90Articles
10Categories
2025-08-25Date
🚨 CISA KEV 2[−]
25 Aug KEVCISA Adds Three Known Exploited Vulnerabilities to CatalogCISA has added three new vulnerabilities to its  Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2024-8069 Citrix Session Recording Deserialization of Untrusted Data Vulnerability CVE-2024-8068 Citrix Session Recording Improper P…CISA.GOV
25 Aug KEVCountering Chinese State-Sponsored Actors Compromise of Networks Worldwide to Feed Global Espionage SystemExecutive summary People’s Republic of China (PRC) state-sponsored cyber threat actors are targeting networks globally, including, but not limited to, telecommunications, government, transportation, lodging, and military infrastructure networks. While these actors focus on large …CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
25 AugPoC Exploit and Technical Analysis Published for Apple 0-Day RCE VulnerabilityA critical zero-click remote code execution vulnerability in Apple’s iOS has been disclosed with a working proof-of-concept exploit, marking another significant security flaw in the company’s image processing capabilities. The vulnerability, tracked as CVE-2025-4…GBHACKERS.COM
25 AugCritical Tableau Server Flaws Allows Malicious File UploadsSalesforce has addressed multiple critical security vulnerabilities in Tableau Server and Desktop that could enable attackers to upload malicious files and execute arbitrary code. The vulnerabilities, disclosed on August 22, 2025, were proactively identified during a security ass…GBHACKERS.COM
25 AugBCP-04 Draft Preparation - Work-group session 25/08/2025 - Luxembourgsubmitted by cm0002 to cybersecurity 2 points | 0 comments https://discourse.ossbase.org/t/gcve-bcp-04-drafting-recommendations-and-best-practices-for-id-allocation/119/2INFOSEC.PUB
25 AugDocker Fixes CVE-2025-9074, Critical Container Escape Vulnerability With CVSS Score 9.3Docker has released fixes to address a critical security flaw affecting the Docker Desktop app for Windows and macOS that could potentially allow an attacker to break out of the confines of a container. The vulnerability, tracked as CVE-2025-9074, carries a CVSS score of 9.3 out …THEHACKERNEWS.COM
⚠️ VULNERABILITY DISCLOSURE 30[−]
25 Aug6 wichtige Punkte für Ihren Incident Response PlanLesen Sie, welche Schritte für Ihren Notfallplan besonders wichtig sind. PeopleImages.com – Yuri A – Shutterstock.com Wenn ein Unternehmen einen größeren Ausfall seiner IT-Systeme erlebt – beispielsweise aufgrund eines Cyberangriffs – ist es zu diesem Zeitpunkt nicht mehr voll ge…CSOONLINE.COM
25 AugMicrosoft Copilot Agent Policy Flaw Lets Any User Access AI AgentsMicrosoft has disclosed a critical flaw in its Copilot agents’ governance framework that allows any authenticated user to access and interact with AI agents within an organization—bypassing intended policy controls and exposing sensitive operations to unauthorized actors. At the …GBHACKERS.COM
25 AugNIST Releases Lightweight Cryptography Standard for IoT SecurityThe National Institute of Standards and Technology (NIST) has formally published Special Publication 800-232, “Ascon-Based Lightweight Cryptography Standards for Constrained Devices,” establishing the first U.S. government benchmark for efficient cryptographic algorithms tailored…GBHACKERS.COM
25 AugHappy Birthday Linux! 34 Years of Open-Source PowerAugust 25, 2025, marks the 34th anniversary of Linux, a project that began as a modest hobby and has grown into the bedrock of modern digital infrastructure. On this day in 1991, 21-year-old Finnish student Linus Torvalds posted to the comp.os.minix newsgroup: “I’m doing a (free)…GBHACKERS.COM
25 AugFrom CVE To Cyber Attack In Minutes With AI: Cybersecurity TodayHost David Shipley explores the latest in cybersecurity, including the rapid development of AI-generated exploits for critical vulnerabilities, record-high searches of digital devices at US borders, and a fired developer jailed for sabotaging his former employer. Additionally, th…CYBERSECURITYTODAY.LIBSYN.COM
