105Articles
8Categories
2025-07-16Date
🚨 CISA KEV 1[−]
16 JulCISA adds serious Wing FTP Server vulnerability to must-fix list - iTnewssubmitted by kid to cybersecurity 1 points | 0 comments https://www.itnews.com.au/news/cisa-adds-serious-wing-ftp-server-vulnerability-to-must-fix-list-618754SH.ITJUST.WORKS
🐛 COMMON VULNERABILITIES AND EXPOSURES 14[−]
16 Jul KEVGoogle Chrome 0-Day Vulnerability Under Active ExploitationGoogle has released an emergency security update for Chrome 138 to address a critical zero-day vulnerability that is actively being exploited in the wild. The vulnerability, tracked as CVE-2025-6558, affects the browser’s ANGLE and GPU components and has prompted immediate …GBHACKERS.COM
16 JulNode.js Vulnerabilities Leave Windows Apps Vulnerable to Path Traversal and HashDoSThe Node.js project has released critical security updates across multiple release lines to address two high-severity vulnerabilities that pose significant risks to Windows applications and could enable denial-of-service attacks. The vulnerabilities, identified as CVE-2025-27210 …GBHACKERS.COM
16 Jul KEVGoogle AI "Big Sleep" Stops Exploitation of Critical SQLite Vulnerability Before Hackers ActGoogle on Tuesday revealed that its large language model (LLM)-assisted vulnerability discovery framework discovered a security flaw in the SQLite open-source database engine before it could have been exploited in the wild. The vulnerability, tracked as CVE-2025-6965 (CVSS score:…THEHACKERNEWS.COM
16 JulCommand-Line Editor Vim Hit by Vulnerability Allowing File OverwritesA critical security vulnerability has been discovered in Vim, the popular open-source command-line text editor, that could allow attackers to overwrite arbitrary files on users’ systems. The vulnerability, designated CVE-2025-53906, was published on July 15, 2025, and …GBHACKERS.COM
16 Jul KEVUrgent: Google Releases Critical Chrome Update for CVE-2025-6558 Exploit Active in the WildGoogle on Tuesday rolled out fixes for six security issues in its Chrome web browser, including one that it said has been exploited in the wild. The high-severity vulnerability in question is CVE-2025-6558 (CVSS score: 8.8), which has been described as an incorrect validation of …THEHACKERNEWS.COM
16 JulSalt Typhoon hacked the US National Guard for 9 months, and accessed networks in every stateChinese-backed APT group Salt Typhoon extensively compromised a US state’s Army National Guard network for nine months, stealing sensitive military data and gaining access to networks in every other US state and at least four territories, according to a Department of Homeland Sec…CSOONLINE.COM
16 JulGoogle’s AI ‘Big Sleep’ Detects Critical SQLite 0-Day, Halts Ongoing AttacksGoogle’s artificial intelligence agent “Big Sleep” has made cybersecurity history by discovering and stopping the exploitation of a critical zero-day vulnerability in SQLite, marking the first time an AI system has directly foiled real-world cyberattacks. The AI…GBHACKERS.COM
16 JulNew Fortinet FortiWeb hacks likely linked to public RCE exploitsMultiple Fortinet FortiWeb instances recently infected with web shells are believed to have been compromised using public exploits for a recently patched remote code execution (RCE) flaw tracked as CVE-2025-25257. [...]BLEEPINGCOMPUTER.COM
16 JulChromium: CVE-2025-7657 Use after free in WebRTCThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
16 JulChromium: CVE-2025-6558 Incorrect validation of untrusted input in ANGLE and GPUThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information. Google is aware that an exploit for CVE-2025-6558 ex…MSRC.MICROSOFT.COM
16 JulChromium: CVE-2025-7656 Integer overflow in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
16 JulCVE-2024-36350 AMD: CVE-2024-36350 Transient Scheduler Attack in Store QueueCorrected CVE number. This is an informational change only.MSRC.MICROSOFT.COM
16 JulNoBooze1 Malware Targets TP-Link Routers via CVE-2019-9082Sensor Intel Series: July 2025 CVE TrendsF5.COM
