80Articles
8Categories
2025-08-14Date
🚨 CISA KEV 1[−]
14 Aug KEVCISA Adds Two N-able N-central Flaws to Known Exploited Vulnerabilities CatalogThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws impacting N-able N-central to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.  N-able N-central is a Remote Monitoring and Manage…THEHACKERNEWS.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 8[−]
14 Aug KEVCISA Alerts on N-able N-Central Deserialization and Injection Flaw Under Active ExploitationThe Cybersecurity and Infrastructure Security Agency (CISA) has issued urgent alerts regarding two critical vulnerabilities in N-able N-Central that are currently being actively exploited, prompting immediate action from organizations using this remote monitoring and management p…GBHACKERS.COM
14 AugCritical WordPress Plugin Vulnerability Puts 70,000+ Sites at Risk of Remote Code ExecutionA severe security vulnerability has been discovered in a popular WordPress plugin used by over 70,000 websites worldwide, potentially exposing them to complete takeover by malicious actors. The vulnerability, tracked as CVE-2025-7384, affects the “Database for Contact Form …GBHACKERS.COM
14 AugEncryptHub Turns Brave Support Into a Dropper; MMC Flaw Completes the RunTrustwave SpiderLabs researchers have uncovered a sophisticated EncryptHub campaign that ingeniously abuses the Brave Support platform to deliver malicious payloads, leveraging the recently disclosed CVE-2025-26633 vulnerability in Microsoft Management Console (MMC). Dubbed MSC E…GBHACKERS.COM
14 AugMicrosoft fixes "BadSuccessor" Kerberos vulnerability (CVE-2025-53779) - Help Net Securitysubmitted by kid to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2025/08/13/microsoft-fixes-badsuccessor-kerberos-vulnerability-cve-2025-53779/SH.ITJUST.WORKS
14 AugMicrosoft IIS Web Deploy Vulnerability Allows Remote Code ExecutionMicrosoft has disclosed a critical security vulnerability in its Internet Information Services (IIS) Web Deploy tool that could allow attackers to execute arbitrary code remotely on affected systems. The vulnerability, designated as CVE-2025-53772, was announced on August 12, 202…GBHACKERS.COM
14 AugCISA Warns of Attacks Exploiting N-able VulnerabilitiesCISA reported becoming aware of attacks exploiting CVE-2025-8875 and CVE-2025-8876 in N-able N-central on the day they were patched. The post CISA Warns of Attacks Exploiting N-able Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
14 AugFlaws in a pair of Grafana plugins could hand over DevOps controlTwo now-patched critical flaws in Grafana’s plugin architecture could let attackers take full control of an organization’s observability instance. Grafana is a widely used DevOps observability platform for visualizing metrics, logs, and traces, and the two plugins in question, SQ…CSOONLINE.COM
14 AugFortinet patches critical flaw with public exploit in FortiSIEMFortinet fixed multiple vulnerabilities across its products this week, including a critical flaw in FortiSIEM that can allow unauthenticated attackers to execute unauthorized code or commands. More importantly, the company said a working exploit for this flaw was detected in the …CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 22[−]
14 AugXerox FreeFlow Core Vulnerability Allows Remote Code Execution — PoC Now PublicSecurity researchers have disclosed critical vulnerabilities in Xerox FreeFlow Core that enable unauthenticated remote attackers to execute arbitrary code on vulnerable systems. The proof-of-concept exploits are now publicly available, raising immediate concerns for organizations…GBHACKERS.COM
14 AugProxyware Campaign Piggybacks on Popular YouTube Video Download ServicesThe AhnLab Security Intelligence Center (ASEC) has uncovered fresh instances of proxyware distribution by threat actors leveraging deceptive advertising on freeware sites. Building on prior reports, such as the “DigitalPulse Proxyware Being Distributed Through Ad Pages̶…GBHACKERS.COM
