MATLOCK.CA
101Articles
7Categories
2025-08-05Date
🚨
CISA Adds Three Known Exploited Vulnerabilities to CatalogCISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2020-25078 D-Link DCS-2530L and DCS-2670L Devices Unspecified Vulnerability CVE-2020-25079 D-Link DCS-2530L and DCS-2670L Command Injectio…
KEVCISA.GOV — Tue, 05 Aug 25 1
🐛
Claude AI Flaws Let Attackers Execute Unauthorized Commands Using the Model Itself
GBHACKERS.COM — 05 Aug 2025
🐛
Stealing Machine Keys for fun and profit (or riding the SharePoint wave), (Tue, Aug 5th)
ISC.SANS.EDU — 05 Aug 2025
🐛
Critical Flaw in ADOdb SQLite3 Driver Allows Arbitrary SQL Execution
GBHACKERS.COM — 05 Aug 2025
🐛
Nvidia patches critical Triton server bugs that threaten AI model security
CSOONLINE.COM — 05 Aug 2025
🐛
Hackers Target SharePoint Flaw to Access IIS Machine Keys
GBHACKERS.COM — 05 Aug 2025
🐛
Google’s August Patch Fixes Two Qualcomm Vulnerabilities Exploited in the Wild
KEVTHEHACKERNEWS.COM — 05 Aug 2025
🐛
Cursor AI Code Editor Vulnerability Enables RCE via Malicious MCP File Swaps Post Approval
THEHACKERNEWS.COM — 05 Aug 2025
⚠️
So verändert KI Ihre GRC-Strategie
CSOONLINE.COM — 05 Aug 2025
⚠️
LegalPwn Attack Tricks AI Tools Like ChatGPT and Gemini into Running Malicious Code
GBHACKERS.COM — 05 Aug 2025
⚠️
SonicWall Investigating Potential SSL VPN Zero-Day After 20+ Targeted Attacks Reported
THEHACKERNEWS.COM — 05 Aug 2025
⚠️
WAF Protections Bypassed via JS Injection and Parameter Pollution for XSS Attacks
GBHACKERS.COM — 05 Aug 2025
⚠️
Top cybersecurity M&A deals for 2025
CSOONLINE.COM — 05 Aug 2025
⚠️
162: Hieu
DARKNETDIARIES.COM — 05 Aug 2025
⚠️
5 hard truths of a career in cybersecurity — and how to navigate them
CSOONLINE.COM — 05 Aug 2025
⚠️
Ransomware goes cloud native to target your backup infrastructure
KEVCSOONLINE.COM — 05 Aug 2025
⚠️
Streamlit Vulnerability Exposes Users to Cloud Account Takeover Attacks
GBHACKERS.COM — 05 Aug 2025
⚠️
SonicWall Hunts for Zero-Day Amid Surge in Firewall Exploitation
SECURITYWEEK.COM — 05 Aug 2025
⚠️
15,000 Fake TikTok Shop Domains Deliver Malware, Steal Crypto via AI-Driven Scam Campaign
THEHACKERNEWS.COM — 05 Aug 2025
⚠️
Microsoft Offers $5 Million at Zero Day Quest Hacking Contest
SECURITYWEEK.COM — 05 Aug 2025
⚠️
Uniting software development and application security - Jonathan Schneider, Will Vande... - ASW #342
YOUTUBE.COM — 2025-08-05
⚠️
Microsoft increases Zero Day Quest prize pool to $5 million
BLEEPINGCOMPUTER.COM — 05 Aug 2025
⚠️
Android’s August 2025 Update Patches Exploited Qualcomm Vulnerability
SECURITYWEEK.COM — 05 Aug 2025
⚠️
Raspberry Robin Malware Targets Windows Systems via New CLFS Driver Exploit
GBHACKERS.COM — 05 Aug 2025
⚠️
Android gets patches for Qualcomm flaws exploited in attacks
BLEEPINGCOMPUTER.COM — 05 Aug 2025
⚠️
MediaTek Chip Vulnerabilities Allow Attackers to Gain Elevated Access
GBHACKERS.COM — 05 Aug 2025
⚠️
SonicWall urges admins to disable SSLVPN amid rising attacks
BLEEPINGCOMPUTER.COM — 05 Aug 2025
⚠️
Misconfigurations Are Not Vulnerabilities: The Costly Confusion Behind Security Risks
THEHACKERNEWS.COM — 05 Aug 2025
⚠️
Threat Actors Exploit Open-Source Vulnerabilities to Spread Malicious Code
GBHACKERS.COM — 05 Aug 2025
⚠️
The age of infostealers is here. Is your financial service secure?