25 AugBSI-Doppelstrategie für digitale Souveränitätwidth="4743" height="2667" sizes="auto, (max-width: 4743px) 100vw, 4743px"> BSI-Präsidentin Claudia Plattner: “Je mehr vertrauenswürdige Produkte verfügbar sind, desto souveräner können wir entscheiden – und desto sicherer wird die digitale Zukunft.” ECB Eine sichere Verwendung d…CSOONLINE.COM
25 AugHow AI is reshaping cybersecurity operationsGenerative AI has become a pervasive tool in the enterprise. According to a recent Boston Consulting Group survey , 50% of organizations are using the technology to redesign workflows, and 77% of respondents believe AI agents will be vital to their enterprise functions in the nex…CSOONLINE.COM
25 Aug83% of CISOs say staff shortage is major issue for defenseMost enterprise CISOs can’t remember a time when there wasn’ta cybersecurity talent shortage, but a new report from Accenture underscores the extent staff shortages are impacting enterprise cyber defenses in the AI era. “Only 34% of organizations have a mature cyber strategy. Few…CSOONLINE.COM
25 AugWeekly Update 466Presently sponsored by: 1Password Extended Access Management: Secure every sign-in for every app on every device. I'm fascinated by the unwillingness of organisations to name the "third party" to which they've attributed a breach. The initial reporting on the …TROYHUNT.COM
25 AugHackers Exploit SendGrid to Steal User Login Credentials in Latest AttackCybersecurity researchers at the Cofense Phishing Defense Center (PDC) have uncovered a fresh surge in credential harvesting attacks that leverage the reputable cloud-based email service SendGrid to distribute phishing emails. Attackers are exploiting SendGrid’s trusted sta…GBHACKERS.COM
25 AugRowhammer attack can backdoor AI models with one devastating bit flipA team of researchers from George Mason University has developed a new method of using the well-known Rowhammer attack against physical computer memory to insert backdoors into full-precision AI models. Their “OneFlip” technique requires flipping only a single bit inside vulnerab…CSOONLINE.COM
25 AugOktane Preview with Harish Peri, Invisible Prompt Attacks, and the weekly news! - Hari... - ESW #421Interview with Harish Peri from Okta Oktane Preview: building frameworks to secure our Agentic AI future Like it or not, Agentic AI and protocols like MCP and A2A are getting pushed as the glue to take business process automation to the next level. Giving agents the power and acc…YOUTUBE.COM
25 AugThreat Actors Exploit Windows Scheduled Tasks for Stealthy Persistence Without Additional ToolsThreat actors continue to use Scheduled Tasks and other built-in Windows features to create persistence in the ever-changing world of cybersecurity threats, frequently avoiding the need of external tools or complex zero-day exploits. As of 2025, despite advancements in attack tec…GBHACKERS.COM
25 AugChip Programming Firm Data I/O Hit by RansomwareData I/O has disclosed a ransomware attack that disrupted the company’s operations, including communications, shipping and production. The post Chip Programming Firm Data I/O Hit by Ransomware appeared first on SecurityWeek .SECURITYWEEK.COM
25 AugMultiple vtenext Flaws Allow Attackers to Bypass Authentication and Run Remote CodeSecurity researcher Mattia “0xbro” Brollo disclosed a trio of severe vulnerabilities in vtenext CRM (versions 25.02 and earlier) that enable unauthenticated attackers to completely bypass login controls and execute arbitrary code on affected installations. Although vtenext quietl…GBHACKERS.COM
25 AugMeet the unsung silent hero of cyber resilience you’ve been ignoringAt 02:17 a.m., the Security Information and Event Management (SIEM) dashboard blinked. A remote user had just authenticated into a crown-jewel system from two different continents within 45 seconds. But the alert was dismissed. Why? The timestamps were inconsistent, with some bei…CSOONLINE.COM
25 Aug0-Click Zendesk Flaw Lets Hackers Hijack Accounts and View All TicketsA critical zero-click vulnerability in Zendesk’s Android SDK has been uncovered, enabling attackers to hijack support accounts and harvest every ticket without any user interaction. Discovered during a private bug bounty program, the flaw stems from weak token generation and stor…GBHACKERS.COM
