matlock.ca // THREAT INTELLIGENCE

96Articles

6Categories

2025-08-11Date

🐛

7-Zip Vulnerability Lets Hackers Write Files and Run Malicious Code

GBHACKERS.COM — 11 Aug 2025

🐛

Xerox FreeFlow Flaws Enable SSRF and Remote Code Execution

GBHACKERS.COM — 11 Aug 2025

🐛

WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately

KEVTHEHACKERNEWS.COM — 11 Aug 2025

🐛

Windows RPC Protocol Exploited to Launch Server Spoofing Attacks

GBHACKERS.COM — 11 Aug 2025

🐛

Russian Hackers Exploited WinRAR Zero-Day in Attacks on Europe, Canada

SECURITYWEEK.COM — 11 Aug 2025

🐛

15,000 Jenkins Servers at Risk from RCE Vulnerability (CVE-2025-53652)

SH.ITJUST.WORKS — 11 Aug 2025

🐛

‘Win-DDoS’: Researchers unveil botnet technique exploiting Windows domain controllers

CSOONLINE.COM — 11 Aug 2025

🐛

Researchers Spot Surge in Erlang/OTP SSH RCE Exploits, 70% Target OT Firewalls

THEHACKERNEWS.COM — 11 Aug 2025

🐛

Erlang/OTP SSH RCE Vulnerability Actively Exploited to Target OT Networks

KEVGBHACKERS.COM — 11 Aug 2025

🐛

Details emerge on WinRAR zero-day attacks that infected PCs with malware

BLEEPINGCOMPUTER.COM — 11 Aug 2025

🐛

Netherlands: Citrix Netscaler flaw CVE-2025-6543 exploited to breach orgs

BLEEPINGCOMPUTER.COM — 11 Aug 2025

⚠️

Security-Infotainment: Die besten Hacker-Dokus

KEVCSOONLINE.COM — 11 Aug 2025

⚠️

GPT-5 Compromised Using Echo Chamber and Storytelling Exploits

GBHACKERS.COM — 11 Aug 2025

⚠️

Efimer Trojan Targets Crypto Wallets Using Phony Legal Notices and Booby-Trapped Torrents

GBHACKERS.COM — 11 Aug 2025

⚠️

SSHamble: New Open-Source Tool Targets SSH Protocol Flaws

GBHACKERS.COM — 11 Aug 2025

⚠️

CSO hiring on the rise: How to land a top security exec role

CSOONLINE.COM — 11 Aug 2025

⚠️

Multiple Critical Flaws Hit Zero Trust Products from Check Point, Zscaler, and Netskope

GBHACKERS.COM — 11 Aug 2025

⚠️

Over 29,000 Exchange servers unpatched against high-severity flaw

BLEEPINGCOMPUTER.COM — 11 Aug 2025

⚠️

Report Reveals Tool Overload Driving Fatigue and Missed Threats in MSPs

CSOONLINE.COM — 11 Aug 2025

⚠️

Legitimate System Functions Exploited to Steal Secrets in Shared Linux Setups

GBHACKERS.COM — 11 Aug 2025

⚠️

Linux Webcams Weaponized to Inject Keystrokes and Execute Attacks

GBHACKERS.COM — 11 Aug 2025

⚠️

WinRAR zero-day exploited to plant malware on archive extraction

SH.ITJUST.WORKS — 11 Aug 2025

⚠️

Smart Bus System Flaw Allows Hackers to Remotely Track and Control Vehicles

GBHACKERS.COM — 11 Aug 2025

⚠️

⚡ Weekly Recap: BadCam Attack, WinRAR 0-Day, EDR Killer, NVIDIA Flaws, Ransomware Attacks & More

THEHACKERNEWS.COM — 11 Aug 2025

⚠️

Chrome Sandbox Escape Earns Researcher $250,000

SECURITYWEEK.COM — 11 Aug 2025

⚠️

7-Zip Arbitrary File Write Vulnerability Let Attackers Execute Arbitrary Code

SH.ITJUST.WORKS — 11 Aug 2025

⚠️

Is Microsoft Gaslighting Us? 💻 #WindowsUpdate

YOUTUBE.COM — 2025-08-11

⚠️

New TETRA Radio Encryption Flaws Expose Law Enforcement Communications

THEHACKERNEWS.COM — 11 Aug 2025

⚠️

Win-DoS’ Zero-Click Exploit Could Weaponize Windows Infrastructure for DDoS Attacks

GBHACKERS.COM — 11 Aug 2025

⚠️

Hackers Exploit ClickFix Technique to Compromise Windows and Run PowerShell Commands

GBHACKERS.COM — 11 Aug 2025

⚠️

U.S. government seized $1 million from Russian ransomware gang

TECHCRUNCH.COM — 11 Aug 2025

⚠️

They Used Google Tag Manager to Hijack WordPress?!

