76Articles
7Categories
2025-09-08Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
8 SepCritical Argo CD API Flaw Exposes Repository Credentials to AttackersA major security flaw has been discovered in Argo CD, a popular open-source tool used for Kubernetes GitOps deployments. The vulnerability allows project-level API tokens to expose sensitive repository credentials, such as usernames and passwords, to attackers. The issue has been…GBHACKERS.COM
8 Sep KEVCISA Alerts on WhatsApp 0-Day Vulnerability Actively Exploited in AttacksCISA has issued an urgent warning about a newly discovered zero-day vulnerability in WhatsApp that is already being exploited in active attacks. The flaw, tracked as CVE-2025-55177, poses a significant risk to users worldwide, particularly as ransomware operators and other cyberc…GBHACKERS.COM
8 SepApache Jackrabbit Vulnerability Exposes Systems to Remote Code Execution AttacksA new security flaw has been discovered in Apache Jackrabbit, a widely used content repository system, potentially exposing thousands of applications to remote code execution (RCE) risks. The vulnerability, tracked as CVE-2025-58782, affects both Apache Jackrabbit Core and A…GBHACKERS.COM
8 SepPgAdmin Vulnerability Allows Attackers to Gain Unauthorized Account AccessA newly disclosed security flaw in pgAdmin4, the widely used open-source tool for managing PostgreSQL databases, has raised serious concerns among developers and database administrators across the world. The vulnerability, tracked as CVE-2025-9636, was recently highlighted i…GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 22[−]
8 SepWealthsimple Data Breach – User Information Leaked OnlineCanadian financial technology company Wealthsimple disclosed a data security incident on September 5, 2025, revealing that personal information belonging to less than one percent of its clients was accessed without authorization. The breach, which was detected on August 30, has p…GBHACKERS.COM
8 SepHackers Say Thanks For Lousy Security In Large Fast Food ChainCybersecurity Today: Ghost Action Campaign, SalesLoft Breach, AI Vulnerabilities, and Restaurant Security Flaws Host David Shipley discusses the latest in cybersecurity, including the Ghost Action Campaign which compromised over 3000 secrets from GitHub repositories, the SalesLof…CYBERSECURITYTODAY.LIBSYN.COM
8 SepGPUGate Malware Leverages Legitimate Platforms to Deliver Advanced PayloadsA sophisticated new malware campaign exploiting trusted platforms and hardware-dependent evasion techniques targets IT professionals across Western Europe. Cybersecurity researchers have uncovered a highly sophisticated malware distribution campaign that cleverly exploits Google …GBHACKERS.COM
8 SepHackers Exploit Fake Microsoft Teams Site to Spread Odyssey macOS StealerCybercriminals have escalated their attacks against macOS users by deploying a sophisticated new campaign that leverages a fraudulent Microsoft Teams download site to distribute the dangerous Odyssey stealer malware. This development represents a significant evolution from earlie…GBHACKERS.COM
8 SepTenable Data Breach Confirmed -Customer Contact Details CompromisedTenable, a well-known cybersecurity company, has confirmed that it was affected by a recent large-scale data theft campaign. The attack targeted Salesforce and Salesloft Drift integrations, and Tenable was one of the organizations caught up in the incident. The company stressed t…GBHACKERS.COM
8 Sep10 security leadership career-killers — and how to avoid themThere are some bad behaviors that can get executives in trouble. Illegal and unethical actions are the most obvious, and they typically make an executive unemployable. Most professionals know to avoid such behaviors if they want to continue their careers. But there are many other…CSOONLINE.COM
8 SepThe importance of reviewing AI data centers’ policiesInvestment into AI data center development is exponentially increasing: in June 2025, Amazon announced a $20 billion investment into AI data center campuses in Pennsylvania alone, and in July 2025, Meta announced that the first multi-gigawatt data center, Prometheus , will be onl…CSOONLINE.COM
8 SepHow Microsoft Azure Storage Logs Help Investigate Security BreachesWhen a security breach occurs, vital evidence often appears in unexpected places. One such source is Microsoft Azure Storage logs, which play a critical role in digital forensics. While storage accounts are often overlooked, enabling and analyzing their logs can help investi…GBHACKERS.COM
