MATLOCK.CA
93Articles
8Categories
2025-07-28Date
🚨
CISA Adds Three Known Exploited Vulnerabilities to CatalogCISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2025-20281 Cisco Identity Services Engine Injection Vulnerability CVE-2025-20337 Cisco Identity Services Engine Injection Vulnerability CV…
KEVCISA.GOV — Mon, 28 Jul 25 1
🐛
New “ToolShell” Exploit Targets SharePoint Servers for Full Takeover
GBHACKERS.COM — 28 Jul 2025
🐛
LG Innotek Camera Flaws Could Give Hackers Full Admin Access
GBHACKERS.COM — 28 Jul 2025
🐛
400,000 WordPress Websites Exposed by Post SMTP Plugin Vulnerability
GBHACKERS.COM — 28 Jul 2025
🐛
Microsoft SharePoint Zero-Day
SCHNEIER.COM — 2025-07-28
🐛
Chinese ‘Fire Ant’ spies start to bite unpatched VMware instances
CSOONLINE.COM — 28 Jul 2025
🐛
Sploitlight: Analyzing a Spotlight-based macOS TCC vulnerability
MICROSOFT.COM — 28 Jul 2025
🐛
Exploit available for critical Cisco ISE bug exploited in attacks
BLEEPINGCOMPUTER.COM — 28 Jul 2025
🐛
ToolShell: Uncovering Five Critical Vulnerabilities in Microsoft SharePoint
GBHACKERS.COM — 28 Jul 2025
⚠️
Darkweb – das verkannte Security-Tool
CSOONLINE.COM — 28 Jul 2025
⚠️
Critical Flaws in Niagara Framework Threaten Smart Buildings and Industrial Systems Worldwide
THEHACKERNEWS.COM — 28 Jul 2025
⚠️
Critical Salesforce Flaws Allow Remote Code Execution – Patch Immediately!
GBHACKERS.COM — 28 Jul 2025
⚠️
Scattered Spider Hijacks VMware ESXi to Deploy Ransomware on Critical U.S. Infrastructure
THEHACKERNEWS.COM — 28 Jul 2025
⚠️
The CISO’s challenge: Getting colleagues to understand what you do
CSOONLINE.COM — 28 Jul 2025
⚠️
Amazon AI Tool Hacked, Scattered Spider Attacks VMware, and Major Ransomware Takedown | Cybersecurity Today
CYBERSECURITYTODAY.LIBSYN.COM — 28 Jul 2025
⚠️
Entwickler-Tool von Amazon verseucht
CSOONLINE.COM — 28 Jul 2025
⚠️
Flaw Allowing Website Takeover Found in WordPress Plugin With 400k Installations
SECURITYWEEK.COM — 28 Jul 2025
⚠️
tj-actions Lessons Learned, US Cyber Offense, this week's enterprise security news - D... - ESW #417
YOUTUBE.COM — 2025-07-28
⚠️
BlackSuit Ransomware Group Transitioning to ‘Chaos’ Amid Leak Site Seizure
SECURITYWEEK.COM — 28 Jul 2025
⚠️
Inside Muddled Libra’s Playbook: Call Center Attacks for Initial Breach
GBHACKERS.COM — 28 Jul 2025
⚠️
Root Evidence Launches With $12.5 Million in Seed Funding
SECURITYWEEK.COM — 28 Jul 2025
⚠️
Android Malware-as-a-Service Gets Cheaper, Packing 2FA Interception
GBHACKERS.COM — 28 Jul 2025
⚠️
NPM ‘is’ Package with 2.8M Weekly Downloads Exploited in Attack on Developers
GBHACKERS.COM — 28 Jul 2025
⚠️
“We’re Too New To Be Hacked” – Famous Last Words 😬 #infosec
YOUTUBE.COM — 2025-07-28
⚠️
Parasitic Sharepoint Exploits, (Mon, Jul 28th)
ISC.SANS.EDU — 28 Jul 2025
⚠️
CISA flags PaperCut RCE bug as exploited in attacks, patch now
BLEEPINGCOMPUTER.COM — 28 Jul 2025
⚠️
Raven Stealer Malware Exploits Telegram to Steal Logins, Payment Data, and Autofill Info
GBHACKERS.COM — 28 Jul 2025
⚠️
