MATLOCK.CA
80Articles
9Categories
2025-08-21Date
🚨
CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation.  CVE-2025-43300 Apple iOS, iPadOS, and macOS Out-of-Bounds Write Vulnerability These types of vulnerabilities are frequent attack vectors for…
KEVCISA.GOV — Thu, 21 Aug 25 1
🐛
Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks
THEHACKERNEWS.COM — 21 Aug 2025
🐛
Critical Flaw in Apache Tika PDF Parser Exposes Sensitive Data to Attackers
GBHACKERS.COM — 21 Aug 2025
🐛
QUIC-LEAK Vulnerability Allows Attackers to Drain Server Memory and Cause DoS
GBHACKERS.COM — 21 Aug 2025
🐛
Russian APT Exploiting 7-Year-Old Cisco Vulnerability: FBI
SECURITYWEEK.COM — 21 Aug 2025
🐛
Russian hackers exploit old Cisco flaw to target global enterprise networks
CSOONLINE.COM — 21 Aug 2025
🐛
Pre-Auth Exploit Chains Found in Commvault Could Enable Remote Code Execution Attacks
THEHACKERNEWS.COM — 21 Aug 2025
🐛
Critical N-central RMM flaws actively exploited in the wild
KEVCSOONLINE.COM — 21 Aug 2025
🐛
Chromium: CVE-2025-9132 Out of bounds write in V8
MSRC.MICROSOFT.COM — 21 Aug 2025
🐛
CVE-2025-53763 Azure Databricks Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 21 Aug 2025
🐛
CVE-2025-53795 Microsoft PC Manager Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 21 Aug 2025
🐛
CVE-2025-55230 Windows MBT Transport Driver Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 21 Aug 2025
🐛
CVE-2025-55229 Windows Certificate Spoofing Vulnerability
MSRC.MICROSOFT.COM — 21 Aug 2025
🐛
CVE-2025-55231 Windows Storage-based Management Service Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 21 Aug 2025
🐛
Threat Actors Exploiting Victims’ Machines for Bandwidth Monetization
GBHACKERS.COM — 21 Aug 2025
⚠️
PromptFix Exploit Forces AI Browsers to Execute Hidden Malicious Commands
GBHACKERS.COM — 21 Aug 2025
⚠️
Europol Says Qilin Ransomware Reward Fake
SECURITYWEEK.COM — 21 Aug 2025
⚠️
Apple Confirms Critical 0-Day Under Active Attack – Immediate Update Urged
KEVGBHACKERS.COM — 21 Aug 2025
⚠️
Orange Belgium discloses data breach impacting 850,000 customers
BLEEPINGCOMPUTER.COM — 21 Aug 2025
⚠️
Enterprise passwords becoming even easier to steal and abuse
KEVCSOONLINE.COM — 21 Aug 2025
⚠️
CISA Issues Four ICS Advisories on Vulnerabilities and Exploits
GBHACKERS.COM — 21 Aug 2025
⚠️
Apple Patches Zero-Day Exploited in Targeted Attacks
SECURITYWEEK.COM — 21 Aug 2025
⚠️
MITM6 + NTLM Relay Attack Enables Full Domain Compromise
GBHACKERS.COM — 2025-08-21
⚠️
New Campaign Uses Active Directory Federation Services to Steal M365 Credentials
GBHACKERS.COM — 21 Aug 2025
⚠️
Weak Passwords and Compromised Accounts: Key Findings from the Blue Report 2025
THEHACKERNEWS.COM — 21 Aug 2025
⚠️
Jim Sanborn Is Auctioning Off the Solution to Part Four of the Kryptos Sculpture
SCHNEIER.COM — 2025-08-21
⚠️
Commvault Backup Suite Flaws Allow Attackers to Breach On-Premises Systems
GBHACKERS.COM — 21 Aug 2025
⚠️
Microsoft restricts Chinese firms’ access to vulnerability warnings after hacking concerns
CSOONLINE.COM — 21 Aug 2025
⚠️
Hackers can slip ghost commands into the Amazon Q Developer VS Code Extension
CSOONLINE.COM — 21 Aug 2025
⚠️
A phishing scam targeting Ledger users | Kaspersky official blog
KASPERSKY.COM — 21 Aug 2025
⚠️
FBI warns of Russian hackers exploiting 7-year-old Cisco flaw
BLEEPINGCOMPUTER.COM — 21 Aug 2025
⚠️
Hackers Using New QuirkyLoader Malware to Spread Agent Tesla, AsyncRAT and Snake Keylogger
THEHACKERNEWS.COM — 21 Aug 2025
⚠️
Russian Hackers Exploit 7-Year-Old Cisco Flaw to Steal Industrial System Configs
GBHACKERS.COM — 21 Aug 2025
⚠️
High-Severity Mozilla Flaws Allow Remote Code Execution
GBHACKERS.COM — 21 Aug 2025
⚠️
FBI Warns Russian State Hackers Targeting Critical Infrastructure Networking Devices
GBHACKERS.COM — 21 Aug 2025
⚠️
Why Certified VMware Pros Are Driving the Future of IT
BLEEPINGCOMPUTER.COM — 21 Aug 2025
⚠️
Paper Werewolf Exploits WinRAR Zero-Day Vulnerability to Deliver Malware
GBHACKERS.COM — 21 Aug 2025
⚠️
CISA Releases Three Industrial Control Systems Advisories
CISA.GOV — Thu, 21 Aug 25 1
⚠️
Threat Actors Abuse Internet Archive to Host Stealthy JScript Loader
