197Articles
7Categories
2025-09-09Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 86[−]
9 SepNew Exploitation Method Discovered for Linux Kernel Use-After-Free VulnerabilityA new exploitation method has been discovered for the Linux kernel use-after-free (UAF) vulnerability tracked as CVE-2024-50264. The vulnerability was awarded the Pwnie Award 2025 for Best Privilege Escalation due to its complexity and impact on major Linux distributions. Researc…GBHACKERS.COM
9 SepSessionReaper Vulnerability Puts Magento & Adobe Commerce Sites in Hacker CrosshairsAdobe has broken its regular patch schedule to address CVE-2025-54236, a critical vulnerability in Magento Commerce and open-source Magento installations. Dubbed “SessionReaper,” this vulnerability allows attackers to bypass input validation in the Magento Web API, enabling autom…GBHACKERS.COM
9 SepIvanti Endpoint Manager Vulnerabilities Allow Remote Code Execution by Attackers Ivanti released Security Advisory for Endpoint Manager versions 2024 SU3 and 2022 SU8, detailing two high‐severity flaws (CVE-2025-9712 and CVE-2025-9872). Both issues stem from insufficient filename validation and require only minimal user interaction, potentially granting…GBHACKERS.COM
9 SepFortiDDoS Vulnerability Lets Hackers Execute Unauthorized OS CommandsFortinet has disclosed a significant OS command injection vulnerability in its FortiDDoS-F appliances that could allow privileged attackers to execute unauthorized code or commands through the command-line interface (CLI). The security flaw, identified as CVE-2024-45325, affects …GBHACKERS.COM
9 SepAdobe patches critical SessionReaper flaw in Magento eCommerce platformAdobe is warning of a critical vulnerability (CVE-2025-54236) in its Commerce and Magento Open Source platforms that researchers call SessionReaper and describe as one of " the most severe" flaws in the history of the product. [...]BLEEPINGCOMPUTER.COM
9 SepCVE-2025-49734 PowerShell Direct Elevation of Privilege VulnerabilityImproper restriction of communication channel to intended endpoints in Windows PowerShell allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-53797 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityBuffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-53798 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityBuffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-54095 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityOut-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-54096 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityOut-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-54097 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityOut-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-54099 Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityStack-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54101 Windows SMB Client Remote Code Execution VulnerabilityUse after free in Windows SMBv3 Client allows an authorized attacker to execute code over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-54102 Windows Connected Devices Platform Service Elevation of Privilege VulnerabilityUse after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54106 Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityInteger overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-54110 Windows Kernel Elevation of Privilege VulnerabilityInteger overflow or wraparound in Windows Kernel allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54111 Windows UI XAML Phone DatePickerFlyout Elevation of Privilege VulnerabilityUse after free in Windows UI XAML Phone DatePickerFlyout allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54895 SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Elevation of Privilege VulnerabilityInteger overflow or wraparound in Windows SPNEGO Extended Negotiation allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54896 Microsoft Excel Remote Code Execution VulnerabilityUse after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54897 Microsoft SharePoint Remote Code Execution VulnerabilityDeserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-54898 Microsoft Excel Remote Code Execution VulnerabilityOut-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54899 Microsoft Excel Remote Code Execution VulnerabilityFree of memory not on the heap in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54902 Microsoft Excel Remote Code Execution VulnerabilityOut-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54903 Microsoft Excel Remote Code Execution VulnerabilityUse after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54904 Microsoft Excel Remote Code Execution VulnerabilityUse after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54905 Microsoft Word Information Disclosure VulnerabilityUntrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to disclose information locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54906 Microsoft Office Remote Code Execution VulnerabilityFree of memory not on the heap in Microsoft Office allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54907 Microsoft Office Visio Remote Code Execution VulnerabilityHeap-based buffer overflow in Microsoft Office Visio allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54908 Microsoft PowerPoint Remote Code Execution VulnerabilityUse after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54913 Windows UI XAML Maps MapControlSettings Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows UI XAML Maps MapControlSettings allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54916 Windows NTFS Remote Code Execution VulnerabilityStack-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54918 Windows NTLM Elevation of Privilege VulnerabilityImproper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-54919 Windows Graphics Component Remote Code Execution VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-55223 DirectX Graphics Kernel Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-55225 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityOut-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-55226 Graphics Kernel Remote Code Execution VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-55228 Windows Graphics Component Remote Code Execution VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-55232 Microsoft High Performance Compute (HPC) Pack Remote Code Execution VulnerabilityDeserialization of untrusted data in Microsoft High Performance Compute Pack (HPC) allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-55236 Graphics Kernel Remote Code Execution VulnerabilityTime-of-check time-of-use (toctou) race condition in Graphics Kernel allows an authorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-55245 Xbox Gaming Services Elevation of Privilege VulnerabilityImproper link resolution before file access ('link following') in Xbox allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-55243 Microsoft OfficePlus Spoofing VulnerabilityExposure of sensitive information to an unauthorized actor in Microsoft Office Plus allows an unauthorized attacker to perform spoofing over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-55316 Azure Arc Elevation of Privilege VulnerabilityExternal control of file name or path in Azure Arc allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-55317 Microsoft AutoUpdate (MAU) Elevation of Privilege VulnerabilityImproper link resolution before file access ('link following') in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-49692 Azure Connected Machine Agent Elevation of Privilege VulnerabilityImproper access control in Azure Windows Virtual Machine Agent allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-47997 Microsoft SQL Server Information Disclosure VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in SQL Server allows an authorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-53796 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityBuffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-53799 Windows Imaging Component Information Disclosure VulnerabilityUse of uninitialized resource in Windows Imaging Component allows an unauthorized attacker to disclose information locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-53800 Windows Graphics Component Elevation of Privilege VulnerabilityNo cwe for this issue in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-53801 Microsoft DWM Core Library Elevation of Privilege VulnerabilityUntrusted pointer dereference in Windows DWM allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-53802 Windows Bluetooth Service Elevation of Privilege VulnerabilityUse after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-53803 Windows Kernel Memory Information Disclosure VulnerabilityGeneration of error message containing sensitive information in Windows Kernel allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-53804 Windows Kernel-Mode Driver Information Disclosure VulnerabilityExposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-53805 HTTP.sys Denial of Service VulnerabilityOut-of-bounds read in Windows Internet Information Services allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-53806 Windows Routing and Remote Access Service (RRAS) Information Disclosure VulnerabilityBuffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-53807 Windows Graphics Component Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-53808 Windows Defender Firewall Service Elevation of Privilege VulnerabilityAccess of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-53809 Local Security Authority Subsystem Service (LSASS) Denial of Service VulnerabilityImproper input validation in Windows Local Security Authority Subsystem Service (LSASS) allows an authorized attacker to deny service over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-53810 Windows Defender Firewall Service Elevation of Privilege VulnerabilityAccess of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54091 Windows Hyper-V Elevation of Privilege VulnerabilityInteger overflow or wraparound in Windows Hyper-V allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54092 Windows Hyper-V Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54093 Windows TCP/IP Driver Elevation of Privilege VulnerabilityTime-of-check time-of-use (toctou) race condition in Windows TCP/IP allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54094 Windows Defender Firewall Service Elevation of Privilege VulnerabilityAccess of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54098 Windows Hyper-V Elevation of Privilege VulnerabilityImproper access control in Windows Hyper-V allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54103 Windows Management Service Elevation of Privilege VulnerabilityUse after free in Windows Management Services allows an unauthorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54104 Windows Defender Firewall Service Elevation of Privilege VulnerabilityAccess of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54105 Microsoft Brokering File System Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54107 MapUrlToZone Security Feature Bypass VulnerabilityImproper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-54108 Capability Access Management Service (camsvc) Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54109 Windows Defender Firewall Service Elevation of Privilege VulnerabilityAccess of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54112 Microsoft Virtual Hard Disk Elevation of Privilege VulnerabilityUse after free in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54113 Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityHeap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-54114 Windows Connected Devices Platform Service (Cdpsvc) Denial