24Articles
5Categories
2025-08-09Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 2[−]
9 AugOver 28,000 Microsoft Exchange Servers Exposed Online to CVE-2025-53786 VulnerabilityThe cybersecurity community faces a significant threat as scanning data reveals over 28,000 unpatched Microsoft Exchange servers remain exposed on the public internet, vulnerable to a critical security flaw designated CVE-2025-53786. This high-severity vulnerability, which carrie…GBHACKERS.COM
9 AugCritical Linux Kernel Vulnerability Allows Attackers Gain Full Kernel-Level Control From Chrome SandboxAugust 9, 2025: A severe security vulnerability in the Linux kernel, dubbed CVE-2025-38236, has been uncovered by Google Project Zero researcher Jann Horn, exposing a pathway for attackers ranging from native code execution within the Chrome renderer sandbox to full kernel-level …GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 10[−]
9 AugHackers Went Looking for a Backdoor in High-Security Safes—and Now Can Open Them in Secondssubmitted by floofloof to cybersecurity 7 points | 0 comments https://www.wired.com/story/securam-prologic-safe-lock-backdoor-exploits/ archive.is/1NWAe Omo and Rowley say they informed Securam about both their safe-opening techniques in spring of last year, but have until now ke…SH.ITJUST.WORKS
9 AugCyberArk and HashiCorp Flaws Enable Remote Vault Takeover Without CredentialsCybersecurity researchers have discovered over a dozen vulnerabilities in enterprise secure vaults from CyberArk and HashiCorp that, if successfully exploited, can allow remote attackers to crack open corporate identity systems and extract enterprise secrets and tokens from them.…THEHACKERNEWS.COM
9 AugCybersecurity Today Month In Review: August 9, 2025Cybersecurity Today: July Review - Massive Lawsuits, AI Warnings, and Major Breaches In this episode of Cybersecurity Today: The Month in Review, host Jim Love and an expert panel, including David Shipley, Anton Levaja, and Tammy Harper, discuss the most significant cybersecurity…CYBERSECURITYTODAY.LIBSYN.COM
9 AugCastleBot MaaS Released Diverse Payloads in Coordinated Mass Ransomware AttacksIBM X-Force has uncovered CastleBot, a nascent malware framework operating as a Malware-as-a-Service (MaaS) platform, enabling cybercriminals to deploy a spectrum of payloads ranging from infostealers to sophisticated backdoors implicated in ransomware operations. First detected …GBHACKERS.COM
9 AugMultiple Zero-Day Exploits Discover That Bypass BitLocker, Exposing All Encrypted DataMicrosoft security researchers have uncovered four critical vulnerabilities in Windows BitLocker that could allow attackers with physical access to bypass the encryption system and extract sensitive data. The findings, revealed in research dubbed “BitUnlocker,” demons…GBHACKERS.COM
9 AugFree Wi-Fi Leaves Buses Vulnerable to Remote HackingResearchers showed how flaws in a bus’ onboard and remote systems can be exploited by hackers for tracking, control and spying. The post Free Wi-Fi Leaves Buses Vulnerable to Remote Hacking appeared first on SecurityWeek .SECURITYWEEK.COM
9 AugCitrix Just Got Bypassed… AgainOver 1,200 Citrix servers are still exposed to a critical authentication bypass flaw — and hackers are loving it. This Short breaks down how “Citrix Bleed 2” lets attackers hijack session tokens, skip MFA entirely, and walk right in like legit users. For cybersecurity pros, this …YOUTUBE.COM
9 AugWhy Nation-State Hackers Keep Winning 🕵️Cybersecurity leaders are under pressure—but are they adapting fast enough? In this powerful 30-second short, Aaran breaks down how nation-state attackers bypass security by exploiting outdated protocols, weak access controls, and untrained support teams. From social engineering …YOUTUBE.COM
9 AugGoogle confirms data breach exposed potential Google Ads customers' infoGoogle has confirmed that a recently disclosed data breach of one of its Salesforce CRM instances involved the information of potential Google Ads customers. [...]BLEEPINGCOMPUTER.COM
