matlock.ca // THREAT INTELLIGENCE — 2025-07-24

91Articles

9Categories

2025-07-24Date

🚨

Microsoft’s incomplete SharePoint patch led to global exploits by China-linked hackersA July 8 patch for the SharePoint Server zero-day flaw, which resulted in a global attack on nearly 100 organizations over the weekend starting July 18, had failed to fully patch the flaw. The flaw was brought to Microsoft’s notice in May during a hacker competition and was short…

KEVCSOONLINE.COM — 24 Jul 2025

🐛

CISA Alerts on Google Chromium Input Validation Flaw Actively Exploited

KEVGBHACKERS.COM — 24 Jul 2025

🐛

AWS Client VPN for Windows Vulnerability Could Allow Privilege Escalation

GBHACKERS.COM — 24 Jul 2025

🐛

TP-Link Network Video Recorder Vulnerability Enables Arbitrary Command Execution

GBHACKERS.COM — 24 Jul 2025

🐛

Metasploit Module Released to Exploit SharePoint 0-Day Vulnerabilities

KEVGBHACKERS.COM — 24 Jul 2025

🐛

Splunk Guide to Detect, Mitigate, and Respond to the CitrixBleed 2 Vulnerability

GBHACKERS.COM — 24 Jul 2025

🐛

Sophos and SonicWall Patch Critical RCE Flaws Affecting Firewalls and SMA 100 Devices

THEHACKERNEWS.COM — 24 Jul 2025

⚠️

A chit-chat between Llama 2 and ChatGPT for the automated creation of exploits

INFOSEC.PUB — 24 Jul 2025

⚠️

Hackers On A Train - PSW #883

YOUTUBE.COM — 2025-07-24

⚠️

7 Security-Praktiken zum Abgewöhnen

KEVCSOONLINE.COM — 24 Jul 2025

⚠️

Key Operator of World’s Largest XSS Dark Web Platform Detained

GBHACKERS.COM — 24 Jul 2025

⚠️

SonicWall SMA 100 Vulnerabilities Allow Remote Execution of Arbitrary JavaScript

GBHACKERS.COM — 24 Jul 2025

⚠️

Singapore’s cybersecurity paradox: Top firms rated A, yet all breached

CSOONLINE.COM — 24 Jul 2025

⚠️

Weidmueller Industrial Routers Exposed to Remote Code Execution Flaws

GBHACKERS.COM — 24 Jul 2025

⚠️

ToolShell Attacks Hit 400+ SharePoint Servers, US Government Victims Named

SECURITYWEEK.COM — 24 Jul 2025

⚠️

Google Introduces OSS Rebuild to Boost Security in Open-Source Package Ecosystems

GBHACKERS.COM — 24 Jul 2025

⚠️

Chinese Hackers Launch Targeted Campaign to Infect Windows Systems with Ghost RAT and PhantomNet Malware

GBHACKERS.COM — 24 Jul 2025

⚠️

Microsoft: SharePoint servers also targeted in ransomware attacks

BLEEPINGCOMPUTER.COM — 24 Jul 2025

⚠️

SonicWall Patches Critical SMA 100 Vulnerability, Warns of Recent Malware Attack

SECURITYWEEK.COM — 24 Jul 2025

⚠️

Storm-2603 Exploits SharePoint Flaws to Deploy Warlock Ransomware on Unpatched Systems

THEHACKERNEWS.COM — 24 Jul 2025

⚠️

Researchers Exploit Cursor Background Agents to Take Over Amazon EC2 Instance

GBHACKERS.COM — 24 Jul 2025

⚠️

Hacker inserts destructive code in Amazon Q as update goes live

CSOONLINE.COM — 24 Jul 2025

⚠️

SonicWall urges admins to patch critical RCE flaw in SMA 100 devices

BLEEPINGCOMPUTER.COM — 24 Jul 2025

⚠️

UNC3944 Exploits VMware vSphere to Deploy Ransomware and Steal Data from Organizations

GBHACKERS.COM — 24 Jul 2025

⚠️

Elephant APT Group Exploits VLC Player and Encrypted Shellcode in Attacks on Defense Sector

GBHACKERS.COM — 24 Jul 2025

⚠️

AI slop and fake reports are exhausting some security bug bounties

TECHCRUNCH.COM — 24 Jul 2025

⚠️

Mitel warns of critical MiVoice MX-ONE authentication bypass flaw

BLEEPINGCOMPUTER.COM — 24 Jul 2025

⚠️

CISA Releases Six Industrial Control Systems Advisories

CISA.GOV — Thu, 24 Jul 25 1

⚠️

Critical Mitel Flaw Lets Hackers Bypass Login, Gain Full Access to MiVoice MX-ONE Systems

