MATLOCK.CA
97Articles
8Categories
2025-07-21Date
🚨
Microsoft SharePoint zero-day breach hits on-prem serversEnterprise IT teams face an immediate crisis as Microsoft warned Saturday of active cyberattacks exploiting a previously unknown vulnerability in SharePoint Server, with security researchers confirming dozens of servers compromised globally since attacks began July 18. “Microsoft…
KEVCSOONLINE.COM — 21 Jul 2025
🐛
Hard-Coded Credentials Found in HPE Instant On Devices Allow Admin Access
THEHACKERNEWS.COM — 21 Jul 2025
🐛
Microsoft releases emergency patches for SharePoint RCE flaws exploited in attacks
BLEEPINGCOMPUTER.COM — 21 Jul 2025
🐛
CrushFTP 0-Day Vulnerability Actively Exploited to Breach Servers
KEVGBHACKERS.COM — 21 Jul 2025
🐛
7-Zip Vulnerability Lets Malicious RAR5 Files Crash Systems
GBHACKERS.COM — 21 Jul 2025
🐛
CISA Issues Alert on Microsoft SharePoint 0-Day RCE Exploited in Attacks
KEVGBHACKERS.COM — 21 Jul 2025
🐛
Hacker greifen über Microsoft-Lücke an
CSOONLINE.COM — 21 Jul 2025
🐛
Livewire Flaw Puts Millions of Laravel Apps at Risk of RCE Attacks
GBHACKERS.COM — 21 Jul 2025
🐛
Microsoft Patches ‘ToolShell’ Zero-Days Exploited to Hack SharePoint Servers
SECURITYWEEK.COM — 21 Jul 2025
🐛
Microsoft SharePoint servers under attack via zero-day vulnerability (CVE-2025-53770) - Help Net Security
SH.ITJUST.WORKS — 21 Jul 2025
🐛
How quickly do we patch? A quick look from the global viewpoint, (Mon, Jul 21st)
ISC.SANS.EDU — 21 Jul 2025
🐛
Researchers Release PoC Exploit for High-Severity NVIDIA AI Toolkit Bug
GBHACKERS.COM — 21 Jul 2025
🐛
Introducing OSS Rebuild: Open Source, Rebuilt to Last
SECURITY.GOOGLEBLOG.COM — 2025-07-21
⚠️
Microsoft Releases Urgent Patch for SharePoint RCE Flaw Exploited in Ongoing Cyber Attacks
KEVTHEHACKERNEWS.COM — 21 Jul 2025
⚠️
So geht Tabletop Exercise
CSOONLINE.COM — 21 Jul 2025
⚠️
SharePoint 0-Day RCE Flaw Actively Exploited for Full Server Takeover
KEVGBHACKERS.COM — 21 Jul 2025
⚠️
PoisonSeed Attack Tricks Users into Scanning Malicious MFA QR Codes
GBHACKERS.COM — 21 Jul 2025
⚠️
PoisonSeed Hackers Bypass FIDO Keys Using QR Phishing and Cross-Device Sign-In Abuse
THEHACKERNEWS.COM — 21 Jul 2025
⚠️
Is AI here to take or redefine your cybersecurity role?
CSOONLINE.COM — 21 Jul 2025
⚠️
NPM Linter Packages Hijacked, Microsoft's China Issue, and AI in Phishing Attacks: Cybersecurity Today:
CYBERSECURITYTODAY.LIBSYN.COM — 21 Jul 2025
⚠️
Exploited CrushFTP Zero-Day Provides Admin Access to Servers
SECURITYWEEK.COM — 21 Jul 2025
⚠️
From hardcoded credentials to auth gone wrong: Old bugs continue to break modern systems
CSOONLINE.COM — 21 Jul 2025
⚠️
Microsoft AppLocker Flaw Lets Malicious Apps Bypass Security Restrictions
GBHACKERS.COM — 21 Jul 2025
⚠️
The Cyber Canon, ditching the SOC 2, and the weekly enterprise news - Helen Patton - ESW #416
YOUTUBE.COM — 2025-07-21
⚠️
Another Supply Chain Vulnerability
SCHNEIER.COM — 2025-07-21
⚠️
Surveillance Firm Exploits SS7 Flaw to Track User Locations
GBHACKERS.COM — 21 Jul 2025
⚠️
Over 1,000 CrushFTP servers exposed to ongoing hijack attacks
BLEEPINGCOMPUTER.COM — 21 Jul 2025
⚠️
Marketing, Law Firms Say Data Breaches Impact Over 200,000 People
SECURITYWEEK.COM — 21 Jul 2025
⚠️
⚡ Weekly Recap: SharePoint 0-Day, Chrome Exploit, macOS Spyware, NVIDIA Toolkit RCE and More