14 Aug7 reasons the SOC is in crisis — and 5 steps to fix itI’ve been thinking a lot about SOC efficacy lately, and I’m going to take a position that might make some people uncomfortable. Despite organizations investing millions in security operations centres (SOC) and state-of-the-art detection technologies, we’re seeing breaches at unpr…CSOONLINE.COM
14 AugCISA warns of N-able N-central flaws exploited in zero-day attacks​CISA warned on Wednesday that attackers are actively exploiting two security vulnerabilities in N‑able's N-central remote monitoring and management (RMM) platform. [...]BLEEPINGCOMPUTER.COM
14 AugAttackers Need Just One Vulnerability to Own Your Rooted AndroidAndroid privilege escalation has been transformed by rooting frameworks such as KernelSU, APatch, and SKRoot, which use advanced kernel patching techniques to enable unauthorized code execution at the kernel level. These tools hook into critical system calls, such as prctl, to es…GBHACKERS.COM
14 AugSimple Steps for Attack Surface ReductionStory teaser text: Cybersecurity leaders face mounting pressure to stop attacks before they start, and the best defense may come down to the settings you choose on day one. In this piece, Yuriy Tsibere explores how default policies like deny-by-default, MFA enforcement, and appli…THEHACKERNEWS.COM
14 AugWindows Out-of-Box-Experience Flaw Enables Full Administrative Command Prompt AccessA newly documented vulnerability in Windows’ Out-of-Box-Experience (OOBE) allows users to bypass security restrictions and gain full administrative access to command prompt functionality, even when Microsoft’s intended protective measures are in place. Security resear…GBHACKERS.COM
14 Aug‘AI Induced Destruction’ – How AI Misuse is Creating New Attack VectorsCybersecurity firms are reporting a disturbing new trend in 2025: artificial intelligence assistants designed to boost productivity are inadvertently becoming destructive forces, causing massive system failures and data breaches. These incidents represent a fundamental shift from…GBHACKERS.COM
14 Aug‘MadeYouReset’ HTTP2 Vulnerability Enables Massive DDoS AttacksThe new DDoS attack vector, which involves HTTP/2 implementation flaws, has been compared to Rapid Reset. The post ‘MadeYouReset’ HTTP2 Vulnerability Enables Massive DDoS Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
14 AugNew Android Malware Wave Hits Banking via NFC Relay Fraud, Call Hijacking, and Root ExploitsCybersecurity researchers have disclosed a new Android trojan called PhantomCard that abuses near-field communication (NFC) to conduct relay attacks for facilitating fraudulent transactions in attacks targeting banking customers in Brazil. "PhantomCard relays NFC data from a vict…THEHACKERNEWS.COM
14 AugZoom and Xerox Release Critical Security Updates Fixing Privilege Escalation and RCE Flawssubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/08/zoom-and-xerox-release-critical.htmlSH.ITJUST.WORKS
14 AugFortinet warns of FortiSIEM pre-auth RCE flaw with exploit in the wildsubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/fortinet-warns-of-fortisiem-pre-auth-rce-flaw-with-exploit-in-the-wild/SH.ITJUST.WORKS
14 AugVulnerabilities in Xerox Print Orchestration Product Allow Remote Code ExecutionPath traversal and XXE injection flaws allowing unauthenticated remote code execution have been patched in Xerox FreeFlow Core. The post Vulnerabilities in Xerox Print Orchestration Product Allow Remote Code Execution appeared first on SecurityWeek .SECURITYWEEK.COM
14 AugWhen Theft Replaces Encryption: Blue Report 2025 on Ransomware & InfostealersRansomware and infostealers are winning on stealth, not encryption. Picus Blue Report 2025 reveals just 3% of data exfiltration attempts are stopped. Find and fix your biggest exposure gaps before they're exploited. [...]BLEEPINGCOMPUTER.COM