of Service VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to deny service locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54115 Windows Hyper-V Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54116 Windows MultiPoint Services Elevation of Privilege VulnerabilityImproper access control in Windows MultiPoint Services allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54900 Microsoft Excel Remote Code Execution VulnerabilityHeap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54901 Microsoft Excel Information Disclosure VulnerabilityBuffer over-read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54910 Microsoft Office Remote Code Execution VulnerabilityHeap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54911 Windows BitLocker Elevation of Privilege VulnerabilityUse after free in Windows BitLocker allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54912 Windows BitLocker Elevation of Privilege VulnerabilityUse after free in Windows BitLocker allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54915 Windows Defender Firewall Service Elevation of Privilege VulnerabilityAccess of resource using incompatible type ('type confusion') in Windows Defender Firewall Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-54917 MapUrlToZone Security Feature Bypass VulnerabilityProtection mechanism failure in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-55224 Windows Hyper-V Remote Code Execution VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to execute code locally.MSRC.MICROSOFT.COM
9 SepCVE-2025-55227 Microsoft SQL Server Elevation of Privilege VulnerabilityImproper neutralization of special elements used in a command ('command injection') in SQL Server allows an authorized attacker to elevate privileges over a network.MSRC.MICROSOFT.COM
9 SepCVE-2025-55234 Windows SMB Elevation of Privilege VulnerabilitySMB Server might be susceptible to relay attacks depending on the configuration. An attacker who successfully exploited these vulnerabilities could perform relay attacks and make the users subject to elevation of privilege attacks. The SMB Server already supports mechanisms for h…MSRC.MICROSOFT.COM
9 SepCVE-2024-21907 VulnCheck: CVE-2024-21907 Improper Handling of Exceptional Conditions in Newtonsoft.Json[CVE-2024-21907](https://www.cve.org/CVERecord?id=CVE-2024-21907) addresses a mishandling of exceptional conditions vulnerability in Newtonsoft.Json before version 13.0.1. Crafted data that is passed to the JsonConvert.DeserializeObject method may trigger a StackOverflow exceptio…MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 38[−]
9 SepAI powered autonomous ransomware campaigns are coming, say expertsThe creation of an AI proof of concept that can autonomously build and execute a ransomware attack from scratch shouldn’t alarm CISOs who are prepared, says an expert. The defense against such a proposed new tool, said Taylor Grossman , director for digital security at the Instit…CSOONLINE.COM
9 SepQualys Confirms Cyberattack Campaign Targeting Salesforce via Salesloft and DriftQualys has confirmed that it was recently impacted by a cybersecurity campaign targeting Salesloft and Drift, two third-party SaaS platforms that integrate with Salesforce. The company emphasized that customer data and its own production environments on the Qualys Cloud Platform …GBHACKERS.COM
9 Sep5 ways CISOs are experimenting with AISecurity leaders face a dual mandate with AI — guide secure organizational adoption while seeking ways to improve security operations. Things are moving quickly, yet cybersecurity teams are taking a cautious approach, according to ISC2’s AI Adoption Survey , with 30% already inte…CSOONLINE.COM
9 SepWindows Defender Vulnerability Lets Hackers Hijack and Disable Services Using Symbolic LinksA newly demonstrated attack technique has revealed a flaw in how Windows Defender manages its update and execution mechanism. By exploiting symbolic links, attackers can hijack Defender’s service folders, gain full control over its executables, and even disable the antivirus enti…GBHACKERS.COM
9 SepDynatrace Data Breach Exposes Customer Information Stored in SalesforceDynatrace has confirmed that customer data stored in Salesforce was exposed following a third-party breach involving Salesloft’s Drift application. The incident, which occurred in August 2025, allowed unauthorized access to Salesforce CRM data across multiple companies. Both Sale…GBHACKERS.COM
9 Sep71% of CISOs hit with third-party security incident this yearMany enterprises are at growing risk due to immature supply chain cybersecurity practices and outdated strategies. The majority (71%) of organizations experienced at least one material third-party cybersecurity incident in the past year, and 5% reported 10 or more such incidents,…CSOONLINE.COM
9 SepMostereRAT Exploits AnyDesk and TightVNC for Remote Access on Windows SystemsCybersecurity researchers at FortiGuard Labs have uncovered a sophisticated phishing campaign that deploys the MostereRAT remote access trojan to compromise Windows systems. The malware leverages advanced evasion techniques and installs legitimate remote access tools like AnyDesk…GBHACKERS.COM
9 SepNew Malware Exploits Exposed Docker APIs to Gain Persistent Root SSH AccessThe Akamai Hunt Team has uncovered a new strain of malware that targets exposed Docker APIs with expanded infection capabilities. First observed in August 2025 within Akamai’s honeypot infrastructure, this variant diverges from the June 2025 Trend Micro report by blocking other a…GBHACKERS.COM
9 SepLimitations and Liabilities of LLM Coding - Ted Shorter, Seemant Sehgal - ASW #347Up first, the ASW news of the week. At Black Hat 2025, Doug White interviews Ted Shorter, CTO of Keyfactor, about the quantum revolution already knocking on cybersecurity’s door. They discuss the terrifying reality of quantum computing’s power to break RSA and ECC encryption—the …YOUTUBE.COM