16 JulNoBooze1 Malware Targets TP-Link Routers via CVE-2019-9082Sensor Intel Series: July 2025 CVE TrendsF5.COM
⚠️ VULNERABILITY DISCLOSURE 25[−]
16 JulAlert: Nvidia GPUs are vulnerable to Rowhammer attacksNvidia has issued a security reminder to application developers, computer manufacturers, and IT leaders that modern memory chips in graphic processors are potentially susceptible to so-called Rowhammer exploits after Canadian university researchers proved that an Nvidia A6000 GPU…CSOONLINE.COM
16 Jul7 fundamentale Cloud-BedrohungenDieser Artikel hilft, Unsicherheiten in Cloud-Umgebungen vorzubeugen. Foto: Roman Samborskyi | shutterstock.com Für jedes Unternehmen, das sich auf die Cloud verlässt, um Services bereitzustellen, steht Cybersicherheit ganz oben auf der Prioritätenliste. Allerdings stellen Anwend…CSOONLINE.COM
16 JulGoogle Gemini vulnerability enables hidden phishing attacksGoogle Gemini for Workspace can be abused to generate email summaries that appear legitimate but contain malicious instructions or warnings. The problem is that attackers can redirect their victims to phishing sites without attachments or direct links. The vulnerability was submi…CSOONLINE.COM
16 JulSo endet die Dienstreise nicht in GewahrsamGeschäftsreisen ins Ausland sind – je nach Zieldestination – zunehmend risikobehaftet. nicepix | shutterstock.com Angesichts des aktuellen weltpolitischen Klimas sind Dienst- und Geschäftsreisen keine routinemäßige, betriebliche Notwendigkeit mehr, sondern zunehmend ein strategis…CSOONLINE.COM
16 JulVMware ESXi and Workstation Vulnerabilities Allow Host-Level Code ExecutionBroadcom disclosed four critical vulnerabilities in VMware’s virtualization suite on July 15, 2025, enabling attackers to escape virtual machines and execute code directly on host systems. The flaws, discovered through the Pwn2Own competition, affect ESXi, Workstation, Fusi…GBHACKERS.COM
16 JulCybersecurity Today: GPU Vulnerabilities, Microsoft's Security Overhaul, and Major Flaws in Automotive BluetoothIn this episode hosted by Jim Love, 'Cybersecurity Today' celebrates its recognition as number 10 on the Feed Spot list of Canadian News Podcasts and approaches a milestone of 10 million downloads. Key topics include new research identifying Nvidia GPUs as vulnerable to Rowhammer…CYBERSECURITYTODAY.LIBSYN.COM
16 JulChrome Update Patches Fifth Zero-Day of 2025Google has released a Chrome 138 security update that patches a zero-day, the fifth resolved in the browser this year. The post Chrome Update Patches Fifth Zero-Day of 2025 appeared first on SecurityWeek .SECURITYWEEK.COM
16 Jul KEV7 obsolete security practices that should be terminated immediatelyBreaking bad habits and building better ones is a journey that requires patience, self-awareness, and determination. This is true whether the habit is a personal one or an outdated security practice that has long outlived its need or reliability. Is your enterprise relying on a s…CSOONLINE.COM
16 JulHackers Exploit Ivanti and Fortinet VPN Vulnerabilities in Attacks on Japanese CompaniesCyber espionage campaigns against Japanese companies have increased in fiscal year 2024, which runs from April 2024 to March 2025, according to a thorough analysis published by Macnica’s Security Research Center. The main objective of these campaigns is to exfiltrate sensit…GBHACKERS.COM
16 JulA Little-Known Microsoft Program Could Expose the U.S. Defense Department to Chinese Hackerssubmitted by Hotznplotzn to cybersecurity 1 points | 0 comments https://www.propublica.org/article/microsoft-digital-escorts-pentagon-defense-department-china-hackers cross-posted from: lemmy.sdf.org/post/38660341 Archived Microsoft is using engineers in China to help maintain th…INFOSEC.PUB
16 JulA Little-Known Microsoft Program Could Expose the U.S. Defense Department to Chinese Hackerssubmitted by Hotznplotzn to cybersecurity 1 points | 0 comments https://www.propublica.org/article/microsoft-digital-escorts-pentagon-defense-department-china-hackers cross-posted from: lemmy.sdf.org/post/38660341 Archived Microsoft is using engineers in China to help maintain th…SH.ITJUST.WORKS