9 AugBitUnlocker – Multiple 0-days to Bypass BitLocker and Extract All Protected Datasubmitted by cm0002 to cybersecurity 3 points | 0 comments https://cybersecuritynews.com/bitunlocker-bypass-bitlocker/INFOSEC.PUB
🔥 INCIDENT REPORTING 3[−]
9 Aug“Let’s Just Turn Evil” — What?!What happens when a cybersecurity expert jokes about turning to the dark side? In this hilarious short, Doug White drops a bold prediction: cybercrime could soon rival the world's biggest economies. With a twist of sarcasm, he imagines a villainous retirement plan involving ranso…YOUTUBE.COM
9 AugBlockchain Is Terrifying… But Brilliant 💀🔐Blockchain used to feel like just another buzzword... until cybersecurity expert Joshua Marpet dropped this chilling take. In this short, he reveals why blockchain is both fascinating and frightening — from Merkle trees to ransomware payments. Viewers will get a glimpse into how …YOUTUBE.COM
9 AugCEO Sent a Malware File… Guess What HappenedWhen the CEO of a cybersecurity company sent a suspicious executable file to the entire staff, no one expected what happened next. Despite quarterly training and top-tier security tools, 40% of the team still tried to run it. This short reveals the shocking reality of how authori…YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 7[−]
9 AugWindows User Account Control Bypassed Using Character Editor to Escalate Privilegessubmitted by cm0002 to cybersecurity 3 points | 0 comments https://cybersecuritynews.com/windows-user-account-control-bypassed/INFOSEC.PUB
9 AugFlipper Zero 'DarkWeb' Firmware Bypasses Rolling Code Security on Major Vehicle Brandssubmitted by cm0002 to cybersecurity 4 points | 1 comments https://cybersecuritynews.com/flipper-zero-darkweb-firmware/INFOSEC.PUB
9 AugChromeAlone – A Browser Based Cobalt Strike Like C2 Tool That Turns Chrome Into a Hacker’s PlaygroundAt DEF CON 33, security researcher Mike Weber of Praetorian Security unveiled ChromeAlone — a Chromium-based browser Command & Control (C2) framework capable of replacing traditional offensive security implants like Cobalt Strike or Meterpreter. Not long ago, web browsers wer…GBHACKERS.COM
9 AugWhen You’re in Charge but Not in Control 😨 #CyberLifeWhen cybersecurity leaders feel powerless, it’s more than just stress—it’s terror. In this short, Alla Valente compares being a CISO today to riding a roller coaster you can’t get off. No brakes, no control, just chaos. Her raw honesty hits home for anyone navigating modern digit…YOUTUBE.COM
9 AugWhen Microsoft Lets Your Devices Talk Behind Your Back 👀A little-known Microsoft 365 feature just raised eyebrows across the cybersecurity world. Doug White explains how apps, cloud services, even printers can send out broadcast messages—just like old-school mainframes. It started with special devices… but quickly escalated into a sys…YOUTUBE.COM
9 AugWhy You Might Never Talk To a Human Banker Again 🤖In 2025, banks are quietly shifting to AI—and most customers have no idea. This short reveals how artificial intelligence is taking over everyday financial services, from chatbots to full-on financial advisors. If you're in cybersecurity or finance, this AI takeover changes every…YOUTUBE.COM
9 Aug4.7 BILLION DNS Requests in 34 Minutes?!In just 34 minutes, over 4.7 billion DNS queries were processed — a stat that blows the minds of even seasoned cybersecurity pros. This short reveals the staggering scale of DNS activity, using real data from 2021 and 2020 that shows just how crucial and chaotic the internet’s un…YOUTUBE.COM
📡 INFOSEC NEWS 2[−]
9 AugResearchers Uncover GPT-5 Jailbreak and Zero-Click AI Agent Attacks Exposing Cloud and IoT SystemsCybersecurity researchers have uncovered a jailbreak technique to bypass ethical guardrails erected by OpenAI in its latest large language model (LLM) GPT-5 and produce illicit instructions. Generative artificial intelligence (AI) security platform NeuralTrust said it combined a …THEHACKERNEWS.COM
9 Aug60 malicious Ruby gems downloaded 275,000 times steal credentialsSixty malicious Ruby gems containing credential-stealing code have been downloaded over 275,000 times since March 2023, targeting developer accounts. [...]BLEEPINGCOMPUTER.COM