25 Aug⚡ Weekly Recap: Password Manager Flaws, Apple 0-Day, Hidden AI Prompts, In-the-Wild Exploits & MoreCybersecurity today moves at the pace of global politics. A single breach can ripple across supply chains, turn a software flaw into leverage, or shift who holds the upper hand. For leaders, this means defense isn’t just a matter of firewalls and patches—it’s about strategy. The …THEHACKERNEWS.COM
25 AugMalicious Go Module Poses as SSH Brute-Force Tool, Steals Credentials via Telegram Botsubmitted by Amoxtli to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/08/malicious-go-module-poses-as-ssh-brute.html?m=1SH.ITJUST.WORKS
25 AugVulnerability-Lookup 2.15.0 releasedsubmitted by cm0002 to cybersecurity 1 points | 0 comments https://discourse.ossbase.org/t/release-of-vulnerability-lookup-2-15-0-this-version-brings-new-features-performance-improvements-and-several-bug-fixes/123?u=cedric We are excited to announce the release of Vulnerability-L…INFOSEC.PUB
25 AugCritical Docker Desktop flaw lets attackers hijack Windows hostsA critical vulnerability in Docker Desktop for Windows and macOS allows compromising the host by running a malicious container, even if the Enhanced Container Isolation (ECI) protection is active. [...]BLEEPINGCOMPUTER.COM
25 AugWhat Is a Hybrid Mesh Firewall and Why It MattersPalo Alto Networks Strata Network Security Platform delivers AI-powered, unified hybrid mesh firewall protection with consistent enforcement everywhere. The post What Is a Hybrid Mesh Firewall and Why It Matters appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
25 AugBig Banks Can’t Even Hire Enough AppSec Experts 💻🔒Even one of the world’s largest banks struggled to find enough AppSec experts to handle threat modeling. In this clip, Farshad Abasi reveals why resources are always short, how a tiny team managed to support hundreds of developers, and the clever checklist they created to decide …YOUTUBE.COM
25 AugNeed help with AI safety? Stay ahead of risks with these tools and frameworksThe Cloud Security Alliance (CSA) has spent the past 14 years bringing together experts to help make complex technologies like cloud computing and artificial intelligence more manageable. In late 2023, CSA launched its most ambitious project yet: the AI Safety Initiative . Suppor…CSOONLINE.COM
25 AugMunich Reinsurance unites global security teams to boost resilience, cut costsWhen an insurer takes on big risks—whether it’s covering homes, cars, or health care—it often turns to reinsurers like Munich Re Group to help absorb the cost of catastrophic losses caused by disasters. As one of the largest reinsurance companies in the world, Munich Re Group ope…CSOONLINE.COM
25 Aug2025 CSO Hall of Fame: Meg Anderson on AI, strategic security investments, and life after InfoSecMeg Anderson has spent nearly two decades leading enterprise cybersecurity, most recently as vice president and chief information security officer at Principal Financial Group. There, she helped shape cyber strategy and advised the board on digital risk. With her experience in th…CSOONLINE.COM
25 AugHackers Disrupt Iranian Ships via Maritime Communication Terminals Exploiting MySQL DatabaseThe National Iranian Tanker Company (NITC) and Islamic Republic of Iran Shipping Lines (IRISL), two sanctioned companies, are the operators of 64 boats, 39 tankers, and 25 cargo ships that were compromised in a targeted attack on Iran’s maritime infrastructure by the hackin…GBHACKERS.COM
25 AugNew Stealthy Malware Hijacking Cisco, TP-Link, and Other Routers for Remote ControlFortiGuard Labs has uncovered a sophisticated malware campaign targeting critical infrastructure devices from multiple vendors, with the “Gayfemboy” malware strain demonstrating advanced evasion techniques and multi-platform capabilities. The campaign affects organiza…GBHACKERS.COM
25 AugFarmers Insurance data breach impacts 1.1M people after Salesforce attackU.S. insurance giant Farmers Insurance has disclosed a data breach impacting 1.1 million customers, with BleepingComputer learning that the data was stolen in the widespread Salesforce attacks. [...]BLEEPINGCOMPUTER.COM