9 SepNew Cyber Attack Exploits DeskSoft to Spread Malware via RDP Command ExecutionAn emerging threat campaign has been identified that weaponizes a trojanized version of DeskSoft’s EarthTime application to deploy sophisticated malware, leveraging Remote Desktop Protocol (RDP) access for command execution and network reconnaissance. Security analysts attribute …GBHACKERS.COM
9 SepThreat Actor Connected to Play, RansomHub and DragonForce Ransomware OperationsThe attacker deployed multiple malware families, including two backdoors and a proxy tunneller, and various reconnaissance tools. The post Threat Actor Connected to Play, RansomHub and DragonForce Ransomware Operations appeared first on SecurityWeek .SECURITYWEEK.COM
9 SepFrom MostereRAT to ClickFix: New Malware Campaigns Highlight Rising AI and Phishing RisksCybersecurity researchers have disclosed details of a phishing campaign that delivers a stealthy banking malware-turned-remote access trojan called MostereRAT. The phishing attack incorporates a number of advanced evasion techniques to gain complete control over compromised syste…THEHACKERNEWS.COM
9 SepTOR-Based Cryptojacking Attack Expands Through Misconfigured Docker APIsCybersecurity researchers have discovered a variant of a recently disclosed campaign that abuses the TOR network for cryptojacking attacks targeting exposed Docker APIs. Akamai, which discovered the latest activity last month, said it's designed to block other actors from accessi…THEHACKERNEWS.COM
9 SepSAP Security Patch Day Addresses 21 Vulnerabilities, 4 Classified as CriticalSAP’s Security Patch Day on September 9, 2025, introduced fixes for 21 newly discovered vulnerabilities across its product portfolio and provided updates to four previously released security notes. With four issues rated as Critical, organizations running SAP environments ar…GBHACKERS.COM
9 SepWhen AI nukes your database: The dark side of vibe codingOne July morning, a startup founder watched in horror as their production database vanished–nuked not by a hacker, but by a well-meaning AI coding assistant in Replit. A single AI-suggested command, executed without a second glance, wiped out live data in seconds. The mishap has …CSOONLINE.COM
9 SepU.S. Cracks Down on Scam Networks in Southeast Asia Draining BillionsIn a sweeping effort to curb transnational cybercrime and human rights abuses, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) today imposed sanctions on a sprawling network of scam centers operating in Southeast Asia. These centers, which exploit fo…GBHACKERS.COM
9 SepMassive npm supply chain attack hits 18 popular packages with 2B weekly downloadsA massive supply chain attack compromised 18 highly popular npm packages, which collectively received two billion weekly downloads, deploying sophisticated browser-based malware designed to steal cryptocurrency and web3 transactions from unsuspecting developers and end-users, and…CSOONLINE.COM
9 SepSmart GPUGate malware exploits GitHub and Google Ads for evasive targetingSecurity researchers at Arctic Wolf have uncovered a novel malware campaign targeting users in Western Europe, delivered through Google Ads and employing sophisticated evasion techniques. Dubbed GPUGate, the campaign uses malicious GitHub Desktop installers to distribute its payl…CSOONLINE.COM
9 SepPhishing kit Salty2FA washes away confidence in MFAA newly uncovered phishing campaign has been linked to Salty2FA, a phishing-as-a-service framework built to sidestep multi-factor authentication (MFA). The ongoing campaign is using the kit to bypass MFA protections by intercepting verification methods, rotating subdomains, and c…CSOONLINE.COM
9 SepSAP Patches Critical NetWeaver VulnerabilitiesThe critical-severity NetWeaver flaws could be exploited for remote code execution and privilege escalation. The post SAP Patches Critical NetWeaver Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
9 SepExposed Docker APIs Likely Exploited to Build BotnetHackers mount the host’s file system into fresh containers, fetch malicious scripts over the Tor network, and block access to the Docker API. The post Exposed Docker APIs Likely Exploited to Build Botnet appeared first on SecurityWeek .SECURITYWEEK.COM
9 SepZoom Security Update Fixes Vulnerabilities in Windows Client and Workplace PlatformZoom has released an urgent security update for its Windows client and Workplace platform to address multiple flaws, including a critical vulnerability that could allow attackers to hijack or manipulate the application. Users are strongly encouraged to apply the patch immediately…GBHACKERS.COM
9 SepMultiple Vulnerabilities Discovered in Ivanti Connect Secure, Policy Secure, and ZTA GatewaysIvanti on September 9 released a security advisory detailing six medium and five high severity vulnerabilities impacting Ivanti Connect Secure, Policy Secure, ZTA Gateways, and Neurons for Secure Access. No evidence of customer exploitation has surfaced so far. Patches and fixes …GBHACKERS.COM
9 SepCISA Releases Fourteen Industrial Control Systems AdvisoriesCISA released fourteen Industrial Control Systems (ICS) advisories on September 9, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-252-01 Rockwell Automation ThinManager ICSA-25-252-02 ABB Cyl…CISA.GOV
9 SepNews alert: Link11 tracks 225% surge in DDoS attacks, record-breaking scale and durationFrankfurt, Sept. 9, 2025, CyberNewswire — The threat landscape surrounding distributed denial-of-service (DDoS) attacks intensified significantly in the first half of 2025, according to the latest Link11 European Cyber Report. Documented attacks targeting the Link11 network incre…LASTWATCHDOG.COM
9 SepMicrosoft September 2025 Patch Tuesday fixes 81 flaws, two zero-daysToday is Microsoft's September 2025 Patch Tuesday, which includes security updates for 81 flaws, including two publicly disclosed zero-day vulnerabilities. [...]BLEEPINGCOMPUTER.COM