16 Jul KEVGoogle fixes actively exploited sandbox escape zero day in ChromeGoogle has released a security update for Chrome to address half a dozen vulnerabilities, one of them actively exploited by attackers to escape the browser's sandbox protection. [...]BLEEPINGCOMPUTER.COM
16 JulKonfety Android Malware Exploits ZIP Tricks to Masquerade as Legit Apps on Google PlaySecurity researchers from zLabs have discovered a more advanced version of the Konfety Android malware, which uses complex ZIP-level changes to avoid detection and mimic genuine apps on the Google Play Store, marking a dramatic increase in mobile dangers. This malware employs an …GBHACKERS.COM
16 JulNimDoor MacOS Malware Abuses Zoom SDK Updates to Steal Keychain CredentialsSentinelOne researchers have discovered NimDoor, a sophisticated MacOS malware campaign ascribed to North Korean-affiliated attackers, most likely the Stardust Chollima gang, in a notable increase in cyber threats targeting the bitcoin industry. Active since at least April 2025, …GBHACKERS.COM
16 JulGoogle Says AI Agent Thwarted Exploitation of Critical VulnerabilityGoogle refused to share any details on how its Big Sleep AI foiled efforts to exploit a SQLite vulnerability in the wild. The post Google Says AI Agent Thwarted Exploitation of Critical Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
16 JulGmail Message Exploit Triggers Code Execution in Claude, Bypassing ProtectionsA cybersecurity researcher has demonstrated how a carefully crafted Gmail message can trigger code execution through Claude Desktop, Anthropic’s AI assistant application, highlighting a new class of vulnerabilities in AI-powered systems that don’t require traditional …GBHACKERS.COM
16 JulMarks & Spencer hackers hit US retailer Belk | Cybernewssubmitted by kid to cybersecurity 2 points | 0 comments https://cybernews.com/security/dragonforce-belk-data-breach-claims/SH.ITJUST.WORKS
16 JulCritical Golden dMSA Attack in Windows Server 2025 Enables Cross-Domain Attacks and Persistent AccessCybersecurity researchers have disclosed what they say is a "critical design flaw" in delegated Managed Service Accounts (dMSAs) introduced in Windows Server 2025. "The flaw can result in high-impact attacks, enabling cross-domain lateral movement and persistent access to all man…THEHACKERNEWS.COM
16 JulSamsung WLAN AP Flaws Let Remote Attackers Run Commands as RootSecurity researchers have uncovered a critical chain of vulnerabilities in Samsung’s WEA453e wireless access point that allows unauthenticated remote attackers to execute commands with full administrative privileges. The flaws, discovered in August 2020, demonstrate how see…GBHACKERS.COM
16 JulZyxel security advisory for path traversal vulnerability in APs | Zyxel Networkssubmitted by kid to cybersecurity 2 points | 0 comments https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-path-traversal-vulnerability-in-aps-07-15-2025SH.ITJUST.WORKS
16 JulLenovo Vantage Flaws Enable Attackers to Gain SYSTEM-Level PrivilegesSecurity researchers at Atredis have uncovered multiple privilege escalation vulnerabilities in Lenovo Vantage, a pre-installed management platform on Lenovo laptops that handles device updates, configurations, and system health monitoring. These flaws, tracked under CVEs 2025-62…GBHACKERS.COM
16 JulOne click to compromise: Oracle Cloud Code Editor flaw exposed users to RCEA now-patched vulnerability in Oracle Cloud Infrastructure’s (OCI) Code Editor exposed users to remote code execution (RCE) attacks with just a single click. Discovered by Tenable Research, the flaw could allow attackers to upload malicious files to a victim’s Cloud Shell environ…CSOONLINE.COM
16 JulEuropol disrupts pro-Russian NoName057(16) DDoS hacktivist groupAn international law enforcement operation dubbed "Operation Eastwood" has targeted the infrastructure of the pro-Russian hacktivist group NoName057(16), responsible for distributed denial-of-service (DDoS) attacks across Europe and the US. [...]BLEEPINGCOMPUTER.COM
