MATLOCK.CA
68Articles
9Categories
2025-08-29Date
🚨
CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2025-57819 Sangoma FreePBX Authentication Bypass Vulnerability  This type of vulnerability is a frequent attack vector for malicious cybe…
KEVCISA.GOV — Fri, 29 Aug 25 1
🐛
Critical Hikvision Vulnerabilities Allow Remote Command Injection
GBHACKERS.COM — 29 Aug 2025
🐛
Researchers Warn of Sitecore Exploit Chain Linking Cache Poisoning and Remote Code Execution
THEHACKERNEWS.COM — 29 Aug 2025
🐛
WhatsApp Zero-Day Vulnerability Exploited with 0-Click Attacks to Hack Apple Devices
GBHACKERS.COM — 29 Aug 2025
⚠️
Silver Fox Hackers Use Driver Vulnerability to Evade Security on Windows Systems
GBHACKERS.COM — 29 Aug 2025
⚠️
New Mac Malware Dubbed “JSCoreRunner” Weaponizing PDF Conversion Site to Deliver Malware
GBHACKERS.COM — 29 Aug 2025
⚠️
Cybercrime increasingly moving beyond financial gains
CSOONLINE.COM — 29 Aug 2025
⚠️
Threat Actors Use Facebook Ads to Deliver Android Malware
GBHACKERS.COM — 29 Aug 2025
⚠️
Google Warns Salesloft OAuth Breach Extends Beyond Salesforce, Impacting All Integrations
THEHACKERNEWS.COM — 29 Aug 2025
⚠️
Operation Serengeti 2.0: Trend Micro Helps Law Enforcement Fight Cybercrime in Africa
TRENDMICRO.COM — 29 Aug 2025
⚠️
TransUnion Data Breach Compromises Over 4 Million Customers
GBHACKERS.COM — 29 Aug 2025
⚠️
Microsoft Teams Abused in Cyberattack Delivering PowerShell-Based Remote Access Malware
GBHACKERS.COM — 29 Aug 2025
⚠️
Click Studios Patches Passwordstate Authentication Bypass Vulnerability in Emergency Access Page
THEHACKERNEWS.COM — 29 Aug 2025
⚠️
FreePBX Servers Targeted by Zero-Day Flaw, Emergency Patch Now Available
KEVTHEHACKERNEWS.COM — 29 Aug 2025
⚠️
Ransomware Group Exploits Hybrid Cloud Gaps, Gains Full Azure Control in Enterprise Attacks
SECURITYWEEK.COM — 29 Aug 2025
⚠️
Nevada Confirms Ransomware Attack Behind Statewide Service Disruptions
SECURITYWEEK.COM — 29 Aug 2025
⚠️
US Sanctions Russian National, Chinese Firm Aiding North Korean IT Workers
SECURITYWEEK.COM — 29 Aug 2025
⚠️
Google Confirms Workspace Accounts Also Hit in Salesforce–Salesloft Drift Data Theft Campaign
SECURITYWEEK.COM — 29 Aug 2025
⚠️
KI greift erstmals autonom an
CSOONLINE.COM — 29 Aug 2025
⚠️
AppSuite PDF Editor Exploit Lets Hackers Run Arbitrary Commands
GBHACKERS.COM — 29 Aug 2025
⚠️
VS Code Marketplace Abused by Threat Actors to Deliver Malware via Trusted Extensions
GBHACKERS.COM — 29 Aug 2025
⚠️
Two New feeds from CERT-FR integrated in Vulnerability-Lookup
INFOSEC.PUB — 29 Aug 2025
⚠️
VerifTools Fake ID Operation Dismantled by Law Enforcement
SECURITYWEEK.COM — 29 Aug 2025
⚠️
New BruteForceAI Tool Automatically Detects Login Pages and Executes Smart Brute-Force Attacks
INFOSEC.PUB — 29 Aug 2025
⚠️
Microsoft to enforce MFA for Azure resource management in October
BLEEPINGCOMPUTER.COM — 29 Aug 2025
⚠️
WhatsApp patches vulnerability exploited in zero-day attacks
BLEEPINGCOMPUTER.COM — 29 Aug 2025
⚠️
WhatsApp fixes ‘zero-click’ bug used to hack Apple users with spyware
TECHCRUNCH.COM — 29 Aug 2025
⚠️
Chinese hacking group Salt Typhoon expansion prompts multinational advisory
CSOONLINE.COM — 29 Aug 2025
📋
Abandoned Sogou Zhuyin Update Server Hijacked, Weaponized in Taiwan Espionage Campaign
THEHACKERNEWS.COM — 29 Aug 2025
📋
Microsoft says recent Windows update didn't kill your SSD
BLEEPINGCOMPUTER.COM — 29 Aug 2025
📢
Zipline Phishing, Google Urges Password Resets, and AI-Driven Threats: Cybersecurity Today
CYBERSECURITYTODAY.LIBSYN.COM — 29 Aug 2025
📢
Netherlands Confirms China’s Salt Typhoon Hacking Group Targeted Small Dutch Telcos
INFOSEC.PUB — 29 Aug 2025
📢