25 AugThreatActors Leverage Google Classroom to Target 13,500 OrganizationsGoogle Classroom, a popular educational platform, has been exploited by threat actors to launch a major phishing campaign in a complex operation discovered by Check Point researchers. Over a single week from August 6 to August 12, 2025, attackers disseminated more than 115,000 ma…GBHACKERS.COM
📋 SECURITY BULLETINS 1[−]
25 AugMicrosoft Confirms August 2025 Patch Slows Down Windows 11 24H2 and Windows 10Microsoft has acknowledged that the August 2025 security update—KB5063878—can cause significant performance degradation on both Windows 11, version 24H2, and supported Windows 10 releases. The company’s Windows release health dashboard confirms reports of severe stuttering, lag, …GBHACKERS.COM
📢 SECURITY ADVISORIES 6[−]
25 AugCISA Requests Public Feedback on Updated SBOM GuidanceCISA has updated the Minimum Elements for a Software Bill of Materials (SBOM) guidance and is seeking public comment. The post CISA Requests Public Feedback on Updated SBOM Guidance appeared first on SecurityWeek .SECURITYWEEK.COM
🔥 INCIDENT REPORTING 9[−]
25 AugFarmers Insurance Data Breach Impacts Over 1 Million PeopleFarmers New World Life Insurance and Farmers Group have filed separate data breach notifications with state authorities. The post Farmers Insurance Data Breach Impacts Over 1 Million People appeared first on SecurityWeek .SECURITYWEEK.COM
25 AugNew macOS Installer Boasts Lightning-Fast Data Theft, Marketed on Dark WebA novel macOS infostealer malware, designated as Mac.c, has emerged as a formidable contender in the underground malware-as-a-service (MaaS) ecosystem. Developed openly by a threat actor operating under the pseudonym “mentalpositive,” Mac.c represents a streamlined de…GBHACKERS.COM
25 AugAspire Rural Health System Data Breach Impacts Nearly 140,000Aspire Rural Health System was targeted last year by the BianLian ransomware group, which claimed to have stolen sensitive data. The post Aspire Rural Health System Data Breach Impacts Nearly 140,000 appeared first on SecurityWeek .SECURITYWEEK.COM
25 AugHackers Use AI-Generated Summaries to Deliver Ransomware PayloadsCybercriminals have unveiled a novel variation of the ClickFix social engineering technique that weaponizes AI-powered summarization tools to stealthily distribute ransomware instructions. By leveraging invisible prompt injection and a “prompt overdose” strategy, attackers embed …GBHACKERS.COM
25 AugFake Google Play Store Websites Deliver Potent RAT to Steal Sensitive DataCybersecurity researchers have uncovered a persistent campaign deploying the AndroidOS SpyNote malware, a sophisticated Remote Access Trojan (RAT) designed for surveillance, data exfiltration, and remote device control. This operation mimics legitimate Google Play Store pages for…GBHACKERS.COM
25 AugAuchan retailer data breach impacts hundreds of thousands of customersFrench retailer Auchan is informing that some sensitive data associated with loyalty accounts of several hundred thousand of its customers was exposed in a cyberattack. [...]BLEEPINGCOMPUTER.COM
25 Aug KEVAutonomous SOC: Too Risky or the Future? 🤔In this short, Kevin Nikkhoo reveals why autonomous SOC operations powered by AI are both the future and a huge risk. As hackers weaponize AI, security teams must adapt faster than ever. But can AI truly defend against cyberattacks—or will false positives make it too risky to tru…YOUTUBE.COM
25 AugpostMessaged and CompromisedAt Microsoft, securing the ecosystem means more than just fixing bugs—it means proactively hunting for variant classes, identifying systemic weaknesses, and working across teams to protect customers before attackers ever get the chance. This blog highlights one such effort: a dee…MSRC.MICROSOFT.COM
25 AugYemen Cyber Army hacker jailed after stealing millions of people’s dataA 26-year-old hacker, who breached websites in North America, Yemen, and Israel, and stole the details of millions of people has been sent to prison.GRAHAMCLULEY.COM
🕵️ THREAT INTELLIGENCE 29[−]
25 AugISC Stormcast For Monday, August 25th, 2025 https://isc.sans.edu/podcastdetail/9584, (Mon, Aug 25th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