16 JulNvidia-GPUs anfällig für Rowhammer-Angriffesrcset="https://b2b-contenthub.com/wp-content/uploads/2025/06/Nvidia_GPU.jpg?quality=50&strip=all 5124w, https://b2b-contenthub.com/wp-content/uploads/2025/06/Nvidia_GPU.jpg?resize=300%2C186&quality=50&strip=all 300w, https://b2b-contenthub.com/wp-content/uploads/2025…CSOONLINE.COM
16 Jul1Password releases MCP Server for TrelicaEver since Anthropic released the open standard Model Context Protocol (MCP) last November to standardize the way artificial intelligence systems connect to external tools and data, vendors have been trying to take advantage of the framework. Today, Canadian access management pro…CSOONLINE.COM
📢 SECURITY ADVISORIES 9[−]
16 JulCISA's NIMBUS 2000 Initiative: Understanding Key Findings and Strengthening Cloud Identity SecurityThis blog explores key findings from CISA’s NIMBUS 2000 Cloud Identity Security Technical Exchange and how Trend Vision One™ Cloud Security aligns with these priorities. It highlights critical challenges in token validation, secrets management, and logging visibility—offering ins…TRENDMICRO.COM
16 JulAfghans burnt by UK data leak because someone used email to send a large sensitive dataset -- which email service, anyone know?submitted by evenwicht to cybersecurity 1 points | 0 comments https://www.theguardian.com/commentisfree/2025/jul/15/afghanistan-uk-data-leak-taliban-britain cross-posted from: lemmy.sdf.org/post/38677119 Indeed it was stupid for someone to send a large sensitive dataset over emai…INFOSEC.PUB
16 JulHacking TrainsSeems like an old system system that predates any care about security: The flaw has to do with the protocol used in a train system known as the End-of-Train and Head-of-Train. A Flashing Rear End Device (FRED), also known as an End-of-Train (EOT) device, is attached to the back o…SCHNEIER.COM
16 JulGUEST ESSAY: Why IoT security must start at the module—a blueprint for scaling IoT securityA few years ago, a casino was breached via a smart fish tank thermometer. Related: NIST’s IoT security standard It’s a now-famous example of how a single overlooked IoT device can become an entry point for attackers — and a … (more…) The post GUEST ESSAY: Why IoT secu…LASTWATCHDOG.COM
🔥 INCIDENT REPORTING 20[−]
16 JulFormer U.S. Army Member Pleads Guilty in Telecom Hacking CaseA 21-year-old former U.S. Army soldier has pleaded guilty to participating in a sophisticated cybercrime operation that targeted telecommunications companies through hacking, data theft, and extortion schemes. Cameron John Wagenius, who was stationed in Texas during his military …GBHACKERS.COM
16 JulFormer US Soldier Who Hacked AT&T and Verizon Pleads GuiltyCameron John Wagenius pleaded guilty to charges related to hacking into US telecommunications companies. The post Former US Soldier Who Hacked AT&T and Verizon Pleads Guilty appeared first on SecurityWeek .SECURITYWEEK.COM
16 JulAuthorities Take Down ‘Diskstation’ Ransomware Gang Targeting Synology NAS GloballyItalian State Police, working alongside French and Romanian authorities, have successfully dismantled a sophisticated ransomware operation known as “Diskstation” that specifically targeted Synology Network Attached Storage (NAS) systems worldwide. The international in…GBHACKERS.COM
16 JulChina’s Salt Typhoon Hacked US National GuardChinese hacking group Salt Typhoon targeted a National Guard unit’s network and tapped into communications with other units. The post China’s Salt Typhoon Hacked US National Guard appeared first on SecurityWeek .SECURITYWEEK.COM
16 JulUS National Guard unit was 'extensively' hacked by Salt Typhoon in 2024, memo says | Reuterssubmitted by kid to cybersecurity 6 points | 0 comments https://www.reuters.com/world/us/us-national-guard-unit-was-extensively-hacked-by-salt-typhoon-2024-memo-says-2025-07-15/SH.ITJUST.WORKS