9 SepTurning Data Into Defense: The Metrics That CountCybersecurity pros often talk about tools and controls, but how do they really measure if those defenses work? In this short, the speaker reveals how security, privacy, and assurance teams join forces to define security assurance metrics—and why those numbers matter more than eve…YOUTUBE.COM
9 SepAdobe Patches Critical ColdFusion and Commerce VulnerabilitiesAdobe has patched nearly two dozen vulnerabilities across nine of its products with its September 2025 Patch Tuesday updates. The post Adobe Patches Critical ColdFusion and Commerce Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
9 SepMicrosoft September 2025 Patch Tuesday – 81 Vulnerabilities and 2 Zero Days FixedMicrosoft has released its September 2025 Patch Tuesday update, addressing a total of 81 security vulnerabilities across its product portfolio. This extensive release includes fixes for two zero-day vulnerabilities that are actively being exploited. Among the patched flaws, ten a…GBHACKERS.COM
9 SepMicrosoft Patches 86 VulnerabilitiesMicrosoft has released patches for dozens of flaws in Windows and other products, including ones with ‘exploitation more likely’ rating. The post Microsoft Patches 86 Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
9 SepMicrosoft Patch Tuesday September 2025, (Tue, Sep 9th)As part of its September patch Tuesday, Microsoft addressed 177 different vulnerabilities, 86 of which affect Microsoft products. None of the vulnerabilities has been exploited before today. Two of the vulnerabilities were already made public. Microsoft rates 13 of the vulnerabil…ISC.SANS.EDU
9 SepTop 10 Best Internal Network Penetration Testing Providers in 2025In a world of evolving threats, the security of an organization’s internal network is just as important as its external defenses. An internal network penetration test simulates a real-world attack from a threat actor who has already gained a foothold inside the network, exp…GBHACKERS.COM
9 SepAI Bombs: The New Zero-Day? 🚨AI bombs are being called the “new zero-day” in cybersecurity 🚨. In this short, cybersecurity experts break down what AI bombs really are, why open source models might be the hidden risk, and how professionals are scrambling to understand the threat. From missing model cards to s…YOUTUBE.COM
9 Sep KEVMicrosoft Patch Tuesday, September 2025 EditionMicrosoft Corp. today issued security updates to fix more than 80 vulnerabilities in its Windows operating systems and software. There are no known "zero-day" or actively exploited vulnerabilities in this month's bundle from Redmond, which nevertheless includes patches for 13 fla…KREBSONSECURITY.COM
9 SepCISOs Hate This: The 10% Patch Rule ExplainedMost organizations think they can patch every vulnerability, but the truth is shocking: no matter if there are 100 or 10 million new CVEs, security teams only manage to patch about 10%. This short breaks down why patch fatigue is real, how CISOs struggle with impossible odds, and…YOUTUBE.COM
9 SepCritical Patches Issued for Microsoft Products, September 09, 2025Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution. Successful exploitation of the most severe of these vulnerabilities could result in an attacker gaining the same privileges as the logged-on user. …CISECURITY.ORG
9 SepMultiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code ExecutionMultiple vulnerabilities have been discovered in Adobe products, the most severe of which could allow for arbitrary code execution. Adobe Acrobat Reader is a free software for viewing, printing, and annotating PDF files. Adobe After Effects is a digital software program used to c…CISECURITY.ORG
9 SepMultiple Vulnerabilities in Ivanti Products Could Allow for Remote Code ExecutionMultiple vulnerabilities have been discovered in Ivanti products, the most severe of which could allow for remote code execution. Ivanti Endpoint Manager is a client-based unified endpoint management software Ivanti Connect Secure is an SSL VPN solution for remote and mobile user…CISECURITY.ORG
📢 SECURITY ADVISORIES 9[−]
9 SepGitHub Actions missbrauchtsrcset="https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?quality=50&strip=all 3540w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.com…CSOONLINE.COM
9 SepUS charges admin of LockerGoga, MegaCortex, Nefilim ransomwareThe U.S. Department of Justice has charged Ukrainian national Volodymyr Viktorovich Tymoshchuk for his role as the administrator of the LockerGoga, MegaCortex, and Nefilim ransomware operations. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 19[−]
9 Sep18 Popular Code Packages Hacked, Rigged to Steal Crypto – Krebs on Securitysubmitted by vk6flab to cybersecurity 1 points | 0 comments https://krebsonsecurity.com/2025/09/18-popular-code-packages-hacked-rigged-to-steal-crypto/ At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly…INFOSEC.PUB
9 SepLargest NPM Compromise in History(Packages With Over 2.6 Billion Total Weekly Downloads) - Supply Chain Attacksubmitted by Pro to cybersecurity 2 points | 0 comments https://www.aikido.dev/blog/npm-debug-and-chalk-packages-compromised cross-posted from: programming.dev/post/37110847 Comments - Hacker News ; - Reddit .SH.ITJUST.WORKS
9 SepChinese Hackers Salt Typhoon and UNC4841 Team Up to Breach Critical InfrastructureCybersecurity researchers at Silent Push have uncovered a sophisticated Chinese espionage operation linking two prominent threat actors, Salt Typhoon and UNC4841, revealing previously unreported infrastructure used to target government and corporate networks across more than 80 c…GBHACKERS.COM
9 Sep20 Popular npm Packages With 2 Billion Weekly Downloads Compromised in Supply Chain AttackMultiple npm packages have been compromised as part of a software supply chain attack after a maintainer's account was compromised in a phishing attack. The attack targeted Josh Junon (aka Qix), who received an email message that mimicked npm ("support@npmjs[.]help"), urging them…THEHACKERNEWS.COM