THEHACKERNEWS.COM — 24 Jul 2025

⚠️

Fire Ant Exploits VMware Flaws to Compromise ESXi Hosts and vCenter Environments

THEHACKERNEWS.COM — 24 Jul 2025

⚠️

Surge in Phishing Attacks Exploiting Spoofed SharePoint Domains and Sneaky 2FA Tactics

GBHACKERS.COM — 24 Jul 2025

⚠️

Storm-2603 spotted deploying ransomware on exploited SharePoint servers - Help Net Security

SH.ITJUST.WORKS — 24 Jul 2025

⚠️

Hive0156 Hackers Targeting Government and Military Organizations to Deploy REMCOS RAT

GBHACKERS.COM — 24 Jul 2025

⚠️

Coyote in the Wild: First-Ever Malware That Abuses UI Automation | Akamai

SH.ITJUST.WORKS — 24 Jul 2025

⚠️

The Lazy Way to Validate Vulnerabilities... Works?!

YOUTUBE.COM — 2025-07-24

⚠️

Protecting G-Suite/MS365 and Security News - Abhishek Agrawal - PSW #884

YOUTUBE.COM — 2025-07-24

⚠️

BlackSuit ransomware leak sites seized in Operation Checkmate

BLEEPINGCOMPUTER.COM — 24 Jul 2025

⚠️

If You Don't See It, Can You Secure It? Shadow IT Explained!

YOUTUBE.COM — 2025-07-24

⚠️

ToolShell: An all-you-can-eat buffet for threat actors

WELIVESECURITY.COM — 24 Jul 2025

📋

GitLab Publishes Security Update Addressing Several Vulnerabilities in Community and Enterprise Edition

GBHACKERS.COM — 24 Jul 2025

📢

Europol Arrests XSS Forum Admin in Kyiv After 12-Year Run Operating Cybercrime Marketplace

THEHACKERNEWS.COM — 24 Jul 2025

📢

GRC Firm Vanta Raises $150 Million at $4.15 Billion Valuation

SECURITYWEEK.COM — 24 Jul 2025

📢

New York Seeking Public Opinion on Water Systems Cyber Regulations

SECURITYWEEK.COM — 24 Jul 2025

📢

[Control systems] ABB security advisory (AV25-450)

CYBER.GC.CA — 2025-07-24

📢

VMware security advisory (AV25-451)

CYBER.GC.CA — 2025-07-24

📢

APT28 Hackers Unveil First LLM-Powered Malware, Enhancing Attack Techniques with AI

GBHACKERS.COM — 24 Jul 2025

📢

HPE security advisory (AV25-452)

CYBER.GC.CA — 2025-07-24

🔥

New Tool: ficheck.py, (Thu, Jul 24th)

ISC.SANS.EDU — 24 Jul 2025

🔥

Free decryptor for victims of Phobos ransomware released

FORTRA.COM — 24 Jul 2025

🔥

High-Value NPM Developers Compromised in New Phishing Campaign

SECURITYWEEK.COM — 24 Jul 2025

🔥

Clorox Sues Cognizant for $380 Million Over 2023 Hack

SECURITYWEEK.COM — 24 Jul 2025

🔥

China-Based APTs Deploy Fake Dalai Lama Apps to Spy on Tibetan Community

THEHACKERNEWS.COM — 24 Jul 2025

🔥

340K exposed after France Travail data breach | Cybernews

SH.ITJUST.WORKS — 24 Jul 2025

🔥

Defence giant Naval Group hit with major breach | Cybernews

SH.ITJUST.WORKS — 24 Jul 2025

🔥

US nuclear weapons agency hacked in Microsoft SharePoint attacks

SH.ITJUST.WORKS — 24 Jul 2025

🔥

Hackers breach Toptal GitHub account, publish malicious npm packages

BLEEPINGCOMPUTER.COM — 24 Jul 2025

🔥

Sophos captures multiple honors at SE Labs Awards 2025

SOPHOS.COM — 24 Jul 2025

🔥

Hacker sneaks infostealer malware into early access Steam game

BLEEPINGCOMPUTER.COM — 24 Jul 2025

🔥

AI-Powered Cyber Attacks Utilize ML Algorithms to Deploy Malware and Circumvent Traditional Security

GBHACKERS.COM — 24 Jul 2025

🕵️

ISC Stormcast For Thursday, July 24th, 2025 https://isc.sans.edu/podcastdetail/9540, (Thu, Jul 24th)