16 JulChinese ‘Salt Typhoon’ Hackers Infiltrated US National Guard Network for Almost a YearThe Department of Defense (DoD) revealed that an advanced persistent threat (APT) group, known as Salt Typhoon and publicly identified as Chinese state-sponsored actors, had successfully penetrated a U.S. state’s Army National Guard network in a major increase in cyberthrea…GBHACKERS.COM
16 JulCompumedics Ransomware Attack Led to Data Breach Impacting 318,000Compumedics has been targeted by the VanHelsing ransomware group, which stole files from the company’s systems. The post Compumedics Ransomware Attack Led to Data Breach Impacting 318,000 appeared first on SecurityWeek .SECURITYWEEK.COM
16 JulHow to protect your router from being hacked and becoming a residential proxy | Kaspersky official blogWhy home Wi-Fi routers are used in targeted attacks, and how to protect yourself from this threat.KASPERSKY.COM
16 JulMore Free File Sharing Services Abuse, (Wed, Jul 16th)A few months ago, I wrote a diary about online services used to exfiltrate data[ 1 ]. In this diary, I mentioned some well-known services. One of them was catbox.moe[ 2 ]. Recently, I found a sample that was trying to download some payload from this website. I…ISC.SANS.EDU
16 JulPolice dismantle DiskStation ransomware gang targeting NAS devices, arrest suspected ringleaderPolice have struck a blow against the DiskStation ransomware gang which targets Synology NAS devices, and arresting its suspected ringleader. Make sure that you have properly hardened the security of your Network Access Storage devices to reduce the chances of your data being loc…FORTRA.COM
16 JulUnited Natural Foods Projects Up to $400M Sales Hit from June CyberattackCyberattack disrupted UNFI’s operations in June; company estimates $50–$60 million net income hit but anticipates insurance will cover most losses. The post United Natural Foods Projects Up to $400M Sales Hit from June Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
16 JulSonicWall SMA devices hacked with OVERSTEP rootkit tied to ransomwareA threat actor has been deploying a previously unseen malware called OVERSTEP that modifies the boot process of fully-patched but no longer supported SonicWall Secure Mobile Access appliances. [...]BLEEPINGCOMPUTER.COM
16 JulCloudflare says 1.1.1.1 outage not caused by attack or BGP hijackTo quash speculation of a cyberattack or BGP hijack incident causing the recent 1.1.1.1 Resolver service outage, Cloudflare explains in a post mortem that the incident was caused by an internal misconfiguration. [...]BLEEPINGCOMPUTER.COM
16 JulHackers Leverage Microsoft Teams to Spread Matanbuchus 3.0 Malware to Targeted FirmsCybersecurity researchers have flagged a new variant of a known malware loader called Matanbuchus that packs in significant features to enhance its stealth and evade detection. Matanbuchus is the name given to a malware-as-a-service (MaaS) offering that can act as a conduit for n…THEHACKERNEWS.COM
16 JulEuropol and Eurojust disrupt pro-Russian hacktivist group NoName057(16) that has claimed responsibility for 1,000+ DDoS attacks since 2022, and make two arrestssubmitted by Pro to cybersecurity 5 points | 0 comments https://www.eurojust.europa.eu/news/hacktivist-group-responsible-cyberattacks-critical-infrastructure-europe-taken-downINFOSEC.PUB
16 JulEuropol and Eurojust disrupt pro-Russian hacktivist group NoName057(16) that has claimed responsibility for 1,000+ DDoS attacks since 2022, and make two arrestssubmitted by Pro to cybersecurity 3 points | 0 comments https://www.eurojust.europa.eu/news/hacktivist-group-responsible-cyberattacks-critical-infrastructure-europe-taken-downSH.ITJUST.WORKS
16 JulLouis Vuitton says regional data breaches tied to same cyberattackLuxury fashion giant Louis Vuitton confirmed that breaches impacting customers in the UK, South Korea, and Turkey stem from the same security incident, which is believed to be linked to the ShinyHunters extortion group. [...]BLEEPINGCOMPUTER.COM
16 JulDigital Factories, Digital Dangers: Why Manufacturing is a Prime Target for CyberattacksDigital connectivity is reshaping European manufacturing, driving both efficiency and innovation.KNOWBE4.COM