14 AugNew HTTP/2 'MadeYouReset' Vulnerability Enables Large-Scale DoS AttacksMultiple HTTP/2 implementations have been found susceptible to a new attack technique called MadeYouReset that could be explored to conduct powerful denial-of-service (DoS) attacks. "MadeYouReset bypasses the typical server-imposed limit of 100 concurrent HTTP/2 requests per TCP …THEHACKERNEWS.COM
14 AugHackers Exploit Microsoft Flaw to Breach Canadian House of Commons to Gain Unauthorized AccessThe Canadian House of Commons has fallen victim to a significant cyberattack orchestrated by an unidentified “threat actor” who successfully exploited a recent Microsoft vulnerability to access sensitive government employee data. The incident, which occurred on Friday…GBHACKERS.COM
14 AugCISA Releases Thirty-Two Industrial Control Systems AdvisoriesCISA released thirty-two Industrial Control Systems (ICS) advisories on August 14, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-226-01  Siemens SIMATIC RTLS Locating Manager ICSA-25-22…CISA.GOV
14 AugOver $300 million in cybercrime crypto seized in anti-fraud effortMore than $300 million worth of cryptocurrency linked to cybercrime and fraud schemes has been frozen due to two separate initiatives involving law enforcement and private companies. [...]BLEEPINGCOMPUTER.COM
14 AugHackberry PIs and Other Hacker Things - PSW #887We kick things off with a deep dive into the Hackberry PI and how to build one. Then in the security news: * Will Perplexity buy Chrome? * ESP32 Bus Pirates * Poisoned telemetry * Docker image security * Fully Open Source Quantum Sensors * Securing your car, Flippers, and show me…YOUTUBE.COM
14 AugFor $40, you can buy stolen police and government email accountssubmitted by PhilipTheBucket to cybersecurity 2 points | 1 comments https://www.helpnetsecurity.com/2025/08/14/stolen-government-email-accounts/ Active police and government email accounts are being sold on the dark web for as little as $40, giving cybercriminals a direct line in…SH.ITJUST.WORKS
14 AugFIDO underminedThe FIDO standard is generally regarded as secure and user-friendly. It is used for passwordless authentication and is considered an effective means against phishing attempts. However, research experts from Proofpoint have now discovered a new way to circumvent FIDO-based authent…CSOONLINE.COM
14 AugMultiple Vulnerabilities in Fortinet Products Could Allow for Remote Code ExecutionMultiple vulnerabilities have been discovered in Fortinet products, the most severe of which could allow for remote code execution. FortiSIEM is a Security Information and Event Management (SIEM) solution from Fortinet that provides real-time infrastructure and user awareness for…CISECURITY.ORG
📋 SECURITY BULLETINS 1[−]
14 AugMicrosoft fixes Windows Server bug causing cluster, VM issuesMicrosoft has resolved a known issue that triggers Cluster service and VM restart issues after installing July's Windows Server 2019 security updates. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 9[−]
14 AugCISA Publishes Operational Technology Guide for Critical Infrastructure StakeholdersThe Cybersecurity and Infrastructure Security Agency (CISA), in partnership with eight other national cyber agencies, has released a comprehensive “Foundations for OT Cybersecurity: Asset Inventory Guidance for Owners and Operators.” Published on August 13, 2025, this new guide e…GBHACKERS.COM
14 AugHackers Found Using CrossC2 to Expand Cobalt Strike Beacon’s Reach to Linux and macOSJapan's CERT coordination center (JPCERT/CC) on Thursday revealed it observed incidents that involved the use of a command-and-control (C2) framework called CrossC2, which is designed to extend the functionality of Cobalt Strike to other platforms like Linux and Apple macOS for c…THEHACKERNEWS.COM
14 AugThreat Actors Leverage CrossC2 to Extend Cobalt Strike to Linux and macOSJPCERT/CC verified a number of events in which threat actors were seen using CrossC2, an unofficial extension tool that creates Cobalt Strike Beacons that work with Linux and macOS. This campaign, which targeted Active Directory (AD) infrastructures, involved the use of CrossC2 a…GBHACKERS.COM