Netherlands Confirms China’s Salt Typhoon Hacking Group Targeted Small Dutch Telcos
SH.ITJUST.WORKS — 29 Aug 2025
📢
Amazon Disrupts APT29 Watering Hole Campaign Abusing Microsoft Device Code Authentication
THEHACKERNEWS.COM — 29 Aug 2025
📢
Sangoma FreePBX security advisory (AV25–550)
CYBER.GC.CA — 2025-08-29
📢
Microsoft Edge security advisory (AV25-551)
CYBER.GC.CA — 2025-08-29
🔥
Catch-22: Uncovering Compromised Hosts using SSH Public Keys | USENIX
INFOSEC.PUB — 29 Aug 2025
🔥
Popular Nx Packages Compromised by Credential-Stealing Malware
GBHACKERS.COM — 29 Aug 2025
🔥
TransUnion Data Breach Impacts 4.4 Million
SECURITYWEEK.COM — 29 Aug 2025
🔥
I Hacked BellaBot and Every Robot from China's Biggest Robotics Company (Pudu Only Fixed It When I Told Their Clients)
SH.ITJUST.WORKS — 29 Aug 2025
🔥
In Other News: Iranian Ships Hacked, Verified Android Developers, AI Used in Attacks
SECURITYWEEK.COM — 29 Aug 2025
🔥
Sweden scrambles after ransomware attack puts sensitive worker data at risk
BITDEFENDER.COM — 29 Aug 2025
🔥
FBI says China’s Salt Typhoon hacked at least 200 US companies
INFOSEC.PUB — 29 Aug 2025
🔥
FBI says China’s Salt Typhoon hacked at least 200 US companies
SH.ITJUST.WORKS — 29 Aug 2025
🕵️
ISC Stormcast For Friday, August 29th, 2025 https://isc.sans.edu/podcastdetail/9592, (Fri, Aug 29th)
ISC.SANS.EDU — 29 Aug 2025
🕵️
DPRK Remote Work Tactics: Leveraging Code-Sharing Platforms
GBHACKERS.COM — 29 Aug 2025
🕵️
Baggage Tag Scam
SCHNEIER.COM — 2025-08-29
🕵️
VirusTotal Launches Endpoint That Explains Code Functionality for Malware Analysts
GBHACKERS.COM — 29 Aug 2025
🕵️
Your KnowBe4 Fresh Content Updates from August 2025
KNOWBE4.COM — 29 Aug 2025
🕵️
TamperedChef Malware Disguised as Fake PDF Editors Steals Credentials and Cookies
SH.ITJUST.WORKS — 29 Aug 2025
🕵️
Google is getting ready to 'hack back' as US considers shifting from cyber defense to offense — new 'Scam Farms' bill opens up new retaliatory hacking actions
SH.ITJUST.WORKS — 29 Aug 2025
🕵️
One of the Biggest Mysteries in Cybersecurity: Why Don’t We Teach or Demand Secure
KNOWBE4.COM — 29 Aug 2025
🕵️
Weaponized PDFs and LNK Files Used in Windows Attacks
GBHACKERS.COM — 29 Aug 2025
🕵️
Cybersecurity News Review - Week 35 (2025)
INFOSEC.PUB — 29 Aug 2025
🕵️
WhatsApp fixes ‘zero-click’ bug used to hack Apple users with spyware
INFOSEC.PUB — 29 Aug 2025
🕵️
WhatsApp fixes ‘zero-click’ bug used to hack Apple users with spyware
SH.ITJUST.WORKS — 29 Aug 2025
🕵️
Malicious Nx Packages in ‘s1ngularity’ Attack Leaked 2,349 GitHub, Cloud, and AI Credentials
SH.ITJUST.WORKS — 29 Aug 2025
🕵️
Friday Squid Blogging: Catching Humboldt Squid
SCHNEIER.COM — 2025-08-29
🕵️
Astro Oblivion, FreePBX, GitHub, OWASP, Promptlock, Claude Aaran Leyland - SWN #507
YOUTUBE.COM — 2025-08-29
🌐
TamperedChef Malware Disguised as Fake PDF Editors Steals Credentials and Cookies
THEHACKERNEWS.COM — 29 Aug 2025
🌐
Cyber security best practices for managing email
CYBER.GC.CA — 2025-08-29
🌐
Cyber security best practices for managing email (ITSAP.60.002)
CYBER.GC.CA — 2025-08-29
🌐
Windows 11 KB5064081 update clears up CPU usage metrics in Task Manager
BLEEPINGCOMPUTER.COM — 29 Aug 2025
📡
Feds Seize $6.4M VerifTools Fake-ID Marketplace, but Operators Relaunch on New Domain
THEHACKERNEWS.COM — 29 Aug 2025
📡
Can Your Security Stack See ChatGPT? Why Network Visibility Matters
THEHACKERNEWS.COM — 29 Aug 2025
📡
Empowering Rural Education: Sophos India’s Volunteering Initiative
SOPHOS.COM — 29 Aug 2025
📡
WordPress: vulnerabilities in plugins and themes | Kaspersky official blog
KASPERSKY.COM — 29 Aug 2025
📡
Microsoft fixes bug behind Windows certificate enrollment errors
BLEEPINGCOMPUTER.COM — 29 Aug 2025