9 SepPopular npm packages compromised | Kaspersky official blogUnknown attackers have compromised color, debug, ansi-regex, chalk, and several other npm packages in a supply-chain attack.KASPERSKY.COM
9 SepJaguar Land Rover Halts Operations Longer Due to Cyberattack ImpactJaguar Land Rover’s UK factories will remain closed until at least Wednesday as the company continues to recover from a cyberattack that struck its systems on 31 August. The carmaker shut down its IT networks in response to the breach, halting production at its Halewood and Solih…GBHACKERS.COM
9 SepPlex Urges Password Resets Following Data BreachHackers accessed emails, usernames, password hashes, and authentication data stored in a Plex database. The post Plex Urges Password Resets Following Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
9 SepUnmasking The Gentlemen Ransomware: Tactics, Techniques, and Procedures RevealedAn analysis of the Gentlemen ransomware group, which employs advanced, adaptive tactics, techniques, and procedure to target critical industries worldwide.TRENDMICRO.COM
9 SepHow Leading CISOs are Getting Budget ApprovalIt’s budget season. Once again, security is being questioned, scrutinized, or deprioritized. If you're a CISO or security leader, you've likely found yourself explaining why your program matters, why a given tool or headcount is essential, and how the next breach is one blind spo…THEHACKERNEWS.COM
9 Sep160,000 Impacted by Wayne Memorial Hospital Data BreachIn May 2024, hackers stole names, Social Security numbers, financial information, and protected health information from the hospital’s systems. The post 160,000 Impacted by Wayne Memorial Hospital Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
9 SepPlex Media Server: Important Notice of Security Incidentsubmitted by vk6flab to cybersecurity 1 points | 0 comments https://forums.plex.tv/t/important-notice-of-security-incident/930523 We have recently experienced a security incident that may potentially involve your Plex account information. We believe the actual impact of this inci…INFOSEC.PUB
9 SepRansomware Losses Climb as AI Pushes Phishing to New HeightsBased on real-world insurance claims, Resilience’s midyear report shows vendor risk is declining but costly, ransomware is evolving with triple extortion, and social engineering attacks are accelerating through AI. The post Ransomware Losses Climb as AI Pushes Phishing to New Hei…SECURITYWEEK.COM
9 SepPlex urges users to change passwords after data breachCustomers are urged to take action after a database containing scrambled passwords and authentication information was compromised.TECHCRUNCH.COM
9 SepReport: Addressing cybersecurity burnout in 2025The consequences of this burnout are far-reaching, affecting productivity, incident response times, and employee retention.SOPHOS.COM
9 SepThe AI Fix #67: Will Smith’s AI crowd scandal, and gullible agents fall for scamsIn episode 67 of The AI Fix, Graham talks to an AI with a fax machine, Bill Gates says there's one job AI will never replace, criminals use Claude Code for cyberattacks, Mark reveals why GPT-5 was better than you think, and a bird brings new meaning to the words "cloud storage". …GRAHAMCLULEY.COM
9 Sepnpm debug and chalk packages compromisedsubmitted by cm0002 to cybersecurity 1 points | 0 comments https://www.aikido.dev/blog/npm-debug-and-chalk-packages-compromisedINFOSEC.PUB
9 SepGeorgia Hospital Notifying 163,000 of 2024 Ransomware Hacksubmitted by kid to cybersecurity 1 points | 0 comments https://www.bankinfosecurity.in/georgia-hospital-notifying-163000-2024-ransomware-hack-a-29388SH.ITJUST.WORKS
9 SepHackers hide behind Tor in exposed Docker API breachesA threat actor targeting exposed Docker APIs has updated its malicious tooling with more dangerous functionality that could lay the foundation for a complex botnet. [...]BLEEPINGCOMPUTER.COM
9 SepPreventing business disruption and building cyber-resilience with MDRGiven the serious financial and reputational risks of incidents that grind business to a halt, organizations need to prioritize a prevention-first cybersecurity strategyWELIVESECURITY.COM
🕵️ THREAT INTELLIGENCE 34[−]
9 Sep45 Previously Unreported Domains Expose Longstanding Salt Typhoon Cyber EspionageThreat hunters have discovered a set of previously unreported domains, some going back to May 2020, that are associated with China-linked threat actors Salt Typhoon and UNC4841. "The domains date back several years, with the oldest registration activity occurring in May 2020, fur…THEHACKERNEWS.COM
9 SepLookCam App Users Exposed to Critical Security Riskssubmitted by Pro to cybersecurity 1 points | 0 comments https://palant.info/2025/09/08/a-look-at-a-p2p-camera-lookcam-app/ cross-posted from: programming.dev/post/37113232 Comments - Yellow Flag — Mastodon .SH.ITJUST.WORKS
9 SepISC Stormcast For Tuesday, September 9th, 2025 https://isc.sans.edu/podcastdetail/9604, (Tue, Sep 9th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
9 SepMaduro Hails Huawei Mate X6 Gift From China as ‘Unhackable’ by U.S.Venezuelan President Nicolás Maduro made bold claims about cybersecurity during a press conference on September 1, 2025, as he showcased a Huawei smartphone gifted to him by Chinese President Xi Jinping. Holding up the device before international media in Caracas, Maduro declared…GBHACKERS.COM
9 SepHackers Hijack 18 Popular npm Packages Downloaded Over 2 Billion Times WeeklyHackers have hijacked 18 extremely popular npm packages, downloaded more than 2 billion times every week, injecting them with sophisticated malware that targets cryptocurrency users and developers. Early on September 8th, a security feed flagged the sudden update of 18 npm packag…GBHACKERS.COM