YOUTUBE.COM — 2025-08-11

⚠️

Reimagining Security Operations: SOC as a Service and the Role of AI - Kevin Nikkhoo - CSP #215

KEVYOUTUBE.COM — 2025-08-11

⚠️

WinRAR zero-day exploited in espionage attacks against high-value targets

WELIVESECURITY.COM — 11 Aug 2025

⚠️

Update WinRAR tools now: RomCom and others exploiting zero-day vulnerability

KEVWELIVESECURITY.COM — 11 Aug 2025

📢

IBM security advisory (AV25-493)

CYBER.GC.CA — 2025-08-11

📢

Dell security advisory (AV25-494)

CYBER.GC.CA — 2025-08-11

📢

This Is Why Compliance ≠ Risk Management

YOUTUBE.COM — 2025-08-11

📢

Ubuntu security advisory (AV25-495)

CYBER.GC.CA — 2025-08-11

📢

Red Hat security advisory (AV25-496)

CYBER.GC.CA — 2025-08-11

📢

Gemini per Kalendereinladung gehackt

CSOONLINE.COM — 11 Aug 2025

📢

[Control systems] CISA ICS security advisories (AV25–497)

CYBER.GC.CA — 2025-08-11

📢

[Control systems] ABB security advisory (AV25-498)

CYBER.GC.CA — 2025-08-11

📢

WinRAR security advisory (AV25-499)

CYBER.GC.CA — 2025-08-11

🔥

New Win-DDoS Flaws Let Attackers Turn Public Domain Controllers into DDoS Botnet via RPC, LDAP

THEHACKERNEWS.COM — 11 Aug 2025

🔥

Cyber Attacks, Jailbreaking GPT-5, and Hacker Summer Camp 2025 Highlights

CYBERSECURITYTODAY.LIBSYN.COM — 11 Aug 2025

🔥

Connex Credit Union data breach impacts 172,000 members

BLEEPINGCOMPUTER.COM — 11 Aug 2025

🔥

SoupDealer Malware Evades Sandboxes, AVs, and EDR/XDR in Real-World Attacks

GBHACKERS.COM — 11 Aug 2025

🔥

Australian Regulator Sues Optus Over 2022 Data Breach

SH.ITJUST.WORKS — 11 Aug 2025

🔥

CastleLoader Malware Hits 400+ Devices via Cloudflare-Themed ClickFix Phishing Attack

GBHACKERS.COM — 11 Aug 2025

🔥

Boeing, US Navy supplier Jamco Aerospace claimed in ransomware attack | Cybernews

SH.ITJUST.WORKS — 11 Aug 2025

🔥

Connex Credit Union Data Breach Impacts 172,000 People

SECURITYWEEK.COM — 11 Aug 2025

🔥

Cancer care provider breach exposes 113K+ patients | Cybernews

SH.ITJUST.WORKS — 11 Aug 2025

🔥

U.S. Judiciary confirms breach of court electronic records service

SH.ITJUST.WORKS — 11 Aug 2025

🔥

Silent Watcher Targets Windows Systems, Steals Data via Discord Webhooks

GBHACKERS.COM — 11 Aug 2025

🔥

How to implement a blameless approach to cybersecurity | Kaspersky official blog

KASPERSKY.COM — 11 Aug 2025

🔥

Ransomware Attacks Fall by Almost Half in Q2

SH.ITJUST.WORKS — 11 Aug 2025

🔥

MuddyWater’s DarkBit ransomware cracked for free data recovery

BLEEPINGCOMPUTER.COM — 11 Aug 2025

🔥

Microsoft tests cloud-based Windows 365 disaster recovery PCs

BLEEPINGCOMPUTER.COM — 11 Aug 2025

🔥

Connex Credit Union data breach impacts 172,000 members

SH.ITJUST.WORKS — 11 Aug 2025

🔥

MuddyWater’s DarkBit ransomware cracked for free data recovery

SH.ITJUST.WORKS — 11 Aug 2025

🔥

North Korean Kimsuky hackers exposed in alleged data breach

BLEEPINGCOMPUTER.COM — 11 Aug 2025

🕵️

ISC Stormcast For Monday, August 11th, 2025 https://isc.sans.edu/podcastdetail/9564, (Mon, Aug 11th)

