ermöglicht versteckte Phishing-Angriffesrcset="https://b2b-contenthub.com/wp-content/uploads/2025/07/shutterstock_2400903317.jpg?quality=50&strip=all 4000w, https://b2b-contenthub.com/wp-content/uploads/2025/07/shutterstock_2400903317.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
14 JulFrom Diagram to Cloud: Rethinking Cloud Security in an Age of Uncertainty - Yogita Par... - CSP #214From Diagram to Cloud: Rethinking Cloud Security in an Age of Uncertainty Episode Summary: In this month’s episode of *CISO Stories*, we dive deep into cloud security with cybersecurity veteran and cloud innovator Yogi Parulekar, founder of InviGrid. Against a backdrop of rising …YOUTUBE.COM
14 JulImproving IT efficiency with Microsoft Security Copilot in Microsoft Intune and Microsoft EntraAnnouncing the general availability of Microsoft Security Copilot capabilities for IT with Microsoft Intune and Microsoft Entra, offering AI-powered efficiency and enhanced security for your operations. The post Improving IT efficiency with Microsoft Security Copilot in Microsoft…MICROSOFT.COM
14 JulMalicious VSCode extension in Cursor IDE led to $500K crypto theftsubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/malicious-vscode-extension-in-cursor-ide-led-to-500k-crypto-theft/SH.ITJUST.WORKS
14 JulReport from the Cambridge Cybercrime ConferenceThe Cambridge Cybercrime Conference was held on 23 June. Summaries of the presentations are here .SCHNEIER.COM
14 JulFilch Stealer: A new infostealer leveraging old techniquessubmitted by Pro to cybersecurity 2 points | 0 comments https://www.rapid7.com/blog/post/filch-stealer-a-new-infostealer-leveraging-old-techniquesINFOSEC.PUB
14 JulFilch Stealer: A new infostealer leveraging old techniquessubmitted by Pro to cybersecurity 1 points | 0 comments https://www.rapid7.com/blog/post/filch-stealer-a-new-infostealer-leveraging-old-techniquesSH.ITJUST.WORKS
14 JulIndian Police Raid Tech Support Scam Call Centersubmitted by kid to cybersecurity 3 points | 0 comments https://www.infosecurity-magazine.com/news/indian-police-tech-support-scam/SH.ITJUST.WORKS
🌐 CYBER THREAT LANDSCAPE 2[−]
14 JulGigabyte motherboards vulnerable to UEFI malware bypassing Secure BootDozens of Gigabyte motherboard models run on UEFI firmware vulnerable to security issues that allow planting bootkit malware that is invisible to the operating system and can survive reinstalls. [...]BLEEPINGCOMPUTER.COM
14 JulMalicious VSCode extension in Cursor IDE led to $500K crypto theftA fake extension for the Cursor AI IDE code editor infected devices with remote access tools and infostealers, which, in one case, led to the theft of $500,000 in cryptocurrency from a Russian crypto developer. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 5[−]
14 JulCBI Shuts Down £390K U.K. Tech Support Scam, Arrests Key Operatives in Noida Call CenterIndia's Central Bureau of Investigation (CBI) has announced that it has taken steps to dismantle what it said was a transnational cybercrime syndicate that carried out "sophisticated" tech support scams targeting citizens of Australia and the United Kingdom. The fraudulent scheme…THEHACKERNEWS.COM
14 JulSophosAI at Black Hat USA ’25: Anomaly detection betrayed us, so we gave it a new jobSophos’ Ben Gelman and Sean Bergeron will present their research on enhancing command line classification with benign anomalous data at Las VegasSOPHOS.COM
14 JulDefendnot: fake antivirus software to disable Microsoft DefenderDefendnot is a research tool that disables Microsoft Defender by tricking Windows security.KASPERSKY.COM
14 JulThe votes are in: TechCrunch Disrupt 2025 Audience Choice winners revealed for roundtables and breakoutsYou voted — they made it onto the TechCrunch Disrupt 2025 agenda! After reviewing hundreds of standout Call for Content submissions and opening the vote to the TechCrunch audience, we’ve locked in the top five roundtables and top five breakout sessions. Without further ado, meet …TECHCRUNCH.COM
14 JulDShield Honeypot Log Volume Increase, (Mon, Jul 14th)The volume of honeypot logs changes over time. Very rarely are honeypot logs quiet, meaning that there are no internet scans or malicious activity generating logs. Honeypots can see large increases in activity [1], but this has tended to be the exception, rather than th…ISC.SANS.EDU