9 SepAPT37 Deploys New Rust and Python Malware Targeting Windows SystemsThe North Korean-aligned threat group APT37, also known as ScarCruft, Ruby Sleet, and Velvet Chollima, has evolved its cyber warfare capabilities by deploying sophisticated Rust and Python-based malware in recent campaigns targeting Windows systems. Active since 2012, this advanc…GBHACKERS.COM
9 SepHacker übernehmen Youtube-Kanäle von ArteCyberkriminelle haben zeitweise zwei Youtube-Kanäle des Kultursenders Arte manipuliert. IgorGolovniov – shutterstock.com Unbekannte haben zwei Youtube-Kanäle des deutsch-französischen Kulturkanals Arte zeitweilig gehackt. Zwei der Accounts seien Ziel eines Hackerangriffs geworden…CSOONLINE.COM
9 SepEx-WhatsApp cybersecurity head says Meta endangered billions of users in new suitsubmitted by TheDwZ to cybersecurity 1 points | 0 comments https://www.theguardian.com/technology/2025/sep/08/meta-user-data-lawsuit-whatsappINFOSEC.PUB
9 SepEx-WhatsApp cybersecurity head says Meta endangered billions of users in new suitsubmitted by TheDwZ to cybersecurity 1 points | 0 comments https://www.theguardian.com/technology/2025/sep/08/meta-user-data-lawsuit-whatsappSH.ITJUST.WORKS
9 SepOrangeCon 2025submitted by ashar to security_cpe 1 points | 0 comments Schedule Livestream Track 1 Livestream Track 2INFOSEC.PUB
9 SepSentinelOne to Acquire Observo AI in $225 Million DealSentinelOne is buying Observo AI for a combination of cash and stock to boost its SIEM and data offerings. The post SentinelOne to Acquire Observo AI in $225 Million Deal appeared first on SecurityWeek .SECURITYWEEK.COM
9 SepGraphite, the Israeli spyware acquired by ICEsubmitted by TheDwZ to cybersecurity 2 points | 0 comments https://english.elpais.com/usa/2025-09-05/graphite-the-israeli-spyware-acquired-by-ice.html#%3Frel=lomINFOSEC.PUB
9 SepGraphite, the Israeli spyware acquired by ICEsubmitted by TheDwZ to cybersecurity 0 points | 0 comments https://english.elpais.com/usa/2025-09-05/graphite-the-israeli-spyware-acquired-by-ice.html#%3Frel=lomSH.ITJUST.WORKS
9 SepMitsubishi Electric to Acquire Nozomi Networks for Nearly $1 BillionThe industrial cybersecurity firm will become a wholly owned subsidiary of Mitsubishi Electric. The post Mitsubishi Electric to Acquire Nozomi Networks for Nearly $1 Billion appeared first on SecurityWeek .SECURITYWEEK.COM
9 SepSpamGPT: New AI Email Attack Tool Fueling Massive Phishing OperationsA novel AI-driven email attack toolkit named SpamGPT has surfaced on underground hacking forums, promising cybercriminals an all-in-one platform for launching large-scale phishing campaigns. Advertised as an “AI-powered spam-as-a-service” solution, SpamGPT automates com…GBHACKERS.COM
9 SepNew Cryptanalysis of the Fiat-Shamir ProtocolA couple of months ago, a new paper demonstrated some new attacks against the Fiat-Shamir transformation. Quanta published a good article that explains the results. This is a pretty exciting paper from a theoretical perspective, but I don’t see it leading to any practical r…SCHNEIER.COM
9 SepHow a Single Faulty Windows Driver Can Crash Your System and Cause Blue Screen of DeathWindows devices rely on a complex ecosystem of drivers to manage hardware and software interactions. When one driver fails to complete a critical task, the entire operating system can halt in a fatal error known as the Blue Screen of Death (BSOD). Understanding how a single fault…GBHACKERS.COM
9 SepRatOn Hijacks Bank Account to Launch Automated Money TransfersDubbed RatOn, that combines traditional overlay attacks with NFC relay tactics to hijack bank accounts and initiate automated money transfers. Developed from scratch by a threat actor group observed since July 2025, RatOn represents a significant evolution in mobile fraud capabil…GBHACKERS.COM
9 SepAembit Named to Fast Company’s Seventh-Annual List of the 100 Best Workplaces for InnovatorsSilver Spring, USA, September 9th, 2025, CyberNewsWire Fast Company today announced its seventh-annual Best Workplaces for Innovators list, recognizing businesses that foster a culture of innovation across all levels.  Aembit, the non-human IAM company, earned…GBHACKERS.COM
9 SepData from Police Body Camera Apps Routed to Chinese Cloud Servers Over TLS Port 9091The security and integrity of police body camera footage underpin the validity of evidence presented in court proceedings. However, a recent investigation into a budget-friendly body camera system revealed that its companion mobile application—Viidure—transmits sensitive device i…GBHACKERS.COM
9 SepEx-WhatsApp Security Chief Sues Meta Over Vulnerabilities, RetaliationAttaullah Baig has filed a lawsuit against Meta and its executives, accusing them of retaliation over critical cybersecurity failures. The post Ex-WhatsApp Security Chief Sues Meta Over Vulnerabilities, Retaliation appeared first on SecurityWeek .SECURITYWEEK.COM
9 SepPhishing Alert: Kimusky Hackers Masquerade as Tax Authority with ‘September Tax Return Due Date’ EmailSouth Korean internet users are being targeted by a sophisticated phishing campaign attributed to the North Korean threat actor known as Kimsuky. The malicious emails, masquerading as official notices from the National Tax Service (NTS), inform recipients of a “September Tax Retu…GBHACKERS.COM
9 SepMicrosoft to Add New AI-Powered Actions in File ExplorerMicrosoft is rolling out AI-powered actions in File Explorer, allowing users to interact with files more deeply without leaving the folder view. By right-clicking any supported file, a new “AI actions” menu entry will appear. From there, users can choose various editing and …GBHACKERS.COM
9 SepLink11 Reports 225% more DDoS attacks in H1 2025 with new tactics against infrastructureFrankfurt am Main, Germany, September 9th, 2025, CyberNewsWire The threat landscape surrounding distributed denial-of-service (DDoS) attacks intensified significantly in the first half of 2025, according to the latest Link11 European Cyber Report. Documented attacks targeting the…GBHACKERS.COM