25 Augghrc.io Appears to be Malicioussubmitted by sith to cybersecurity 2 points | 0 comments https://bmitch.net/blog/2025-08-22-ghrc-appears-malicious/SH.ITJUST.WORKS
25 AugHackers Steal Windows Secrets and Credentials Undetected by EDR DetectionA cybersecurity researcher has unveiled a sophisticated new method for extracting Windows credentials and secrets that successfully evades detection by most Endpoint Detection and Response (EDR) solutions currently deployed in enterprise environments. The technique, dubbed “…GBHACKERS.COM
25 AugArch Linux Project Responding to Week-Long DDoS AttackThe Arch Linux Project has been targeted in a DDoS attack that disrupted its website, repository, and forums. The post Arch Linux Project Responding to Week-Long DDoS Attack appeared first on SecurityWeek .SECURITYWEEK.COM
25 AugBSI-E-Mail-Checker soll vor Hackern schützensrcset="https://b2b-contenthub.com/wp-content/uploads/2025/08/shutterstock_2344891127.jpg?quality=50&strip=all 4539w, https://b2b-contenthub.com/wp-content/uploads/2025/08/shutterstock_2344891127.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
25 AugSASE Company Netskope Files for IPONetskope has an annual recurring revenue of more than $707 million, but it’s still not profitable, reporting a net loss of $170 million in H1. The post SASE Company Netskope Files for IPO appeared first on SecurityWeek .SECURITYWEEK.COM
25 AugTransparent Tribe Targets Indian Govt With Weaponized Desktop Shortcuts via PhishingThe advanced persistent threat (APT) actor known as Transparent Tribe has been observed targeting both Windows and BOSS (Bharat Operating System Solutions) Linux systems with malicious Desktop shortcut files in attacks targeting Indian Government entities. "Initial access is achi…THEHACKERNEWS.COM
25 AugChinese Hacker Sentenced for Kill Switch Attack on Ohio Firm’s Global NetworkA federal court has handed down a four-year prison term to a former software developer who sabotaged his employer’s global network with a custom “kill switch,” crippling operations and inflicting hundreds of thousands in losses. Davis Lu, 55, a Chinese national legally residing a…GBHACKERS.COM
25 AugUnmasking KorPlug Malware: TTPs, Control Flow, and Exposed IOCsAs part of the ongoing analysis of the KorPlug malware family, this second installment focuses on the complex second-stage payload, expanding on earlier discoveries of DLL side-loading methods that use legitimate programs to execute code initially. The payload, a malicious DLL wi…GBHACKERS.COM
25 AugHackers Abuse Python eval/exec Calls to Run Malicious CodeThreat actors are increasingly abusing native evaluation and execution functions to conceal and execute malicious payloads within innocent-looking packages on PyPI. Security researchers warn that while static analysis libraries such as hexora can detect many obfuscation technique…GBHACKERS.COM
25 AugPoor Password ChoicesLook at this : McDonald’s chose the password “123456” for a major corporate system.SCHNEIER.COM
25 AugAnatsa Android Banking Trojan Now Targeting 830 Financial AppsThe Anatsa Android banking trojan has expanded its target list to new countries and more cryptocurrency applications. The post Anatsa Android Banking Trojan Now Targeting 830 Financial Apps appeared first on SecurityWeek .SECURITYWEEK.COM
25 AugArch Linux Services Hit by Week-Long DDoS AttackArch Linux—the community-driven, lightweight distribution renowned for its rolling-release model—has confirmed that a distributed denial-of-service (DDoS) attack has been targeting its core infrastructure for over a week. Beginning on August 18, users worldwide have experienced i…GBHACKERS.COM
25 AugKimsuky APT Exposed: GPKI Certificates, Rootkits, and Cobalt Strike Assets UncoveredA comprehensive operational dump from the North Korean Kimsuky APT organization, also known as APT43, Thallium, or Velvet Chollima, appeared on a dark web forum in an uncommon instance of state-sponsored cyber espionage. This leak, comprising virtual machine images, VPS dumps, ph…GBHACKERS.COM