8 SepRansomware, Agentic AI, and Supply Chain Risks: Insights from Black Hat 2025 - Theresa... - ESW #423Doug White sits down with Theresa Lanowitz, Chief Evangelist at LevelBlue, for a powerful and timely conversation about one of cybersecurity’s most pressing threats: the software supply chain. Theresa shares fresh insights from LevelBlue’s global research involving 1,500 cybersec…YOUTUBE.COM
8 Sep⚡ Weekly Recap: Drift Breach Chaos, Zero-Days Active, Patch Warnings, Smarter Threats & MoreCybersecurity never slows down. Every week brings new threats, new vulnerabilities, and new lessons for defenders. For security and IT teams, the challenge is not just keeping up with the news—it’s knowing which risks matter most right now. That’s what this digest is here for: a …THEHACKERNEWS.COM
8 SepIs the CISO role broken?A recent story by Tyler Farrar ( The CISO code of conduct: Ditch the ego, lead for real ) really got me thinking. While I agree with most of the content and the code of conduct it suggests, I think there are a few points around the roles and profiles of the CISOs that need to be …CSOONLINE.COM
8 SepHackers Exploit Amazon SES to Blast Over 50,000 Malicious Emails DailyA sophisticated cyberattack campaign where threat actors exploited compromised AWS credentials to hijack Amazon’s Simple Email Service (SES), launching large-scale phishing operations capable of sending over 50,000 malicious emails daily. The Wiz Research team identified th…GBHACKERS.COM
8 SepGhostAction campaign steals 3325 secrets in GitHub supply chain attackGitGuardian has disclosed a new software supply chain attack campaign, dubbed GhostAction, that exfiltrated thousands of sensitive credentials before being detected and contained on September 5. The attackers manipulated GitHub Actions workflows , the automated processes defined …CSOONLINE.COM
8 SepSalesloft GitHub Account Compromised Months Before Salesforce AttackThe list of impacted cybersecurity firms has been expanded to include BeyondTrust, Bugcrowd, CyberArk, Cato Networks, JFrog, and Rubrik. The post Salesloft GitHub Account Compromised Months Before Salesforce Attack appeared first on SecurityWeek .SECURITYWEEK.COM
8 SepGitHub Workflows Attack Affects Hundreds of Repos, Thousands of SecretsA supply chain attack called GhostAction has enabled threat actors to steal secrets and exploit them. The post GitHub Workflows Attack Affects Hundreds of Repos, Thousands of Secrets appeared first on SecurityWeek .SECURITYWEEK.COM
8 SepPromptLock Only PoC, but AI-Powered Ransomware Is RealPromptLock is only a prototype of LLM-orchestrated ransomware, but hackers already use AI in file encryption and extortion attacks. The post PromptLock Only PoC, but AI-Powered Ransomware Is Real appeared first on SecurityWeek .SECURITYWEEK.COM
8 SepSalesloft: March GitHub repo breach led to Salesforce data theft attacksSalesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in widespread Salesforce data theft attacks in August. [...]BLEEPINGCOMPUTER.COM
8 SepOT on the Frontlines: Threat Intelligence You Can’t Ignore - Dawn Cappelli - CSP #216Dawn Capelli, Head of OT-CERT at Dragos, unpacks the evolving risks to Operational Technology. From nation-state attacks on Ukraine’s infrastructure to hacktivists targeting U.S. water systems, she explains the PIPEDREAM malware, the top five SANS critical OT controls, and how Dr…YOUTUBE.COM
8 SepLovesac confirms data breach after ransomware attack claimsAmerican furniture brand Lovesac is warning that it suffered a data breach impacting an undisclosed number of individuals, stating their personal data was exposed in a cybersecurity incident. [...]BLEEPINGCOMPUTER.COM
8 SepIs Your Software Maintained… or Abandoned? 🛑In this short, Janet Worthington explains why a Software Bill of Materials (SBOM) is just the starting point for visibility in cybersecurity. She highlights the hidden risks: what if a critical component is maintained by only one developer who disappears or stops updating it? The…YOUTUBE.COM
8 Sep100+ Dell Laptops Hacked in Seconds?! 💻🔓 #CybersecurityWhen cybersecurity researchers discovered that over 100 Dell laptops could be hacked in seconds, the entire infosec world took notice. The flaw lies in Dell’s Control Vault 3, a hardware-based security feature designed to protect passwords and biometric data, but ironically it op…YOUTUBE.COM