9 SepAxios Abuse and Salty 2FA Kits Fuel Advanced Microsoft 365 Phishing AttacksThreat actors are abusing HTTP client tools like Axios in conjunction with Microsoft's Direct Send feature to form a "highly efficient attack pipeline" in recent phishing campaigns, according to new findings from ReliaQuest. "Axios user agent activity surged 241% from June to Aug…THEHACKERNEWS.COM
9 SepAppSec Meets AI: What Could Possibly Go Wrong? 💥In this short, Mike breaks down how new AI tools can look fun on the surface but raise serious security concerns. From authentication risks to file system access and even malicious AI agents pretending to be trusted, he shows how basic threat modeling is still the key to staying …YOUTUBE.COM
9 SepWhen Security Fails, Why Does Software Still Survive?Even when cybersecurity systems fail, software keeps running — just like Galileo’s famous phrase “And yet it moves.” This short dives into why insecure apps still function despite vulnerabilities, and what that means for the future of application security. A thought-provoking tak…YOUTUBE.COM
9 Sep45 New Domains Linked to Salt Typhoon, UNC4841submitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/threat-intelligence/new-domains-salt-typhoon-unc4841SH.ITJUST.WORKS
9 SepSurge in networks scans targeting Cisco ASA devices raise concernssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/surge-in-networks-scans-targeting-cisco-asa-devices-raise-concerns/SH.ITJUST.WORKS
9 SepThe One Mistake That Breaks Container Security 🛑When Jonathan explains how moving workloads from on-prem to containers can fail with just one logging mistake, cybersecurity pros listen closely. In this short, he reveals why changing logging outputs from files to console can break entire security workflows—and how stronger codi…YOUTUBE.COM
9 SepBlackHat 2025: Why Everyone’s Talking About Agentic AIAt BlackHat 2025, cybersecurity expert Doug White breaks down why agentic AI has become the hottest — and most controversial — topic in the industry. From promises of magic fixes to warnings about snake oil, this short dives into the hype vs. the reality behind AI defenses. Perfe…YOUTUBE.COM
9 SepHellhounds, Anthropic, iCloud, NPM, gitforked, notdoor, TOR, Signal, Josh Marpet - SWN #510AI Hellhounds, Anthropic, iCloud, NPM, gitforked, notdoor, TOR, Signal, WhatsApp, Josh Marpet, and more on the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-510YOUTUBE.COM
9 SepSecurity Operations Under Fire Inside Black Hat's NOCPalo Alto Networks secures Black Hat's NOC, managing billions of threat events with AI-driven automation, multivendor integration and rapid crisis response. The post Security Operations Under Fire Inside Black Hat's NOC appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
9 SepRatOn Android Malware Detected With NFC Relay and ATS Banking Fraud CapabilitiesA new Android malware called RatOn evolved from a basic tool capable of conducting Near Field Communication (NFC) attacks to a sophisticated remote access trojan with Automated Transfer System (ATS) capabilities to conduct device fraud. "RatOn merges traditional overlay attacks w…THEHACKERNEWS.COM
📡 INFOSEC NEWS 10[−]
9 Sep[Webinar] Shadow AI Agents Multiply Fast — Learn How to Detect and Control Them⚠️ One click is all it takes. An engineer spins up an “experimental” AI Agent to test a workflow. A business unit connects to automate reporting. A cloud platform quietly enables a new agent behind the scenes. Individually, they look harmless. But together, they form an invisible…THEHACKERNEWS.COM
9 SepMicrosoft testing new AI features in Windows 11 File ExplorerMicrosoft is testing new File Explorer AI-powered features that will enable Windows 11 users to work with images and documents without needing to open the files. [...]BLEEPINGCOMPUTER.COM
9 SepSAP fixes maximum severity NetWeaver command execution flawSAP has addressed 21 new vulnerabilities affecting its products, including three critical severity issues impacting the NetWeaver software solution. [...]BLEEPINGCOMPUTER.COM
9 SepMicrosoft: Anti-spam bug blocks links in Exchange Online, Teams​Microsoft is working to resolve a known issue that causes an anti-spam service to mistakenly block Exchange Online and Microsoft Teams users from opening URLs and quarantine some of their emails. [...]BLEEPINGCOMPUTER.COM
9 SepNew enhancements to the Sophos AI AssistantIt isn’t just another AI tool — it’s expertise from the team behind the world’s leading MDR service.SOPHOS.COM
9 SepHow External Attack Surface Management helps enterprises manage cyber riskShadow assets don't care about your perimeter. EASM finds every internet-facing asset, surfaces unknowns, and prioritizes real risks—so you can fix exposures before attackers do. See how Outpost24 makes it easy. [...]BLEEPINGCOMPUTER.COM
9 SepWindows 11 KB5065426 & KB5065431 cumulative updates releasedMicrosoft has released Windows 11 KB5065426 and KB5065431 cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues. [...]BLEEPINGCOMPUTER.COM
9 SepKosovo hacker pleads guilty to running BlackDB cybercrime marketplaceKosovo national Liridon Masurica has pleaded guilty to running BlackDB.cc, a cybercrime marketplace that has been active since 2018. [...]BLEEPINGCOMPUTER.COM
9 SepWindows 10 KB5065429 update includes 14 changes and fixesMicrosoft has released the KB5065429 cumulative update for Windows 10 22H2 and Windows 10 21H2, with fourteen fixes or changes, including fixes for unexpected UAC prompts and severe lag and stuttering issues with NDI streaming software. [...]BLEEPINGCOMPUTER.COM
9 SepU.S. sanctions cyber scammers who stole billions from AmericansThe U.S. Department of the Treasury has sanctioned several large networks of cyber scam operations in Southeast Asia, which stole over $10 billion from Americans last year. [...]BLEEPINGCOMPUTER.COM