Why Open Source Might Save Your Job 🔓
YOUTUBE.COM — 2025-07-28
⚠️
UNC3886 Hackers Target Singapore’s Critical Infrastructure by Exploiting 0-Day Vulnerabilities
GBHACKERS.COM — 28 Jul 2025
⚠️
Sploitlight: Analyzing a Spotlight-based macOS TCC vulnerability
INFOSEC.PUB — 28 Jul 2025
⚠️
Microsoft: macOS Sploitlight flaw leaks Apple Intelligence data
BLEEPINGCOMPUTER.COM — 28 Jul 2025
⚠️
Chinese Hackers Exploit Software Vulnerabilities to Breach Targeted Systems
GBHACKERS.COM — 28 Jul 2025
⚠️
Flaw in Gemini CLI AI coding assistant allowed stealthy code execution
BLEEPINGCOMPUTER.COM — 28 Jul 2025
⚠️
ArmouryLoader Bypasses Security Protections to Inject Malicious Code
GBHACKERS.COM — 28 Jul 2025
⚠️
Vulnhuntr: Open-source tool to identify remotely exploitable vulnerabilities
INFOSEC.PUB — 28 Jul 2025
⚠️
Lovense sex toy app flaw leaks private user email addresses
BLEEPINGCOMPUTER.COM — 28 Jul 2025
📢
IBM security advisory (AV25-453)
CYBER.GC.CA — 2025-07-28
📢
When AI Meets Security… You Get THIS Nightmare
YOUTUBE.COM — 2025-07-28
📢
Dell security advisory (AV25-454)
CYBER.GC.CA — 2025-07-28
📢
Ubuntu security advisory (AV25-455)
CYBER.GC.CA — 2025-07-28
📢
Atlassian security advisory (AV25-457)
CYBER.GC.CA — 2025-07-28
📢
Red Hat security advisory (AV25-456)
CYBER.GC.CA — 2025-07-28
📢
Internet Archive is now a US federal depository library
BLEEPINGCOMPUTER.COM — 28 Jul 2025
📢
Are passkeys enterprise-ready? | Kaspersky official blog
KASPERSKY.COM — 28 Jul 2025
📢
Microsoft Edge security advisory (AV25-458)
CYBER.GC.CA — 2025-07-28
📢
[Control systems] CISA ICS security advisories (AV25-459)
CYBER.GC.CA — 2025-07-28
📢
GitHub security advisory (AV25-460)
CYBER.GC.CA — 2025-07-28
📢
BeyondTrust security advisory (AV25-461)
CYBER.GC.CA — 2025-07-28
🔥
Leak Zone Dark Web Forum Breach Exposes 22 Million User IPs and Locations
GBHACKERS.COM — 28 Jul 2025
🔥
Hackers Breach Intelligence Portal Used by the CIA and Other Agencies
GBHACKERS.COM — 28 Jul 2025
🔥
Women’s Dating App “Tea” Data Leak Exposes 13,000 User Selfies
GBHACKERS.COM — 28 Jul 2025
🔥
Weekly Update 462
TROYHUNT.COM — 28 Jul 2025
🔥
Threat Actors Claim Breach of Airpay Payment Gateway
GBHACKERS.COM — 28 Jul 2025
🔥
Allianz Life Data Breach Impacts Most of 1.4 Million US Customers
SECURITYWEEK.COM — 28 Jul 2025
🔥
Email Security Is Stuck in the Antivirus Era: Why It Needs a Modern Approach
THEHACKERNEWS.COM — 28 Jul 2025
🔥
Scattered Spider Targeting VMware vSphere Environments
SECURITYWEEK.COM — 28 Jul 2025
🔥
NASCAR Confirms Personal Information Stolen in Ransomware Attack
SECURITYWEEK.COM — 28 Jul 2025
🔥
⚡ Weekly Recap — SharePoint Breach, Spyware, IoT Hijacks, DPRK Fraud, Crypto Drains and More
THEHACKERNEWS.COM — 28 Jul 2025
🔥
Flights grounded as Russia’s largest airline Aeroflot hit by cyberattack
TECHCRUNCH.COM — 28 Jul 2025
🔥
French submarine secrets surface after cyber attack
BITDEFENDER.COM — 28 Jul 2025
🔥
France's warship builder Naval Group investigates 1TB data breach
BLEEPINGCOMPUTER.COM — 28 Jul 2025