8 SepSnake Oilers: Nebulock, Vali Cyber and CapeIn this edition of the Snake Oilers podcasts, three vendors pop in to pitch you all on their wares: Automated, AI-powered threat hunting with Nebulock Damien Lewke from Nebulock joins the show to talk about how its agentic AI platform can surface attacker activity out of all thos…RISKY.BIZ
📢 SECURITY ADVISORIES 12[−]
8 SepAI in GovernmentJust a few months after Elon Musk’s retreat from his unofficial role leading the Department of Government Efficiency (DOGE), we have a clearer picture of his vision of government powered by artificial intelligence, and it has a lot more to do with consolidating power than b…SCHNEIER.COM
8 SepCzech cyber agency flags Chinese espionage risks to critical infrastructuresubmitted by Hotznplotzn to cybersecurity 2 points | 0 comments https://securityaffairs.com/181976/intelligence/czech-cyber-agency-nukib-flags-chinese-espionage-risks-to-critical-infrastructure.html cross-posted from: lemmy.sdf.org/post/41893545 Archived The Czech Republic’s Nati…INFOSEC.PUB
8 SepCzech cyber agency flags Chinese espionage risks to critical infrastructuresubmitted by Hotznplotzn to cybersecurity 3 points | 0 comments https://securityaffairs.com/181976/intelligence/czech-cyber-agency-nukib-flags-chinese-espionage-risks-to-critical-infrastructure.html cross-posted from: lemmy.sdf.org/post/41893545 Archived The Czech Republic’s Nati…SH.ITJUST.WORKS
8 SepAction1 vs. Microsoft WSUS: A Better Approach to Modern Patch ManagementWith WSUS deprecated, it's time to move from an outdated legacy patching system to a modern one. Learn from Action1 how its modern patching platform offers cloud-native speed, 3rd-party coverage, real-time compliance, and zero infrastructure. Try it free now! [...]BLEEPINGCOMPUTER.COM
8 SepCISA to Highlight Agency’s Top Priorities to Secure America at 16th Annual Billington CyberSecurity SummitCISA will Showcase Top Cyber Leadership, Operational Collaboration and Innovation at Annual Government-Industry Summit.CISA.GOV
🔥 INCIDENT REPORTING 12[−]
8 SepNew GhostAction Attack Compromises 327 GitHub Users and 817 RepositoriesSecurity researchers uncovered a large-scale attack campaign now identified as GhostAction, which compromised secrets belonging to 327 GitHub users and impacted 817 repositories. The incident began with the discovery of a malicious workflow embedded in the wid…GBHACKERS.COM
8 SepLazarus APT Deploys ClickFix Technique to Exfiltrate Sensitive Intelligence DataThe notorious Lazarus APT group, suspected of having Northeast Asian origins and internally tracked as APT-Q-1 by Qi’anxin, has evolved its attack methodologies by incorporating the sophisticated ClickFix social engineering technique into their cyber espionage operations. T…GBHACKERS.COM
8 SepAustralian Authorities Expose Ransomware Gangs and Their Hidden CareersGroundbreaking research reveals the inner workings of cybercriminal networks targeting Australia and allied nations. Australian researchers have completed a comprehensive analysis of ransomware criminal groups, providing unprecedented insights into one of the most damaging cyberc…GBHACKERS.COM
8 SepFintech Firm Wealthsimple Says Supply Chain Attack Resulted in Data BreachCanadian firm Wealthsimple says a data breach impacts the information of some customers, but accounts and funds remain secure. The post Fintech Firm Wealthsimple Says Supply Chain Attack Resulted in Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
8 SepKimsuky Hackers’ Playbook Uncovered in Exposed ‘Kim’ Data DumpA rare breach attributed to a North Korean–affiliated actor named “Kim” by the leakers has unveiled unprecedented insight into Kimsuky (APT43) operations. Dubbed the “Kim” dump, the 9 GB dataset includes active bash histories, phishing domains, OCR workflows, custom stagers, and …GBHACKERS.COM
8 SepLunaLock Ransomware Attacking Artists to Steal and Encrypt DataLunaLock, a newly surfaced ransomware strain, has launched a targeted campaign against independent artists and their clients, demanding a hefty ransom in exchange for stolen creative works and leaked personal data. Emerging in early September 2025, the LunaLock group claims respo…GBHACKERS.COM
8 SepGitHub Account Compromise Led to Salesloft Drift Breach Affecting 22 CompaniesSalesloft has revealed that the data breach linked to its Drift application started with the compromise of its GitHub account. Google-owned Mandiant, which began an investigation into the incident, said the threat actor, tracked as UNC6395, accessed the Salesloft GitHub account f…THEHACKERNEWS.COM