ISC.SANS.EDU — 24 Jul 2025

🕵️

Hackers Deploy Stealth Backdoor in WordPress Mu-Plugins to Maintain Admin Access

THEHACKERNEWS.COM — 24 Jul 2025

🕵️

Mutmaßlicher Betreiber von großem Cybercrime-Forum geschnappt

CSOONLINE.COM — 24 Jul 2025

🕵️

From Tech Podcasts to Policy: Trump’s New AI Plan Leans Heavily on Silicon Valley Industry Ideas

SECURITYWEEK.COM — 24 Jul 2025

🕵️

AI-Driven Wi-Fi Biometrics WhoFi Tracks Humans Behind Walls with 95.5% Accuracy

GBHACKERS.COM — 24 Jul 2025

🕵️

NPM package ‘is’ with 2.8M weekly downloads infected devs with malware

SH.ITJUST.WORKS — 24 Jul 2025

🕵️

Massive data leak exposes Swedish citizens' lives | Cybernews

SH.ITJUST.WORKS — 24 Jul 2025

🕵️

HeroDevs Raises $125 Million to Secure Deprecated OSS

SECURITYWEEK.COM — 24 Jul 2025

🕵️

NoName057(16) Hackers Target 3,700 Unique Devices Over the Last 13 Months

GBHACKERS.COM — 24 Jul 2025

🕵️

Threat Actors Using .hwp Files to Distribute RokRAT Malware and Evade Detection Mechanisms

GBHACKERS.COM — 24 Jul 2025

🕵️

WAF Just Got an Upgrade… Meet the AI Version!

YOUTUBE.COM — 2025-07-24

🕵️

The Shocking Reason Gen Z May Fail in Cybersecurity

YOUTUBE.COM — 2025-07-24

🕵️

Malware in official mouse software: Endgame Gears OP1w 4K V2 tool infected with Xred-RAT

SH.ITJUST.WORKS — 24 Jul 2025

🕵️

Is AI Still Overhyped in Cybersecurity? 🤖🔥

YOUTUBE.COM — 2025-07-24

🕵️

The End of “Just Say No” in Cybersecurity

YOUTUBE.COM — 2025-07-24

🕵️

Operation Cargotalon: Ung0901 Targets Russian Aerospace Defense Using Eaglet Implant

SH.ITJUST.WORKS — 24 Jul 2025

🕵️

Authorities in Ukraine nab alleged admin of Russian-language cybercrime forum | CyberScoop

SH.ITJUST.WORKS — 24 Jul 2025

🕵️

Trump AI plan pushes critical infrastructure to use AI for cyber defense | CyberScoop

SH.ITJUST.WORKS — 24 Jul 2025

🕵️

Phishers Target Aviation Execs to Scam Customers

INFOSEC.PUB — 24 Jul 2025

🕵️

Granular Permissions + Ephemeral Tokens = Hacker Nightmare

YOUTUBE.COM — 2025-07-24

🕵️

Security by Design — UX and AI in Modern Cybersecurity

PALOALTONETWORKS.COM — 24 Jul 2025

🕵️

Rogue CAPTCHAs: Look out for phony verification pages spreading malware

WELIVESECURITY.COM — 24 Jul 2025

🌐

CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing

THEHACKERNEWS.COM — 24 Jul 2025

🌐

New Koske Linux malware hides in cute panda images

BLEEPINGCOMPUTER.COM — 24 Jul 2025

📡

How to protect yourself from Google Forms scams | Kaspersky official blog

KASPERSKY.COM — 24 Jul 2025

📡

How Solid Protocol Restores Digital Agency

SCHNEIER.COM — 2025-07-24

📡

Watch This Webinar to Uncover Hidden Flaws in Login, AI, and Digital Trust — and Fix Them

THEHACKERNEWS.COM — 24 Jul 2025

📡

Pentests once a year? Nope. It’s time to build an offensive SOC

THEHACKERNEWS.COM — 24 Jul 2025

📡

Cybercrime forum Leak Zone publicly exposed its users’ IP addresses

TECHCRUNCH.COM — 24 Jul 2025

📡

Phishers Target Aviation Execs to Scam Customers

KREBSONSECURITY.COM — 24 Jul 2025

📡

OpenAI confirms ChatGPT Agent is now rolling out for $20 Plus users

BLEEPINGCOMPUTER.COM — 24 Jul 2025

📡

Proactive Email Security: The Power of AI

TRENDMICRO.COM — 24 Jul 2025