🔥 INCIDENT REPORTING 12[−]
14 AugFIDO ausgehebeltsrcset="https://b2b-contenthub.com/wp-content/uploads/2025/08/ymgerman_shutterstock_1022739901_16z9_NR.jpg?quality=50&strip=all 6562w, https://b2b-contenthub.com/wp-content/uploads/2025/08/ymgerman_shutterstock_1022739901_16z9_NR.jpg?resize=300%2C168&quality=50&strip=…CSOONLINE.COM
14 AugCrypto24 Ransomware Group Blends Legitimate Tools with Custom Malware for Stealth AttacksCrypto24 is a ransomware group that stealthily blends legitimate tools with custom malware, using advanced evasion techniques to bypass security and EDR technologies.TRENDMICRO.COM
14 AugSplunk Publishes Defender’s Guide to Spot ESXi Ransomware EarlySplunk has released a comprehensive defender’s guide aimed at helping cybersecurity teams detect and prevent ransomware attacks targeting ESXi infrastructure before they can cause widespread damage. The guide comes as organizations continue to face mounting pressure from cy…GBHACKERS.COM
14 AugLLM Coding Integrity BreachHere’s an interesting story about a failure being introduced by LLM-written code. Specifically, the LLM was doing some code refactoring, and when it moved a chunk of code from one file to another it changed a “break” to a “continue.” That turned an e…SCHNEIER.COM
14 AugPennsylvania attorney general's email, site down after cyberattacksubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/pennsylvania-attorney-generals-email-site-down-after-cyberattack/SH.ITJUST.WORKS
14 AugCanada’s House of Commons investigating data breach after cyberattackThe House of Commons of Canada is currently investigating a data breach after a threat actor reportedly stole employee information in a cyberattack on Friday. [...]BLEEPINGCOMPUTER.COM
14 AugQilin Ransomware Dominates July with Over 70 Claimed VictimsThe Qilin ransomware group has solidified its position as the most active threat actor in July 2025, marking its third top ranking in four months following the downturn of former leader RansomHub. According to cybersecurity intelligence from Cyble, Qilin claimed responsibility fo…GBHACKERS.COM
14 AugHackers Just Used Steam to Drop This Stealer 😬Hackers just turned a survival crafting game on Steam into a malware delivery system. In this short, cybersecurity expert Doug White breaks down how a user named Larva208 injected HijackLoader, VBI dar, and Fickle Stealer into the game Kimia. These info stealers went after browse…YOUTUBE.COM
14 AugCrypto24 ransomware hits large orgs with custom EDR evasion toolThe Crypto24 ransomware group has been using custom utilities to evade security solutions on breached networks, exfiltrate data, and encrypt files. [...]BLEEPINGCOMPUTER.COM
14 AugRansomware Actors Combine Legitimate Tools with Custom Malware to Evade DetectionOperators behind the Crypto24 strain are employing highly coordinated, multi-stage attacks that blend legitimate system tools with bespoke malware to infiltrate networks, maintain persistence, and evade endpoint detection and response (EDR) systems. According to detailed analysis…GBHACKERS.COM
14 AugWhy “MVP” Can Mean “Most Vulnerable Product”When a CISO warns that security isn’t an “MVP task,” he’s not just talking about best practices—he’s talking about survival. In this clip, Aaran breaks down why any app touching identity documents needs airtight security from day one. He challenges product teams: if you can’t pro…YOUTUBE.COM
14 AugLLMs: Productivity Boost or Security Threat? ⚔️AI tools like LLMs are being hailed as time-saving heroes in the cybersecurity world — but are they actually creating more problems than they solve? In this short, Mike questions whether developers are really saving time if they have to double-check everything the AI "fixes." Wha…YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 22[−]