16 JulWelcoming Aura to Have I Been Pwned's Partner ProgramPresently sponsored by: 1Password Extended Access Management: Secure every sign-in for every app on every device. One of the greatest fears we all have in the wake of a data breach is having our identity stolen. Nefarious parties gather our personal information exposed in the bre…TROYHUNT.COM
16 JulCo-op confirms data of 6.5 million members stolen in cyberattackUK retailer Co-op has confirmed that personal data of 6.5 million members was stolen in the massive cyberattack in April that shut down systems and caused food shortages in its grocery stores. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 28[−]
16 JulISC Stormcast For Wednesday, July 16th, 2025 https://isc.sans.edu/podcastdetail/9528, (Wed, Jul 16th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
16 JulIoT Security Firm Exein Raises $81 MillionItalian company Exein has raised €70 million (~$81 million) in a Series C funding round led by Balderton. The post IoT Security Firm Exein Raises $81 Million appeared first on SecurityWeek .SECURITYWEEK.COM
16 JulAbacus Dark Web Market Suspected of Exit Scam with Held Bitcoin FundsThe largest Bitcoin-enabled Western darknet marketplace, Abacus Market, has gone offline amid widespread suspicions of an exit scam that may have cost users millions of dollars in held cryptocurrency funds. TRM Labs, a blockchain analytics firm, assesses that the marketplace̵…GBHACKERS.COM
16 JulCurl 8.15.0 Officially Released: 233 Bugs Fixed in Major UpdateCurl, the ubiquitous command-line tool and library for transferring data with URLs, has reached version 8.15.0 with a landmark release that addresses more than 230 bugs and streamlines its internal architecture. Officially launched today at 10:00 CEST (08:00 UTC) in a live-stream…GBHACKERS.COM
16 JulUnit 42 MDR Recognized as a Leader in MDR, AgainPalo Alto Networks Unit 42 MDR Recognized as a Leader in the Frost Radar™: Global Managed Detection and Response (MDR), 2025. The post Unit 42 MDR Recognized as a Leader in MDR, Again appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
16 JulMinimize SAP Migration Challenges, Cybersecurity Maturity, and Radical Transparency - ... - BSW #404Are you running SAP? The clock is ticking... Standard maintenance end-of-life is set for the end of 2027. Migration to S/4HANA must be completed by then (or 2030 if you buy into SAP’s special three-year reprieve). While that may appear to be enough time, companies currently worki…YOUTUBE.COM
16 JulMassive DDoS Attack Slams Internet with 7.3 Tbps and 4.8 Billion Packets Per SecondCloudflare’s latest DDoS Threat Report for the second quarter of 2025 reveals that the company autonomously mitigated the largest-ever recorded distributed denial-of-service (DDoS) attacks, peaking at an unprecedented 7.3 terabits per second (Tbps) and 4.8 billion packets p…GBHACKERS.COM
16 JulEmail Filters Defeated by Polyglot File Trick Used in Malware CampaignsAttackers are increasingly using advanced disguising techniques, such polyglot files, to get around email filters and successfully send phishing payloads in the constantly changing world of cyber threats. These polyglot files, which can be interpreted as multiple file formats sim…GBHACKERS.COM
16 JulOracle Issues Critical Update Fixing 309 Vulnerabilities Across ProductsOracle Corporation released its July 2025 Critical Patch Update, addressing a substantial 309 security vulnerabilities across its extensive product portfolio. This quarterly security release represents one of the most comprehensive patches in recent years, affecting dozens of Ora…GBHACKERS.COM
16 JulDark Partners Hacker Group Drains Crypto Wallets Using Fake AI Tools and VPN ServicesThe financially driven organization known as Dark Partners has been planning massive cryptocurrency theft since at least May 2025, using a complex network of more than 250 malicious domains that pose as AI tools, VPN services, cryptocurrency wallets, and well-known software brand…GBHACKERS.COM