8 SepSalesloft says Drift customer data thefts linked to March GitHub account hackThe breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the breach.TECHCRUNCH.COM
8 SepVC giant Insight Partners notifies staff and limited partners after data breachThe venture capital giant, behind cyber giants Wiz and Databricks, said it has notified current and former employees and the firm's limited partners of its January breach.TECHCRUNCH.COM
8 SepHackers steal 3,325 secrets in GhostAction GitHub supply chain attackA new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, GitHub tokens, Cloudflare, and AWS keys. [...]BLEEPINGCOMPUTER.COM
8 Sep18 Popular Code Packages Hacked, Rigged to Steal CryptoAt least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved in maintaining the projects was phished. The attack appears to have been quickly …KREBSONSECURITY.COM
8 SepPlex tells users to reset passwords after new data breachMedia streaming platform Plex is warning customers to reset passwords after suffering a data breach in which a hacker was able to steal customer authentication data from one of its databases. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 16[−]
8 SepSANS AI Cybersecurity Summit 2025submitted by ashar to security_cpe 1 points | 0 comments https://youtube.com/playlist?list=PLtgaAEEmVe6Bscw43BFiPMw9G9TdTKq2FINFOSEC.PUB
8 SepCybersecurity M&A Roundup: 27 Deals Announced in August 2025Significant cybersecurity M&A deals announced by Accenture, CrowdStrike, F5, Okta, and SentinelOne. The post Cybersecurity M&A Roundup: 27 Deals Announced in August 2025 appeared first on SecurityWeek .SECURITYWEEK.COM
8 SepmacOS Under Attack: Atomic Stealer Hidden in Pirated SoftwareThe cybersecurity landscape for macOS users has taken a dangerous turn as cybercriminals increasingly target Apple’s ecosystem with sophisticated malware campaigns. Atomic macOS Stealer (AMOS), a specialized data-theft malware, has emerged as one of the most significant thr…GBHACKERS.COM
8 SepU.S. Officials Investigating Cyber Threat Aimed at China Trade TalksAccording to the Wall Street Journal, the deceptive message, purporting to come from Representative John Moolenaar, was dispatched in July to multiple U.S. trade groups, prominent law firms and government agencies. WASHINGTON, Sept. 7 (Reuters) – U.S. authorities have launched an…GBHACKERS.COM
8 SepISC Stormcast For Monday, September 8th, 2025 https://isc.sans.edu/podcastdetail/9602, (Mon, Sep 8th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
8 SepWeb Application Firewall Bypassed via JS Injection with Parameter PollutionIn a recent autonomous penetration test, a novel cross-site scripting (XSS) bypass that sidesteps even highly restrictive Web Application Firewalls (WAFs). Security researchers uncovered a ASP.NET application protected by a rigorously configured WAF. Conventional XSS payloads—bre…GBHACKERS.COM
8 SepOver 6,700 Private Repositories Made Public in Nx Supply Chain AttackThe private repositories of hundreds of organizations were published publicly in the second phase of the Nx supply chain attack. The post Over 6,700 Private Repositories Made Public in Nx Supply Chain Attack appeared first on SecurityWeek .SECURITYWEEK.COM
8 SepHackerangriff treibt Wehrle-Werk in InsolvenzDie Wehrle-Werk AG hat kürzlich einen Insolvenzantrag gestellt. Ein Cyberangriff im vergangenen Jahr hat großen Schaden angerichtet. stockwerk-fotodesign – shutterstock.com Die Wehrle-Werk AG mit Sitz in Baden-Württemberg steckt nach 165 Jahren Geschichte in einer schweren Krise.…CSOONLINE.COM
8 SepChinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: ReportChina’s APT41 sent out malicious emails on behalf of Rep. John Moolenaar to collect information ahead of US-China trade talks. The post Chinese Spies Impersonated US Lawmaker to Deliver Malware to Trade Groups: Report appeared first on SecurityWeek .SECURITYWEEK.COM
8 SepBefore You Secure It… Learn to Build It!Many aspiring cybersecurity pros ask which certification they should get first — but John Kinsella flips the script. Instead of chasing certs, he explains why you can’t secure what you don’t understand. Whether it’s web apps or AI systems, the key is building before defending. Th…YOUTUBE.COM