25 AugNew Android Spyware Masquerading as Antivirus Targets Business ExecutivesDoctor Web’s antivirus laboratory has identified a sophisticated Android backdoor malware, designated Android.Backdoor.916.origin, which has been evolving since its initial detection in January 2025. This multifunctional spyware primarily targets representatives of Russian …GBHACKERS.COM
25 AugAttaxion Releases Agentless Traffic Monitoring for Immediate Risk PrioritizationDover, DE, United States, August 25th, 2025, CyberNewsWire Attaxion announces the addition of the Agentless Traffic Monitoring capability to its exposure management platform. Agentless Traffic Monitoring is a new capability designed to give cybersecurity teams actionable visibili…GBHACKERS.COM
25 AugPakistani Hackers Back at Targeting Indian Government EntitiesPakistani state-sponsored hacking group APT36 is targeting Linux systems in a fresh campaign aimed at Indian government entities. The post Pakistani Hackers Back at Targeting Indian Government Entities appeared first on SecurityWeek .SECURITYWEEK.COM
25 AugLegacy Protocols Still Run Our Critical Systems 😱Even in 2025, critical infrastructure still runs on protocols designed in the 1970s and 80s. In this clip, Matthew Rogers explains how legacy systems like CAN Bus and MIL-STD-1553 still power transportation, water, and energy networks—despite being decades old and full of securit…YOUTUBE.COM
25 AugChinese APT Leverages Proxy and VPN Services to Obfuscate InfrastructureA significant data dump surfaced on DDoSecrets.com, purportedly extracted from a workstation belonging to a threat actor targeting organizations in South Korea and Taiwan. The leak, detailed in an accompanying article, attributes the activity to the North Korean advanced persiste…GBHACKERS.COM
25 AugOnly 7 Days Left for Early Bird Registration to the OpenSSL Conference 2025Only 7 days left to secure the Early Bird registration at the OpenSSL Conference 2025, October 7 – 9 in Prague.  The event will bring together lawyers, regulators, developers, and entrepreneurs to explore issues of security and privacy for everyone, everywhere. Attendees wil…GBHACKERS.COM
25 AugFrom Crashes to Protection: The Test Suite Hack 💡When Artur Cygan explains test suites, he reveals how every crash can transform into a security shield. Instead of letting bugs haunt the system, developers turn them into unit tests that block regressions and strengthen fuzzing. This simple shift shows cybersecurity pros how fai…YOUTUBE.COM
25 AugProxyware Malware Poses as YouTube Video Download Site, Delivering Malicious JavaScriptCybersecurity researchers at AhnLab Security Intelligence Center (ASEC) have uncovered a persistent campaign where attackers distribute proxyware malware through fake YouTube video download pages. This operation, which mimics legitimate video downloading services, tricks users in…GBHACKERS.COM
25 AugNews alert: Attaxion launches agentless traffic monitoring to flag threats and prioritize riskDover, Del., Aug. 25, 2025, CyberNewswire— Attaxion announces the addition of the Agentless Traffic Monitoring capability to its exposure management platform. Agentless Traffic Monitoring is a new capability designed to give cybersecurity teams actionable visibility into network …LASTWATCHDOG.COM
25 AugOneFlip: An Emerging Threat to AI that Could Make Vehicles Crash and Facial Recognition FailResearchers unveil OneFlip, a Rowhammer-based attack that flips a single bit in neural network weights to stealthily backdoor AI systems without degrading performance. The post OneFlip: An Emerging Threat to AI that Could Make Vehicles Crash and Facial Recognition Fail appeared f…SECURITYWEEK.COM
25 AugThe Harsh Truth: Your Code Baby Is Ugly (But Secure!)In this short, Louis from PentesterLab reveals the harsh but funny truth of AppSec: sometimes telling developers “your code baby is ugly” is exactly what helps make it stronger. Instead of rivalry, he highlights why developers and security pros are really on the same team, loving…YOUTUBE.COM
25 AugLLMs = The New Cyber Villains? 👀In this short, Mike compares today’s cybersecurity landscape to the classic Tron movie, where the Master Control Program (MCP) was the ultimate villain. Decades later, we now face new digital threats—more powerful than ever—driven by LLMs and evolving AppSec challenges. Are Large…YOUTUBE.COM