GBHACKERS.COM — 21 Aug 2025
⚠️
Think before you Click(Fix): Analyzing the ClickFix social engineering technique
MICROSOFT.COM — 21 Aug 2025
⚠️
Warlock Ransomware Exploits SharePoint Flaws for Initial Access and Credential Theft
GBHACKERS.COM — 21 Aug 2025
⚠️
The Hidden Danger of Letting AI Write Your Code 🤖💻
YOUTUBE.COM — 2025-08-21
⚠️
Hackers Weaponize QR Codes With Malicious Links to Steal Sensitive Data
GBHACKERS.COM — 21 Aug 2025
⚠️
What We’ve Learned from LockBit and Black Basta Leaks (and News) - Ian Gray - PSW #888
YOUTUBE.COM — 2025-08-21
📋
Microsoft asks customers for feedback on SSD failure issues
BLEEPINGCOMPUTER.COM — 21 Aug 2025
📢
Operator of ‘Rapper Bot’ DDoS Botnet Faces Charges
GBHACKERS.COM — 21 Aug 2025
📢
Microsoft 365 Adds New Feature for Admins to Manage Link Creation Policies
GBHACKERS.COM — 21 Aug 2025
📢
CISA’s Cybersecurity Secret Weapon for OT Systems 🛡️
YOUTUBE.COM — 2025-08-21
📢
Europol confirms $50,000 Qilin ransomware reward is fake
BLEEPINGCOMPUTER.COM — 21 Aug 2025
🔥
Cyberattacke auf Berlins Justizsenatorin Badenberg
CSOONLINE.COM — 21 Aug 2025
🔥
Orange Belgium Data Breach Impacts 850,000 Customers
SECURITYWEEK.COM — 21 Aug 2025
🔥
The AWS Audit Checklist Nobody Talks About
YOUTUBE.COM — 2025-08-21
🔥
Telecom Firm Colt Confirms Data Breach as Ransomware Group Auctions Files
SECURITYWEEK.COM — 21 Aug 2025
🔥
Threat Actors Weaponize PDF Editor Trojan to Convert Devices into Proxies
GBHACKERS.COM — 21 Aug 2025
🔥
Colt confirms customer data stolen as Warlock ransomware auctions files
BLEEPINGCOMPUTER.COM — 21 Aug 2025
🔥
Warning: Social Engineering is a Growing Threat to the Industrial Sector
KNOWBE4.COM — 21 Aug 2025
🕵️
ISC Stormcast For Thursday, August 21st, 2025 https://isc.sans.edu/podcastdetail/9580, (Thu, Aug 21st)
ISC.SANS.EDU — 21 Aug 2025
🕵️
UNC5518 Group Hacks Legitimate Sites with Fake Captcha to Deliver Malware
GBHACKERS.COM — 21 Aug 2025
🕵️
Lenovo-Chatbot-Lücke wirft Schlaglicht auf KI-Sicherheitsrisiken
CSOONLINE.COM — 21 Aug 2025
🕵️
New SHAMOS Malware Targets macOS Through Fake Help Sites to Steal Login Credentials
GBHACKERS.COM — 21 Aug 2025
🕵️
Password Managers Vulnerable to Data Theft via Clickjacking
SECURITYWEEK.COM — 21 Aug 2025
🕵️
Hackers who exposed North Korean government hacker explain why they did it
TECHCRUNCH.COM — 21 Aug 2025
🕵️
Scattered Spider Hacker Sentenced to Prison
SECURITYWEEK.COM — 21 Aug 2025
🕵️
Kali Vagrant Rebuilt Released with Pre-Configured Command-Line VMs
GBHACKERS.COM — 21 Aug 2025
🕵️
The Attacker’s Playbook: A Technical Analysis of Quishing and Encrypted SVG Payloads Used in HR Impersonation Phishing Attacks
KNOWBE4.COM — 21 Aug 2025
🕵️
MuddyWater APT Targets CFOs via OpenSSH; Enables RDP and Scheduled Tasks
GBHACKERS.COM — 21 Aug 2025
🕵️
Cybercriminals Deploy CORNFLAKE.V3 Backdoor via ClickFix Tactic and Fake CAPTCHA Pages
THEHACKERNEWS.COM — 21 Aug 2025
🕵️
Traditional vs Agile Threat Modeling: What Really Works? ⚡
YOUTUBE.COM — 2025-08-21
🕵️
Fuzzing Tools: Hidden Gem in Your Security Toolbox 🛠️
YOUTUBE.COM — 2025-08-21
🕵️
AI Website Generators Repurposed by Adversaries for Malware Campaigns
GBHACKERS.COM — 21 Aug 2025
🕵️
Google Says 30% of Dev Code Is AI-Written… Should You Worry?
YOUTUBE.COM — 2025-08-21
🕵️
Why Most Companies Choose the WRONG SOC 😬 #Cybersecurity
KEVYOUTUBE.COM — 2025-08-21
🕵️
New Homoglyph Phishing Campaign Impersonates Booking.com
KNOWBE4.COM — 21 Aug 2025
🕵️
Phishing Attacks Target Brokerage Accounts to Manipulate Stock Prices
KNOWBE4.COM — 21 Aug 2025
🌐
Dev gets 4 years for creating kill switch on ex-employer's systems
BLEEPINGCOMPUTER.COM — 21 Aug 2025
📡
SIM-Swapper, Scattered Spider Hacker Gets 10 Years
KREBSONSECURITY.COM — 21 Aug 2025
📡
Don't Forget The "-n" Command Line Switch, (Thu, Aug 21st)
ISC.SANS.EDU — 21 Aug 2025
📡
Scattered Spider hacker gets sentenced to 10 years in prison
BLEEPINGCOMPUTER.COM — 21 Aug 2025
📡
Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft
THEHACKERNEWS.COM — 21 Aug 2025
📡
"What happens online stays online" and other cyberbullying myths, debunked
WELIVESECURITY.COM — 21 Aug 2025