🔥
Hackers Breach Toptal GitHub, Publish 10 Malicious npm Packages With 5,000 Downloads
THEHACKERNEWS.COM — 28 Jul 2025
🔥
New York state cyber chief calls out Trump for cybersecurity cuts
TECHCRUNCH.COM — 28 Jul 2025
🔥
Tea app leak worsens with second database exposing user chats
BLEEPINGCOMPUTER.COM — 28 Jul 2025
🔥
Unlocking the Power of Amazon Security Lake for Proactive Security
TRENDMICRO.COM — 28 Jul 2025
🕵️
ISC Stormcast For Monday, July 28th, 2025 https://isc.sans.edu/podcastdetail/9544, (Mon, Jul 28th)
ISC.SANS.EDU — 28 Jul 2025
🕵️
SHUYAL Emerges: Stealing Login Credentials from 19 Major Browsers
GBHACKERS.COM — 28 Jul 2025
🕵️
Inside Laundry Bear: Unveiling Infrastructure, Tactics, and Procedures
GBHACKERS.COM — 28 Jul 2025
🕵️
KnowBe4 Named a 2025 Gartner Peer Insights™ Customers’ Choice for Email Security Platforms
KNOWBE4.COM — 28 Jul 2025
🕵️
Atomic macOS Stealer Upgraded with Remote Access Backdoor
GBHACKERS.COM — 28 Jul 2025
🕵️
10 Best Ethical Hacking Service Providers in 2025
GBHACKERS.COM — 28 Jul 2025
🕵️
LLM Honeypots Deceive Hackers into Exposing Attack Methods
GBHACKERS.COM — 28 Jul 2025
🕵️
Revisiting UNC3886 Tactics to Defend Against Present Risk
TRENDMICRO.COM — 28 Jul 2025
🕵️
Free Tool Autoswagger Finds The API Flaws Attackers Hope You Miss
BLEEPINGCOMPUTER.COM — 28 Jul 2025
🕵️
Botconf 2025
INFOSEC.PUB — 28 Jul 2025
🕵️
You Have an Alarm, But Did You Lock the Door? 🔐
YOUTUBE.COM — 2025-07-28
🕵️
Mentorship Monday - Discussions for career and learning!
INFOSEC.PUB — 28 Jul 2025
🕵️
Granular Access is Greater Than Admin Chaos 🧠 Here's The Fix
YOUTUBE.COM — 2025-07-28
🕵️
Oyster Backdoor Disguised as PuTTY and KeyPass Targets IT Admins via SEO Poisoning
GBHACKERS.COM — 28 Jul 2025
🕵️
That Time Tom Lehrer Pranked the NSA
SCHNEIER.COM — 2025-07-28
🕵️
Feeling Lost in Tech? Here’s What to Do 🚀
YOUTUBE.COM — 2025-07-28
🕵️
Nobody Knew We Were Making Millions 💰
YOUTUBE.COM — 2025-07-28
🕵️
Why Even Hardcore Hackers Use Active Directory Today
YOUTUBE.COM — 2025-07-28
🕵️
Want to Join CCDC But No Team? Here's Your Shortcut!
YOUTUBE.COM — 2025-07-28
🕵️
MY TAKE: The signal vs. the noise: email messaging in the era of my AI talking to your AI
LASTWATCHDOG.COM — 28 Jul 2025
🌐
Security considerations for critical infrastructure (ITSAP.10.100)
CYBER.GC.CA — 2025-07-28
🌐
Endgame Gear mouse config tool infected users with malware
BLEEPINGCOMPUTER.COM — 28 Jul 2025
📡
Sophos’ Secure by Design 2025 Progress
SOPHOS.COM — 28 Jul 2025
📡
OpenAI could rival Google Shopping with ChatGPT Shop
BLEEPINGCOMPUTER.COM — 28 Jul 2025
📡
OpenAI prepares GPT-5 for roll out
BLEEPINGCOMPUTER.COM — 28 Jul 2025
📡
Microsoft will stop supporting Windows 11 22H2 in October
BLEEPINGCOMPUTER.COM — 28 Jul 2025
📡
Advancing cybersecurity for K-12 and libraries: Strategic considerations for the FCC Cybersecurity Pilot Program
SOPHOS.COM — 28 Jul 2025
📡
Allianz Life hit by hackers, customer and staff personal data stolen
GRAHAMCLULEY.COM — 28 Jul 2025