CSOONLINE.COM — 05 Aug 2025
⚠️
North Korean Hackers Exploit NPM Packages to Steal Cryptocurrency and Sensitive Data
GBHACKERS.COM — 05 Aug 2025
⚠️
Cisco discloses data breach impacting Cisco.com user accounts
BLEEPINGCOMPUTER.COM — 05 Aug 2025
⚠️
Nvidia Patches Critical RCE Vulnerability Chain
SH.ITJUST.WORKS — 5 Aug 2025
⚠️
SonicWall Alerts on Surge of Attacks Against Gen 7 Firewalls Over Past 72 Hours
GBHACKERS.COM — 05 Aug 2025
⚠️
Critical Vulnerability in NestJS Devtools: Localhost RCE via Sandbox Escape
SH.ITJUST.WORKS — 5 Aug 2025
⚠️
Cisco Says User Data Stolen in CRM Hack
SECURITYWEEK.COM — 05 Aug 2025
⚠️
Cloudflare Accuses Perplexity AI of Bypassing Firewalls with User-Agent Spoofing
GBHACKERS.COM — 05 Aug 2025
⚠️
Cisco Discloses Data Breach Exposed User Profiles from Cisco.com
GBHACKERS.COM — 05 Aug 2025
⚠️
SonicWall urges customers to disable SSLVPN amid reports of ransomware attacks
TECHCRUNCH.COM — 05 Aug 2025
⚠️
The Heat Wasn't Just Outside: Cyber Attacks Spiked in Summer 2025
BLEEPINGCOMPUTER.COM — 05 Aug 2025
⚠️
Hacker used a voice phishing attack to steal Cisco customers’ personal information
TECHCRUNCH.COM — 05 Aug 2025
⚠️
The Real Reason Microsoft Is Abandoning Your Hardware! 💣 #hackingnews
YOUTUBE.COM — 2025-08-05
⚠️
Surge in Cyber Attacks Targeting AI Infrastructure as Critical Vulnerabilities Emerge
GBHACKERS.COM — 05 Aug 2025
⚠️
The AI Fix #62: AI robots can now pass CAPTCHAs, and punch you in the face
GRAHAMCLULEY.COM — 05 Aug 2025
⚠️
Microsoft Launches Zero-Day Quest Hacking Contest with Rewards Up to $5 Million
GBHACKERS.COM — 05 Aug 2025
⚠️
CISA bringt Open-Source-Plattform für digitale Forensik
CSOONLINE.COM — 05 Aug 2025
⚠️
ClickFix Malware Campaign Exploits CAPTCHAs to Spread Cross-Platform Infections
THEHACKERNEWS.COM — 05 Aug 2025
⚠️
Over 10,000 Malicious TikTok Shop Domains Target Users with Malware and Credential Theft
GBHACKERS.COM — 05 Aug 2025
⚠️
CISA Releases Two Industrial Control Systems Advisories
CISA.GOV — Tue, 05 Aug 25 1
⚠️
U.S. Treasury Warns Crypto ATMs Are Aiding Criminal Activity
GBHACKERS.COM — 05 Aug 2025
⚠️
Microsoft Bounty Program year in review: $17 million in rewards
MSRC.MICROSOFT.COM — 05 Aug 2025
⚠️
Adobe issues emergency fixes for AEM Forms zero-days after PoCs released
BLEEPINGCOMPUTER.COM — 05 Aug 2025
⚠️
Warning: New Phishing Campaign Targets Instagram Users
KNOWBE4.COM — 05 Aug 2025
⚠️
Potential SSL VPN Zero-Day vulnerability impacting Gen 7 SonicWall Firewalls
CYBER.GC.CA — 2025-08-05
⚠️
Pandora confirms data breach amid ongoing Salesforce data theft attacks
BLEEPINGCOMPUTER.COM — 05 Aug 2025
⚠️
SparkRAT: Exploiting Architectural Weaknesses in Open-Source Offensive Tools
F5.COM — 05 Aug 2025
⚠️
ESET Threat Report H1 2025: ClickFix, infostealer disruptions, and ransomware deathmatch
WELIVESECURITY.COM — 05 Aug 2025
📢
HPE security advisory (AV25-477)
CYBER.GC.CA — 2025-08-05
📢
IBM security advisory (AV25-478)
CYBER.GC.CA — 2025-08-05
📢
Dell security advisory (AV25-479)
CYBER.GC.CA — 2025-08-05
📢
Ubuntu security advisory (AV25-480)
CYBER.GC.CA — 2025-08-05
📢
[Control systems] CISA ICS security advisories (AV25-481)
CYBER.GC.CA — 2025-08-05
📢
Android security advisory – August 2025 monthly rollup (AV25-482)
CYBER.GC.CA — 2025-08-05
📢
Red Hat security advisory (AV25-483)
CYBER.GC.CA — 2025-08-05
📢
Google Chrome security advisory (AV25-484)
CYBER.GC.CA — 2025-08-05
📢
Comp AI Raises $2.6M to Streamline and Disrupt the SOC 2 Market