ISC.SANS.EDU — 11 Aug 2025

🕵️

AI Coding Assistant: Creating the Perfect Blueprint for Attackers

GBHACKERS.COM — 11 Aug 2025

🕵️

BadCam: New BadUSB Attack Turns Linux Webcams Into Persistent Threats

SECURITYWEEK.COM — 11 Aug 2025

🕵️

INE Named to Training Industry’s 2025 Top 20 Online Learning Library List

GBHACKERS.COM — 11 Aug 2025

🕵️

Malware Campaign Masquerades as Tesla in Poisoned Google Ads

GBHACKERS.COM — 11 Aug 2025

🕵️

Report Reveals Tool Overload Driving Fatigue and Missed Threats in MSPs

GBHACKERS.COM — 11 Aug 2025

🕵️

Automatic License Plate Readers Are Coming to Schools

SCHNEIER.COM — 2025-08-11

🕵️

Flaws in Major Automaker’s Dealership Systems Allowed Car Hacking, Personal Data Theft

SECURITYWEEK.COM — 11 Aug 2025

🕵️

GreedyBear Steals $1M in Crypto Using 150+ Malicious Firefox Wallet Extensions

SH.ITJUST.WORKS — 11 Aug 2025

🕵️

Google Calendar invites let researchers hijack Gemini to leak user data

SH.ITJUST.WORKS — 11 Aug 2025

🕵️

Data Dump From APT Actor Yields Clues to Attacker Capabilities

SH.ITJUST.WORKS — 11 Aug 2025

🕵️

Meta’s New Feature Turns Instagram into a Real-Time Location Broadcaster

GBHACKERS.COM — 11 Aug 2025

🕵️

Managing the Trust-Risk Equation in AI: Predicting Hallucinations Before They Strike

SECURITYWEEK.COM — 11 Aug 2025

🕵️

Critical Vulnerabilities Uncovered in Zero Trust Network Access Products of Check Point, Zscaler, and NetSkope

SH.ITJUST.WORKS — 11 Aug 2025

🕵️

UAC-0099 Tactics, Techniques, Procedures and Attack Methods Revealed

GBHACKERS.COM — 11 Aug 2025

🕵️

Would You Work for a Robot Boss?

YOUTUBE.COM — 2025-08-11

🕵️

ESW at BlackHat and the weekly enterprise security news - ESW #419

YOUTUBE.COM — 2025-08-11

🕵️

Bootkits Are Scarier Than SIM Swaps 😨

YOUTUBE.COM — 2025-08-11

🕵️

This Isn’t Deepfake—It’s Way Worse

YOUTUBE.COM — 2025-08-11

🕵️

Hackers Extradited to US Over $100 Million Romance Scams and Other Frauds

GBHACKERS.COM — 11 Aug 2025

🕵️

The Night I Crashed the Mainframe by Accident 🤫

YOUTUBE.COM — 2025-08-11

🕵️

Cybersecurity vs. The Insurance Terminator 🤖

YOUTUBE.COM — 2025-08-11

🕵️

Cyber Alert: Excel Links Can Steal Your Data 🧠

YOUTUBE.COM — 2025-08-11

🕵️

MY TAKE: Black Hat 2025 vendors define early contours for a hard pivot to AI security architecture

LASTWATCHDOG.COM — 11 Aug 2025

🕵️

Corporate SaaS: China’s New Battlefield?

YOUTUBE.COM — 2025-08-11

📡

Security flaws in a carmaker’s web portal let one hacker remotely unlock cars from anywhere

TECHCRUNCH.COM — 11 Aug 2025

📡

How to restore GPT-4o when you've GPT-5

BLEEPINGCOMPUTER.COM — 11 Aug 2025

📡

6 Lessons Learned: Focusing Security Where Business Value Lives

THEHACKERNEWS.COM — 11 Aug 2025

📡

'Chairmen' of $100 million scam operation extradited to US

BLEEPINGCOMPUTER.COM — 11 Aug 2025

📡

xAI is testing Grok 4.20 to take on GPT-5, may launch this month

BLEEPINGCOMPUTER.COM — 11 Aug 2025

📡

OneNote finally gets "paste text only" feature on Windows and Mac

BLEEPINGCOMPUTER.COM — 11 Aug 2025

📡

Electronic Arts blocks more than 300,000 attempts to cheat after launching Battlefield 6 beta

TECHCRUNCH.COM — 11 Aug 2025

📡

The Rise of Native Phishing: Microsoft 365 Apps Abused in Attacks

BLEEPINGCOMPUTER.COM — 11 Aug 2025

📡

OpenAI is testing 3,000-per-week limit for GPT-5 Thinking

BLEEPINGCOMPUTER.COM — 11 Aug 2025