THEHACKERNEWS.COM — 21 Jul 2025
⚠️
Microsoft to stop using engineers in China to work on U.S. Defense computer systems in wake of investigative report
SH.ITJUST.WORKS — 21 Jul 2025
⚠️
3-line exploit revealed for critical NVIDIA Container Toolkit flaw | SC Media
SH.ITJUST.WORKS — 21 Jul 2025
⚠️
PHP PDO Flaw Allows Attackers to Inject Malicious SQL Commands
GBHACKERS.COM — 21 Jul 2025
⚠️
Update Microsoft SharePoint ASAP | Kaspersky official blog
KASPERSKY.COM — 21 Jul 2025
⚠️
Hackers Exploit Critical CrushFTP Flaw to Gain Admin Access on Unpatched Servers
SH.ITJUST.WORKS — 21 Jul 2025
⚠️
PoisonSeed outsmarts FIDO keys without touching them
CSOONLINE.COM — 21 Jul 2025
⚠️
New zero-day bug in Microsoft SharePoint under widespread attack
TECHCRUNCH.COM — 21 Jul 2025
⚠️
Microsoft Fix Targets Attacks on SharePoint Zero-Day
KREBSONSECURITY.COM — 21 Jul 2025
⚠️
Surveillance Firm Exploits SS7 Flaw to Track User Locations
SH.ITJUST.WORKS — 21 Jul 2025
⚠️
SharePoint ‘ToolShell’ vulnerabilities being exploited in the wild
KEVSOPHOS.COM — 21 Jul 2025
⚠️
AI-Powered Cloaking Tools Help Threat Actors Hide Malicious Domains from Security Scans
GBHACKERS.COM — 21 Jul 2025
⚠️
Attackers Can Exploit Lighthouse Studio RCE Bug to Gain Server Access
GBHACKERS.COM — 21 Jul 2025
⚠️
APT41 Hackers Exploiting Atexec and WmiExec Windows Modules for Malware Deployment
GBHACKERS.COM — 21 Jul 2025
⚠️
Hackers exploiting SharePoint zero-day seen targeting government agencies, say researchers
TECHCRUNCH.COM — 21 Jul 2025
⚠️
DeerStealer Malware Spread Through Weaponized .LNK and LOLBin Tools
GBHACKERS.COM — 21 Jul 2025
⚠️
UK blames Russia’s infamous ‘Fancy Bear’ group for Microsoft cloud hacks
CSOONLINE.COM — 21 Jul 2025
⚠️
Intel announces end of Clear Linux OS project, archives GitHub repos
BLEEPINGCOMPUTER.COM — 21 Jul 2025
⚠️
#StopRansomware: Interlock
KEVCISA.GOV — 21 Jul 2025
📢
MAD warnt vor russischer Spionage
CSOONLINE.COM — 21 Jul 2025
📢
CrushFTP security advisory (AV25-432)
CYBER.GC.CA — 2025-07-21
📢
Microsoft security advisory (AV25-433)
CYBER.GC.CA — 2025-07-21
📢
IBM security advisory (AV25-436)
CYBER.GC.CA — 2025-07-21
📢
[Control systems] CISA ICS security advisories (AV25–435)
CYBER.GC.CA — 2025-07-21
📢
Ubuntu security advisory (AV25-434)
CYBER.GC.CA — 2025-07-21
📢
Dell security advisory (AV25-437)
CYBER.GC.CA — 2025-07-21
📢
Red Hat security advisory (AV25-438)
CYBER.GC.CA — 2025-07-21
📢
Iran-Linked DCHSpy Android Malware Masquerades as VPN Apps to Spy on Dissidents
THEHACKERNEWS.COM — 21 Jul 2025
📢
Hackers Are Laughing at Your WAF 😂
YOUTUBE.COM — 2025-07-21
📢
Grafana security advisory (AV25-439)
CYBER.GC.CA — 2025-07-21
📢
ISC BIND security advisory (AV25-440)
CYBER.GC.CA — 2025-07-21
🔥
3,500 Websites Hijacked to Secretly Mine Crypto Using Stealth JavaScript and WebSocket Tactics
THEHACKERNEWS.COM — 21 Jul 2025
🔥
Klöckner warnt vor Cyberangriffen auf Bundestag
CSOONLINE.COM — 21 Jul 2025
🔥
750,000 Impacted by Data Breach at The Alcohol & Drug Testing Service
SECURITYWEEK.COM — 21 Jul 2025
🔥
Good Riddance Teespring, Hello Fourthwall
TROYHUNT.COM — 21 Jul 2025
🔥
CoinDCX Hack Leads to $44.2 Million Loss
GBHACKERS.COM — 21 Jul 2025
🔥
Dell confirms breach of test lab platform by World Leaks extortion group
BLEEPINGCOMPUTER.COM — 21 Jul 2025
🔥