25 AugBeware! Google Ads Promote Fake Tesla Websites Soliciting Fraudulent DepositsScammers are using Google Ads to pose as Tesla in an elaborate cybercrime campaign that aims to obtain illicit preorders for the company’s unreleased Optimus humanoid robot and other items. These deceptive sponsored listings appear prominently in search results for terms li…GBHACKERS.COM
25 AugUNC6384 Deploys PlugX via Captive Portal Hijacks and Valid Certificates Targeting DiplomatsA China-nexus threat actor known as UNC6384 has been attributed to a set of attacks targeting diplomats in Southeast Asia and other entities across the globe to advance Beijing's strategic interests. "This multi-stage attack chain leverages advanced social engineering including v…THEHACKERNEWS.COM
25 AugNews alert: Global security leaders to convene at OpenSSL 2025 — final week for early-bird ratesNewark, N.J., Aug. 25, 2025, CyberNewwire — Only 7 days left to secure the Early Bird registration at the OpenSSL Conference 2025 , October 7 – 9 in Prague. The event will bring together lawyers, regulators, developers, and entrepreneurs to … (more…) The post News alert: Gl…LASTWATCHDOG.COM
🌐 CYBER THREAT LANDSCAPE 4[−]
25 AugDefending against malware persistence techniques with WazuhMalware persistence keeps attackers in your systems long after reboots or resets. Wazuh helps detect and block hidden techniques like scheduled tasks, startup scripts, and modified system files—before they turn into long-term compromise. [...]BLEEPINGCOMPUTER.COM
25 AugMalicious Android apps with 19M installs removed from Google PlaySeventy-seven malicious Android apps containing different types of malware were found on Google Play after being downloaded more than 19 million times. [...]BLEEPINGCOMPUTER.COM
25 AugA new security flaw in TheTruthSpy phone spyware is putting victims at riskExclusive: Hackers can take over the accounts of TheTruthSpy spyware customers, putting their victims' private phone data at risk thanks to a new security flaw.TECHCRUNCH.COM
25 AugPhishing Campaign Uses UpCrypter in Fake Voicemail Emails to Deliver RAT PayloadsCybersecurity researchers have flagged a new phishing campaign that's using fake voicemails and purchase orders to deliver a malware loader called UpCrypter. The campaign leverages "carefully crafted emails to deliver malicious URLs linked to convincing phishing pages," Fortinet …THEHACKERNEWS.COM
🎙️ PODCASTS 1[−]
25 AugWide World of Cyber: Microsoft's China EntanglementThe Wide World of Cyber podcast is back! In this episode host Patrick Gray chats with Alex Stamos and Chris Krebs about Microsoft’s entanglement in China. Redmond has been using Chinese engineers to do everything from remotely support US DoD private cloud systems to maintain the …RISKY.BIZ
📡 INFOSEC NEWS 4[−]
25 AugReading Location Position Value in Microsoft Word Documents, (Mon, Aug 25th)While studying for the GX-FE &#;x26;#;x5b;1&#;x26;#;x5d;, I started exploring the " Position " value in the registry that helps to tell Microsoft Word where you "left off". It&#;x26;#;39;s a featu…ISC.SANS.EDU
25 AugWhy SIEM Rules Fail and How to Fix Them: Insights from 160 Million Attack SimulationsSecurity Information and Event Management (SIEM) systems act as the primary tools for detecting suspicious activity in enterprise networks, helping organizations identify and respond to potential attacks in real time. However, the new Picus Blue Report 2025, based on over 160 mil…THEHACKERNEWS.COM
25 AugNew AI attack hides data-theft prompts in downscaled imagesResearchers have developed a novel attack that steals user data by injecting malicious prompts in images processed by AI systems before delivering them to a large language model. [...]BLEEPINGCOMPUTER.COM
25 AugSurge in coordinated scans targets Microsoft RDP auth serversInternet intelligence firm GreyNoise reports that it has recorded a significant spike in scanning activity consisting of nearly 1,971 IP addresses probing Microsoft Remote Desktop Web Access and RDP Web Client authentication portals in unison, suggesting a coordinated reconnaissa…BLEEPINGCOMPUTER.COM