14 AugAI and Faster Attack Analysis [Guest Diary], (Wed, Aug 13th)[This is a Guest Diary by Joseph Noa, an ISC intern as part of the SANS.edu BACS program] ISC.SANS.EDU
14 AugISC Stormcast For Thursday, August 14th, 2025 https://isc.sans.edu/podcastdetail/9570, (Thu, Aug 14th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
14 AugPasskey Login Bypassed via WebAuthn Process ManipulationResearchers at enterprise browser security firm SquareX showed how an attacker can impersonate a user and bypass passkey security. The post Passkey Login Bypassed via WebAuthn Process Manipulation appeared first on SecurityWeek .SECURITYWEEK.COM
14 AugFireWood Malware Targets Linux Systems for Command Execution and Data TheftIntezer’s Research Team has uncovered a new, low-detection variant of the FireWood backdoor, a sophisticated Linux-based remote access trojan (RAT) initially discovered by ESET researchers. Linked to the “Project Wood” malware lineage dating back to 2005, FireWood is …GBHACKERS.COM
14 AugPalo Alto Networks Leads the Way with Quantum and Multicloud SecurityPAN-OS® 12.1 Orion makes network security smarter, more predictable and more resilient. The post Palo Alto Networks Leads the Way with Quantum and Multicloud Security appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
14 AugSecuring the Quantum AgeAt Palo Alto Networks, we deliver advanced, integrated solutions for true quantum readiness with essential visibility, agility and remediation capabilities. The post Securing the Quantum Age appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
14 AugMajor HTTP flaw puts 24 million websites at risk​ | Cybernewssubmitted by kid to cybersecurity 2 points | 1 comments https://cybernews.com/security/major-http-flaw-threatens-millions-of-websites/SH.ITJUST.WORKS
14 AugData leak could cut electricity to Mexico | Cybernewssubmitted by kid to cybersecurity 2 points | 0 comments https://cybernews.com/security/cfe-data-leak-mexico-critical-infrastructure/SH.ITJUST.WORKS
14 AugCybersecurity Warning: QR Codes Are a Gamble!Cybersecurity expert Doug White shares a brutally honest take on QR codes—and why they might be the biggest digital trap no one’s talking about. From restaurant menus to party invites, people scan without thinking... but do they really know what they're clicking into? This short …YOUTUBE.COM
14 AugMalvertising campaign leads to PS1Bot, a multi-stage malware frameworksubmitted by kid to cybersecurity 1 points | 0 comments https://blog.talosintelligence.com/ps1bot-malvertising-campaign/SH.ITJUST.WORKS
14 AugBooking.com phishing campaign uses sneaky 'ん' character to trick youThreat actors are leveraging a Unicode character to make phishing links appear like legitimate Booking.com links in a new campaign distributing malware. The attack makes use of the Japanese hiragana character, ん, which can, on some systems, appear as a forward slash and make a ph…BLEEPINGCOMPUTER.COM
14 AugWhy Would You Send Heroin to Grandma’s House?!When two cybersecurity pros start reminiscing about the early days of the dark web, the conversation takes a wild turn. One of them casually drops a dark web trick involving using your elderly neighbor’s address to receive... heroin. 😳 What starts as a technical chat turns into a…YOUTUBE.COM
14 AugPro-Russian hackers blamed for water dam sabotage in NorwayThe Norwegian Police Security Service (PST) says that pro-Russian hackers took control of critical operation systems at a dam and opened outflow valves. [...]BLEEPINGCOMPUTER.COM
14 AugThreat Actors Use Advanced Tactics to Personalize Phishing for Malware DeliveryThreat actors are using topic customization as a more advanced strategy in targeted malware-delivery phishing campaigns as the environment of cyber threats changes. This method involves crafting personalized subject lines, attachment names, and embedded links to mimic authentic c…GBHACKERS.COM
