🚨 CISA KEV 1[−]
2 Sep KEVCISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2020-24363 TP-link TL-WA855RE Missing Authentication for Critical Function Vulnerability CVE-2025-55177 Meta Platforms Wha…CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 11[−]
2 Sep1,000 Developers Compromised By NX Build System BreachCybersecurity Today: Major Attacks on NX Build System, Sitecore, and Salesforce In this episode, David Shipley covers a string of significant cybersecurity breaches and vulnerabilities. Highlights include a compromise of the NX build system affecting over 1000 developers, remote …CYBERSECURITYTODAY.LIBSYN.COM
2 Sep163: OlaIn 2019, Ola Bini, a Swedish programmer and privacy advocate, was arrested in Ecuador for being a Russian hacker. Find Ola on X: https://x.com/olabini . Or visit his website https://olabini.se/blog/ . Or check out his non-profit https://autonomia.digital/ . Sponsors Support for t…DARKNETDIARIES.COM
2 SepResearchers Warn of MystRodX Backdoor Using DNS and ICMP Triggers for Stealthy ControlCybersecurity researchers have disclosed a stealthy new backdoor called MystRodX that comes with a variety of features to capture sensitive data from compromised systems. "MystRodX is a typical backdoor implemented in C++, supporting features like file management, port forwarding…THEHACKERNEWS.COM
2 SepUkrainian Network FDN3 Launches Massive Brute-Force Attacks on SSL VPN and RDP DevicesCybersecurity researchers have flagged a Ukrainian IP network for engaging in massive brute-force and password spraying campaigns targeting SSL VPN and RDP devices between June and July 2025. The activity originated from a Ukraine-based autonomous system FDN3 (AS211736), per Fren…THEHACKERNEWS.COM
2 SepSilver Fox Exploits Microsoft-Signed WatchDog Driver to Deploy ValleyRAT MalwareThe threat actor known as Silver Fox has been attributed to abuse of a previously unknown vulnerable driver associated with WatchDog Anti-malware as part of a Bring Your Own Vulnerable Driver (BYOVD) attack aimed at disarming security solutions installed on compromised hosts. The…THEHACKERNEWS.COM
2 SepCISA Releases Four Industrial Control Systems AdvisoriesCISA released four Industrial Control Systems (ICS) advisories on September 2, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-245-01 Delta Electronics EIP Builder ICSA-25-245-02 Fuji Electric…CISA.GOV
2 SepICE reactivates contract with spyware maker ParagonThe Israeli spyware maker now faces the dilemma of whether to continue its relationship with U.S. Immigration and Customs Enforcement and help fuel its mass deportations program.TECHCRUNCH.COM
2 SepThe AI Fix #66: OpenAI and Anthropic test each other, and everyone fails the apocalypse testIn episode 66 of The AI Fix, ChatGPT gives Mark and Graham a terrible lesson in anatomy, boffins at Stanford ruin sushi, Google Gemini has a self-loathing meltdown, DeepSeek gets an "F" in stopping existential threats to humanity, a robot doesn’t give birth, and a team of AI agen…GRAHAMCLULEY.COM
2 SepSalesforce-Connected Third-Party Drift Application Incident ResponseCompanies were impacted by a Salesloft Drift data breach. Our investigation reveals exfiltrated data includes business contact and sales account info. The post Salesforce-Connected Third-Party Drift Application Incident Response appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
2 SepHow to protect your cookies and session ID | Kaspersky official blogLearn about the different types of cookies, whether you should always accept them, how attackers intercept them, and what you can do to stay safe.KASPERSKY.COM
2 SepMy Pixel 10 warned me 8 times in 30-minutes that there was a rogue connection made. Deeply concerningsubmitted by Jerry to cybersecurity 103 points | 64 comments I have a #Pixel 10 Pro XL phone, which may be the first phone to give warnings when the phone connects to a rogue cellphone tower or IMSI catcher. The OS cannot block it; it can only tell you that someone read informati…SH.ITJUST.WORKS
📢 SECURITY ADVISORIES 2[−]
2 SepCISA Announces Nicholas Andersen as New Executive Assistant Director for CybersecurityCISA Announces Nicholas Andersen as New Executive Assistant Director for Cybersecurity.CISA.GOV
2 SepYour KnowBe4 Compliance Plus Fresh Content Updates from August 2025Check out the August updates in Compliance Plus so you can stay on top of featured compliance training content.KNOWBE4.COM
🔥 INCIDENT REPORTING 1[−]
2 SepGoogle says Gmail security is “strong and effective” as it denies major breachGoogle refutes claims that all 2.5 billion Gmail users are at risk.ARSTECHNICA.COM
🕵️ THREAT INTELLIGENCE 5[−]
2 Sep1965 Cryptanalysis Training Workbook Released by the NSAIn the early 1960s, National Security Agency cryptanalyst and cryptanalysis instructor Lambros D. Callimahos coined the term “Stethoscope” to describe a diagnostic computer program used to unravel the internal structure of pre-computer ciphertexts. The term appears in…SCHNEIER.COM
2 SepLazarus Group Expands Malware Arsenal With PondRAT, ThemeForestRAT, and RemotePEThe North Korea-linked threat actor known as the Lazarus Group has been attributed to a social engineering campaign that distributes three different pieces of cross-platform malware called PondRAT, ThemeForestRAT, and RemotePE. The attack, observed by NCC Group's Fox-IT in 2024, …THEHACKERNEWS.COM
2 SepA quick look at sextortion at scale: 1,900 messages and 205 Bitcoin addresses spanning four years, (Tue, Sep 2nd)What can almost 2,000 sextortion messages tell us about how threat actors operate and whether they are successful? Let's find out.
ISC.SANS.EDU
2 SepISC Stormcast For Tuesday, September 2nd, 2025 https://isc.sans.edu/podcastdetail/9594, (Tue, Sep 2nd)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
2 SepRinoa Poison, Scambaiter Extraordinaire - Rinoa Poison - SWN #508I talk to Rinoa Poison about scambaiting, identity, and all sorts of things. Check it out. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-508YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
2 SepMalicious npm Package nodejs-smtp Mimics Nodemailer, Targets Atomic and Exodus WalletsCybersecurity researchers have discovered a malicious npm package that comes with stealthy features to inject malicious code into desktop apps for cryptocurrency wallets like Atomic and Exodus on Windows systems. The package, named nodejs-smtp, impersonates the legitimate email l…THEHACKERNEWS.COM
📡 INFOSEC NEWS 2[−]
2 SepInnovation unlocked: Sophos Endpoint is now integrated with Taegis MDR and XDRCustomers gain immediate access to combined prevention, detection, and response capabilities in a single platform – while lowering costs and simplifying operations.SOPHOS.COM
2 SepShadow AI Discovery: A Critical Part of Enterprise AI GovernanceThe Harsh Truths of AI Adoption MITs State of AI in Business report revealed that while 40% of organizations have purchased enterprise LLM subscriptions, over 90% of employees are actively using AI tools in their daily work. Similarly, research from Harmonic Security found that 4…THEHACKERNEWS.COM