8 SepSHARED INTEL Q&A: Is your antivirus catching fresh threats — or just echoing VirusTotal?In cybersecurity, trust often hinges on what users think their software is doing — versus what’s actually happening under the hood. Related: Eddy Willem’s ‘Borrowed Brains’ findings Take antivirus, for example. Many users assume threat detection is based on prop…LASTWATCHDOG.COM
8 SepIs This the End of Hope-and-Pray Programming? 🙏🚫In this short, Sohrob Kazerounian shares how coding has shifted from “hope-and-pray” programming to AI-driven workflows where agents write and test code on the fly. Instead of crossing fingers for error-free output, cybersecurity professionals can now bootstrap agents that valida…YOUTUBE.COM
8 Sep🏗️ Security by Default: Inside Netflix’s Paved Road Strategy!Netflix security leader Julia Knecht explains how the “paved road” makes security seamless for developers. Instead of starting from scratch, devs get authentication and authorization out of the box—so they can focus on business logic while security scales in the background. A pow…YOUTUBE.COM
8 SepSigned Copies of Rewiring DemocracyWhen I announced my latest book last week, I forgot to mention that you can pre-order a signed copy here . I will ship the books the week of 10/20, when it is published.SCHNEIER.COM
8 SepFixing Dependencies Like Never Before 🔥Cybersecurity pros know the pain of messy dependencies—but what if fixes were automatic? In this short, Jonathan shows how transformational recipes go beyond old OWASP scans, tackling transitive dependencies and turning alerts into real solutions. This isn’t just detection—it’s t…YOUTUBE.COM
8 Sep10% Patches That Stop 90% of Attacks 🛡️In this short, Neil Carpenter breaks down why security teams shouldn’t waste time patching everything. Instead, he explains how focusing on the top 10% of vulnerabilities—the ones that are exposed, reachable, and tied to crown jewel assets—can stop 90% of real-world attacks. This…YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 2[−]
8 SepGPUGate Malware Uses Google Ads and Fake GitHub Commits to Target IT FirmsCybersecurity researchers have detailed a new sophisticated malware campaign that leverages paid ads on search engines like Google to deliver malware to unsuspecting users looking for popular tools like GitHub Desktop. While malvertising campaigns have become commonplace in recen…THEHACKERNEWS.COM
8 SepHackers hijack npm packages with 2 billion weekly downloads in supply chain attackIn what is being called the largest supply chain attack in history, attackers have injected malware into NPM packages with over 2.6 billion weekly downloads after compromising maintainers' accounts in a phishing attack. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 8[−]
8 SepYou Didn’t Get Phished — You Onboarded the AttackerWhen Attackers Get Hired: Today’s New Identity Crisis What if the star engineer you just hired isn’t actually an employee, but an attacker in disguise? This isn’t phishing; it’s infiltration by onboarding. Meet “Jordan from Colorado,” who has a strong resume, convincing reference…THEHACKERNEWS.COM
8 SepHTTP Request Signatures, (Mon, Sep 8th)This weekend, I noticed three related headers being used in requests to some of our honeypots for the first time [1]: ISC.SANS.EDU
8 SepSignal introduces free and paid backup plans for your chatsSignal introduces backups with both free and paid plans.TECHCRUNCH.COM
8 SepSports streaming piracy service with 123M yearly visits shut down​Calcio, a large piracy sports streaming platform with more than 120 million visits in the past year, was shut down following a collaborative effort by the Alliance for Creativity and Entertainment (ACE) and DAZN. [...]BLEEPINGCOMPUTER.COM
8 SepSignal adds secure cloud backups to save and restore chatsSignal has introduced a new opt-in feature that helps users create end-to-end encrypted backups of their chats, allowing them to restore messages even if their phones are damaged or lost. [...]BLEEPINGCOMPUTER.COM
8 SepFormer WhatsApp security boss sues Meta for “systemic cybersecurity failures”Meta allegedly prioritized user growth over security, lawsuit said.ARSTECHNICA.COM
8 SepSurge in networks scans targeting Cisco ASA devices raise concernsLarge network scans have been targeting Cisco ASA devices, prompting warnings from cybersecurity researchers that it could indicate an upcoming flaw in the products. [...]BLEEPINGCOMPUTER.COM
8 SepNetskope follows Rubrik as a rare cybersecurity IPO, both backed LightspeedThe 13-year-old company could be valued up to $6.5, with Lightspeed's stake worth $1.1 billion.TECHCRUNCH.COM