14 AugGoogle Mandates License or Certification for Crypto App DevelopersThe cryptocurrency ecosystem is experiencing heightened scrutiny from both regulatory authorities and criminal organizations, as Google Play implements stringent publishing requirements for crypto applications while the FBI warns of sophisticated recovery scams targeting previous…GBHACKERS.COM
14 AugNew NFC-Based PhantomCard Malware Targets Android Banking UsersThreatFabric analysts have uncovered PhantomCard, a sophisticated NFC-based Trojan designed to relay sensitive card data from victims’ devices to cybercriminals. This malware, which primarily targets banking customers in Brazil but shows potential for global expansion, exem…GBHACKERS.COM
14 AugWhen Banks Go Digital… Who’s in Control? 😨When central banks start issuing digital currencies, it might seem like a step toward innovation — but cybersecurity experts are raising red flags. In this short, Joshua Marpet breaks down why central bank digital currencies (CBDCs) could open the door to deeper surveillance, fin…YOUTUBE.COM
14 AugPsychological Safety: The Missing Link in SecurityIn this short, Danielle Ruderman reveals why psychological safety might be the most overlooked element in building a strong culture of security. She explains how, without a safe environment to speak up, even the best tools and processes can fail. From executive support to distrib…YOUTUBE.COM
14 AugPS1Bot: Multi-Stage Malware Framework Targeting Windows SystemsCisco Talos researchers have uncovered an aggressive malware campaign active since early 2025, deploying a sophisticated multi-stage framework dubbed PS1Bot, primarily implemented in PowerShell and C#. This threat actor leverages malvertising and SEO poisoning to distribute compr…GBHACKERS.COM
14 AugNorway spy chief blames Russian hackers for hijacking damThe Russian hackers used their access to the dam's computer systems to open a flood gate that spilled millions of gallons of water.TECHCRUNCH.COM
14 AugBuilder vs. Breaker: My Cybersecurity Reality CheckIn this eye-opening short, a seasoned cybersecurity professional shares the frustration of living in a reactive industry — constantly finding misconfigurations and vulnerabilities but never building the systems themselves. As a natural problem solver, he reveals the emotional tol…YOUTUBE.COM
14 AugInside the World’s Biggest Click Farm OperationIn this jaw-dropping exposé, cybersecurity expert Joshua Marpet reveals how a single operator can control thousands of real smartphones to flood ad networks with fake clicks. Switching IP addresses every few seconds across multiple countries, these “click farm” setups can drain a…YOUTUBE.COM
📡 INFOSEC NEWS 5[−]
14 AugMicrosoft fixes Windows 11 24H2 updates failing with 0x80240069 errorMicrosoft has resolved a known issue preventing the August 2025 Windows 11 24H2 cumulative update from being delivered via Windows Server Update Services (WSUS). [...]BLEEPINGCOMPUTER.COM
14 AugGoogle Requires Crypto App Licenses in 15 Regions as FBI Warns of $9.9M Scam LossesGoogle said it's implementing a new policy requiring developers of cryptocurrency exchanges and wallets to obtain government licenses before publishing apps in 15 jurisdictions in order to "ensure a safe and compliant ecosystem for users." The policy applies to markets like Bahra…THEHACKERNEWS.COM
14 AugHow AI can help plan your vacation | Kaspersky official blogHow to avoid trouble when planning your vacation with AI.KASPERSKY.COM
14 AugLeak: OpenAI's browser will use ChatGPT Agent to control the browserOpenAI is building an agentic future with its upcoming Chromium-based browser and a new leak confirms GPT Agent integration. [...]BLEEPINGCOMPUTER.COM
14 AugHave You Turned Off Your Virtual Oven?You check that the windows are shut before leaving home. Return to the kitchen to verify that the oven and stove were definitely turned off. Maybe even circle back again to confirm the front door was properly closed. These automatic safety checks give you peace of mind because yo…THEHACKERNEWS.COM