16 JulWindows Secure Boot Certificate Expired in June, Microsoft Issues WarningMicrosoft has issued an urgent warning to Windows users about an impending security certificate expiration that could significantly impact device functionality. The tech giant announced that Secure Boot certificates used by most Windows devices are scheduled to expire starting in…GBHACKERS.COM
16 JulThreat Actors Use SVG Smuggling for Browser-Native Redirection - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/threat-actors-use-svg-smuggling-for-browser-native-redirection/SH.ITJUST.WORKS
16 JulCyber Intelligence Firm iCOUNTER Emerges From Stealth With $30 Million in FundingiCOUNTER, which helps organizations defend against targeted attacks, has launched under the helm of former Mandiant president and COO John Watters. The post Cyber Intelligence Firm iCOUNTER Emerges From Stealth With $30 Million in Funding appeared first on SecurityWeek .SECURITYWEEK.COM
16 JulHyper-volumetric DDoS attacks skyrocket: Cloudflare’s 2025 Q2 DDoS threat reportsubmitted by kid to cybersecurity 1 points | 0 comments https://blog.cloudflare.com/ddos-threat-report-for-2025-q2/SH.ITJUST.WORKS
16 JulInsecure Shopify plugin exposed hundreds of stores| Cybernewssubmitted by kid to cybersecurity 3 points | 0 comments https://cybernews.com/security/shopify-plugin-consentik-data-leak/SH.ITJUST.WORKS
16 JulKonfety Returns: Classic Mobile Threat with New Evasion Techniquessubmitted by kid to cybersecurity 2 points | 0 comments https://zimperium.com/blog/konfety-returns-classic-mobile-threat-with-new-evasion-techniquesSH.ITJUST.WORKS
16 JulSonicWall SMA Appliances Targeted With New ‘Overstep’ MalwareA threat actor that may be financially motivated is targeting SonicWall devices with a backdoor and user-mode rootkit. The post SonicWall SMA Appliances Targeted With New ‘Overstep’ Malware appeared first on SecurityWeek .SECURITYWEEK.COM
16 JulUNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP RootkitA threat activity cluster has been observed targeting fully-patched end-of-life SonicWall Secure Mobile Access (SMA) 100 series appliances as part of a campaign designed to drop a backdoor called OVERSTEP. The malicious activity, dating back to at least October 2024, has been att…THEHACKERNEWS.COM
16 JulProtecting customers from Octo Tempest attacks across multiple industriesTo help protect and inform customers, Microsoft highlights protection coverage across the Microsoft Defender security ecosystem to protect against threat actors like Octo Tempest. The post Protecting customers from Octo Tempest attacks across multiple industries appeared first on…MICROSOFT.COM
16 JulEuropol-Coordinated Global Operation Takes Down Pro-Russian Cybercrime NetworkCodenamed Eastwood, the operation targeted the so-called NoName057(16) group, which was identified as being behind a series of DDoS attacks on municipalities and organizations linked to a NATO summit. The post Europol-Coordinated Global Operation Takes Down Pro-Russian Cybercrime…SECURITYWEEK.COM
16 JulMicrosoft is named a Leader in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection PlatformsWe are honored to be recognized once again as a Leader in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platforms—our sixth consecutive year. The post Microsoft is named a Leader in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platforms appeared first on …MICROSOFT.COM
16 JulSquidLoader Deploys Stealthy Malware with Near-Zero Detection to Evade Security MeasuresA fresh variant of SquidLoader malware has surfaced, actively entering Hong Kong institutions with previously unheard-of stealth, which is alarming for the financial industry. This sophisticated loader achieves near-zero detection rates on platforms like VirusTotal, leveraging in…GBHACKERS.COM
16 JulThreat Actors Weaponize WordPress Sites to Redirect Visitors to Malicious DomainsSecurity researchers identified a sophisticated malware campaign targeting WordPress websites, where threat actors embedded malicious code within core files to facilitate unauthorized redirects and search engine optimization (SEO) poisoning. The infection was traced to the wp-set…GBHACKERS.COM