GBHACKERS.COM — 05 Aug 2025
📢
Risk Management Said “Hold My Beer” 🍺
YOUTUBE.COM — 2025-08-05
🔥
How Top CISOs Save Their SOCs from Alert Chaos to Never Miss Real Incidents
THEHACKERNEWS.COM — 05 Aug 2025
🔥
Ransomware groups shift to quadruple extortion to maximize pressure - Help Net Security
SH.ITJUST.WORKS — 5 Aug 2025
🔥
Elevate your protection with expanded Microsoft Defender Experts coverage
TECHCOMMUNITY.MICROSOFT.COM — 05 Aug 2025
🔥
Kimsuky APT Uses LNK Files to Deploy Reflective Malware and Evade Windows Defender
GBHACKERS.COM — 05 Aug 2025
🔥
ClickTok: The SparkKitty Drop on TikTok Shops
INFOSEC.PUB — 5 Aug 2025
🔥
Welcoming Guardio to Have I Been Pwned's Partner Program
TROYHUNT.COM — 05 Aug 2025
🔥
PBS confirms data breach after employee info leaked on Discord servers
BLEEPINGCOMPUTER.COM — 05 Aug 2025
🕵️
ISC Stormcast For Tuesday, August 5th, 2025 https://isc.sans.edu/podcastdetail/9556, (Tue, Aug 5th)
ISC.SANS.EDU — 05 Aug 2025
🕵️
Chollima APT Group Targets Job Seekers and Organizations with JavaScript-Based Malware
GBHACKERS.COM — 05 Aug 2025
🕵️
Connect and corrupt: C++ coroutines prone to code-reuse attack despite control flow integrity
INFOSEC.PUB — 5 Aug 2025
🕵️
New Android Malware Poses as SBI Card and Axis Bank Apps to Steal Financial Data
GBHACKERS.COM — 05 Aug 2025
🕵️
Surveilling Your Children with AirTags
SCHNEIER.COM — 2025-08-05
🕵️
Vibe Coding: When Everyone’s a Developer, Who Secures the Code?
SECURITYWEEK.COM — 05 Aug 2025
🕵️
Approov Raises $6.7 Million for Mobile App Security
SECURITYWEEK.COM — 05 Aug 2025
🕵️
Black Hat USA 2025 – Summary of Vendor Announcements (Part 1)
SECURITYWEEK.COM — 05 Aug 2025
🕵️
TSMC-Mitarbeiter unter Spionageverdacht festgenommen
CSOONLINE.COM — 05 Aug 2025
🕵️
APT36 Targets Indian Government: Credential Theft Campaign Uncovered
GBHACKERS.COM — 05 Aug 2025
🕵️
Perplexity is using stealth, undeclared crawlers to evade website no-crawl directives
SH.ITJUST.WORKS — 5 Aug 2025
🕵️
LegalPwn Attack Tricks GenAI Tools Into Misclassifying Malware as Safe Code
SH.ITJUST.WORKS — 5 Aug 2025
🕵️
CyberheistNews Vol 15 #31 [Heads Up] Malicious M365 Connectors Put 300M Accounts at Risk
KNOWBE4.COM — 05 Aug 2025
🕵️
SHARED INTEL Q&A: From alert to fix — Gomboc brings trusted AI to Infrastructure-as-Code
LASTWATCHDOG.COM — 05 Aug 2025
🕵️
“Genie in a Bottle” or Google’s AI Assistant?
YOUTUBE.COM — 2025-08-05
🕵️
Microsoft’s Project Ire Autonomously Reverse Engineers Software to Find Malware
SECURITYWEEK.COM — 05 Aug 2025
🕵️
Would You Survive a Cyber Defense Gauntlet? 😰
YOUTUBE.COM — 2025-08-05
🕵️
How Georgia Department of Transportation Is Building Cyber Resilience
PALOALTONETWORKS.COM — 05 Aug 2025
🕵️
From Dresses to Cybersecurity: Her Unexpected Journey
YOUTUBE.COM — 2025-08-05
🕵️
ClickFix Social Engineering is Becoming More Popular
KNOWBE4.COM — 05 Aug 2025
🕵️
Wait… GitHub Is Authorizing Cloud Actions?
YOUTUBE.COM — 2025-08-05
🕵️
LLMs in Cybersecurity: Smart or Dangerous?
YOUTUBE.COM — 2025-08-05
🕵️
SOC: Cost center or profit machine?
YOUTUBE.COM — 2025-08-05
🕵️
Security Risk Advisors Launches SCALR AI for Fast-Track Agentive AI Enablement
GBHACKERS.COM — 05 Aug 2025
🕵️
MFA Bypass, SonicWall, BIOS Shade, Sex Toys, FBI Warning, Claude v GPT-5, Josh Marpet - SWN #500
YOUTUBE.COM — 2025-08-05
🕵️
Service Plan or Cease & Desist? VMware’s 2025 Update
YOUTUBE.COM — 2025-08-05
📡
Phishing attack on PyPi and AMO developers | Kaspersky official blog
KASPERSKY.COM — 05 Aug 2025