Europol targets Kremlin-backed cybercrime gang NoName057(16)
BITDEFENDER.COM — 21 Jul 2025
🔥
1.4 Million Affected by Data Breach at Virginia Radiology Practice - SecurityWeek
SH.ITJUST.WORKS — 21 Jul 2025
🔥
Anne Arundel Dermatology Data Breach Impacts 1.9 Million People - SecurityWeek
SH.ITJUST.WORKS — 21 Jul 2025
🔥
Indian crypto exchange CoinDCX confirms $44 million stolen during hack
TECHCRUNCH.COM — 21 Jul 2025
🔥
Dior begins sending data breach notifications to U.S. customers
BLEEPINGCOMPUTER.COM — 21 Jul 2025
🔥
Dell confirms breach of test lab platform by World Leaks extortion group
SH.ITJUST.WORKS — 21 Jul 2025
🔥
Afghan data leak: SAS and UK spies named in Afghan data breach
SH.ITJUST.WORKS — 21 Jul 2025
🔥
KAWA4096 Ransomware Employs WMI Techniques to Delete Backup Snapshots
GBHACKERS.COM — 21 Jul 2025
🔥
Dior begins sending data breach notifications to U.S. customers
SH.ITJUST.WORKS — 21 Jul 2025
🔥
Ring denies breach after users report suspicious logins
BLEEPINGCOMPUTER.COM — 21 Jul 2025
🕵️
ISC Stormcast For Monday, July 21st, 2025 https://isc.sans.edu/podcastdetail/9534, (Mon, Jul 21st)
ISC.SANS.EDU — 21 Jul 2025
🕵️
Surveillance Firm Bypasses SS7 Protections to Retrieve User Location
SECURITYWEEK.COM — 21 Jul 2025
🕵️
HPE warns of hardcoded passwords in Aruba access points
SH.ITJUST.WORKS — 21 Jul 2025
🕵️
Iranian APT Targets Android Users With New Variants of DCHSpy Spyware
SECURITYWEEK.COM — 21 Jul 2025
🕵️
Job Seekers Beware: Many People Are Falling for Employment Scams
KNOWBE4.COM — 21 Jul 2025
🕵️
Snake Keylogger Uses Persistence via Scheduled Tasks to Steal Login Data Undetected
GBHACKERS.COM — 21 Jul 2025
🕵️
PoisonSeed Hackers Bypass FIDO Keys Using QR Phishing and Cross-Device Sign-In Abuse
SH.ITJUST.WORKS — 21 Jul 2025
🕵️
4 new Android spyware samples linked to Iran's intel agency • The Register
SH.ITJUST.WORKS — 21 Jul 2025
🕵️
New GhostContainer Malware Hits High-Value MS Exchange Servers in Asia
SH.ITJUST.WORKS — 21 Jul 2025
🕵️
Singapore warns China-linked group UNC3886 targets its critical infrastructure
SH.ITJUST.WORKS — 21 Jul 2025
🕵️
China-Linked Hackers Launch Targeted Espionage Campaign on African IT Infrastructure
THEHACKERNEWS.COM — 21 Jul 2025
🕵️
Cybercriminals Use Zoho WorkDrive Folders to Spread Obfuscated PureRAT Malware
GBHACKERS.COM — 21 Jul 2025
🕵️
Boomers? Nah, Gen X Is Built for AI Warfare 🔥
YOUTUBE.COM — 2025-07-21
🕵️
Beware of npm Phishing Emails Targeting Developer Credentials
GBHACKERS.COM — 21 Jul 2025
🕵️
Threat Actors Compromise Popular npm Packages to Steal Maintainers’ Tokens
GBHACKERS.COM — 21 Jul 2025
🕵️
UNG0002 Deploys Weaponized LNK Files with Cobalt Strike and Metasploit to Target Organizations
GBHACKERS.COM — 21 Jul 2025
🌐
Serial spyware founder Scott Zuckerman wants the FTC to unban him from the surveillance industry
TECHCRUNCH.COM — 21 Jul 2025
📡
Learn 14 Languages from Babbel with this exclusive StackSocial deal
BLEEPINGCOMPUTER.COM — 21 Jul 2025
📡
Assessing the Role of AI in Zero Trust
THEHACKERNEWS.COM — 21 Jul 2025
📡
Don’t miss your chance to exhibit at TechCrunch Disrupt 2025
TECHCRUNCH.COM — 21 Jul 2025
📡
Veeam Recovery Orchestrator users locked out after MFA rollout
BLEEPINGCOMPUTER.COM — 21 Jul 2025
📡
ExpressVPN bug leaked user IPs in Remote Desktop sessions
BLEEPINGCOMPUTER.COM — 21 Jul 2025