16 JulCritical Golden dMSA Attack in Windows Server 2025 Enables Cross-Domain Attacks and Persistent Accesssubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/07/critical-golden-dmsa-attack-in-windows.htmlSH.ITJUST.WORKS
16 JulHackers Leverage 607 Malicious Domains to Spread APK Malware with Remote Command ExecutionPreCrime Labs at BforeAI discovered a complex cyber threat operation in which hackers have used a vast network of 607 rogue domains to spread fake Telegram Messenger application files (APKs) over the course of the last month. These domains, primarily registered via the Gname regi…GBHACKERS.COM
16 JulCracked Apps Delivering Infostealers Identified as Leading Attack Vector in June 2025The AhnLab Security Intelligence Center (ASEC) published a thorough analysis in June 2025 that identified infostealer malware masquerading as keygens and cracked software as a primary attack vector. This malware uses advanced search engine optimization (SEO) poisoning to elevate …GBHACKERS.COM
16 JulEngineered To Evade: How Phishing Attacks Are Designed To Get Through Your Secure Email GatewayGetting through secure email gateways (SEGs) is simply the cost of doing business for a cybercriminal. Literally, detection at the perimeter by a SEG is the same as falling at the first hurdle.KNOWBE4.COM
16 JulGoogle finds custom backdoor being installed on SonicWall network devicessubmitted by PhilipTheBucket to cybersecurity 1 points | 0 comments https://arstechnica.com/security/2025/07/google-finds-custom-backdoor-being-installed-on-sonicwall-network-devices/SH.ITJUST.WORKS
🌐 CYBER THREAT LANDSCAPE 1[−]
16 JulNew Konfety Malware Variant Evades Detection by Manipulating APKs and Dynamic CodeCybersecurity researchers have discovered a new, sophisticated variant of a known Android malware referred to as Konfety that leverages the evil twin technique to enable ad fraud. The sneaky approach essentially involves a scenario wherein two variants of an application share the…THEHACKERNEWS.COM
📡 INFOSEC NEWS 7[−]
16 JulDeepfakes. Fake Recruiters. Cloned CFOs — Learn How to Stop AI-Driven Attacks in Real TimeSocial engineering attacks have entered a new era—and they’re coming fast, smart, and deeply personalized. It’s no longer just suspicious emails in your spam folder. Today’s attackers use generative AI, stolen branding assets, and deepfake tools to mimic your executives, hijack y…THEHACKERNEWS.COM
16 JulChinese authorities are using a new tool to hack seized phones and extract dataResearchers warned that Chinese residents, and visitors to China, should be aware of the tool's existence and the risks it poses.TECHCRUNCH.COM
16 JulGrok 4 benchmark results: Tops math, ranks second in codingGrok 4 is a huge leap from Grok 3, but how good is it compared to other models in the market, such as Gemini 2.5 Pro? We now have answers, thanks to new independent benchmarks. [...]BLEEPINGCOMPUTER.COM
16 JulAI Agents Act Like Employees With Root Access—Here's How to Regain ControlThe AI gold rush is on. But without identity-first security, every deployment becomes an open door. Most organizations secure native AI like a web app, but it behaves more like a junior employee with root access and no manager. From Hype to High Stakes Generative AI has moved bey…THEHACKERNEWS.COM
16 JulUK retail giant Co-op confirms hackers stole all 6.5 million customer recordsThe hackers stole the company's member list, which included customer names, addresses, and contact information.TECHCRUNCH.COM
16 JulCall of Duty cheaters complain after Activision launches new wave of mass-bansThe video game giant banned an unknown number of cheaters that were using one of the oldest-running cheats.TECHCRUNCH.COM
16 JulU.S. Army soldier pleads guilty to extorting 10 tech, telecom firmsA 21-year old former U.S. Army soldier pleaded guilty to charges of hacking and extorting at least ten telecommunications and technology companies in the country. [...]BLEEPINGCOMPUTER.COM