🐛 COMMON VULNERABILITIES AND EXPOSURES 7[−]
15 SepLinux CUPS Flaw Allows Remote Denial of Service and Authentication BypassTwo critical security vulnerabilities have been discovered in the Common Unix Printing System (CUPS), a widely used printing subsystem for Unix-like operating systems. The flaws, designated as CVE-2025-58364 and CVE-2025-58060, expose Linux systems to remote denial-of-service att…GBHACKERS.COM
15 SepFlowiseAI Password Reset Token Vulnerability Enables Account TakeoverA critical vulnerability in FlowiseAI has been discovered that allows attackers to take over user accounts with minimal effort. The flaw, tracked as CVE-2025-58434, affects both cloud-hosted and self-hosted FlowiseAI deployments, posing significant risks to organization…GBHACKERS.COM
15 SepLangChainGo Vulnerability Allows Malicious Prompt Injection to Access Sensitive DataA recently discovered flaw in LangChainGo, the Go implementation of the LangChain framework for large language models, permits attackers to read arbitrary files on a server by injecting malicious prompt templates. Tracked as CVE-2025-9556, this vulnerability arises from the use o…GBHACKERS.COM
15 SepIBM QRadar SIEM Vulnerability Allows Unauthorized Actions by AttackersA permissions issue in IBM QRadar SIEM could enable local privileged users to modify configuration files without proper authorization. Tracked as CVE-2025-0164, this flaw stems from incorrect permission assignment for a critical resource, potentially compromising the integrity of…GBHACKERS.COM
15 SepSamsung’s image library flaw opens a zero-click backdoorSamsung has disclosed a serious vulnerability affecting a core utility within its Android devices, one that has already been exploited in zero-day attacks. The flaw resides in a closed-source image-parsing library “libimagecodec,quram.so” supplied by Quramsoft, and allows remote …CSOONLINE.COM
15 SepStop waiting on NVD — get real-time vulnerability alerts nowVulnerabilities are discovered daily—but not every alert matters. SecAlerts pulls from 100+ sources for faster, real-time vuln alerts, filtering the noise so teams can patch quicker and stay secure. [...]BLEEPINGCOMPUTER.COM
15 Sep KEVDelmia Apriso customers face patching emergency after CISA warns of exploitAttackers have been spotted targeting a critical remote code execution (RCE) vulnerability in a key manufacturing management platform used by some of the world’s largest companies. First made public on the maker’s site in June, the vulnerability is CVE-2025-5086 in Delmia Apriso …CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 27[−]
15 Sep9 unverzichtbare Open-Source-Security-ToolsDiese Open-Source-Tools adressieren spezifische Security-Probleme – mit minimalem Footprint. Foto: N Universe | shutterstock.com Cybersicherheitsexperten verlassen sich in diversen Bereichen auf Open-Source-Lösungen – nicht zuletzt weil diese im Regelfall von einer lebendigen und…CSOONLINE.COM
15 SepTop 10 Best Web Application Firewall (WAF) Solutions In 2025In 2025, web applications are no longer just static websites; they are dynamic, complex ecosystems that serve as the primary interface between businesses and their customers. This makes them a prime target for cybercriminals. Traditional network firewalls and intrusion prevention…GBHACKERS.COM
15 SepYurei Ransomware Uses PowerShell to Deploy ChaCha20 File EncryptionA newly discovered ransomware group called Yurei has emerged with sophisticated encryption capabilities, targeting organizations through double-extortion tactics while leveraging open-source code to rapidly scale operations. First observed on September 5, 2025, this Go-based rans…GBHACKERS.COM
15 SepHiddenGh0st, Winos and kkRAT Exploit SEO, GitHub Pages in Chinese Malware AttacksChinese-speaking users are the target of a search engine optimization (SEO) poisoning campaign that uses fake software sites to distribute malware. "The attackers manipulated search rankings with SEO plugins and registered lookalike domains that closely mimicked legitimate softwa…THEHACKERNEWS.COM
15 SepMicrosoft Warns Windows 11 23H2 Support Ending in 60 DaysMicrosoft has issued an urgent reminder to enterprise and educational institutions worldwide about the impending end of support for Windows 11 version 22H2. With just 60 days remaining, organizations must prepare for the October 14, 2025, deadline when critical security updates w…GBHACKERS.COM
15 Sep5 trends reshaping IT security strategies todayCybersecurity’s core mission remains the same: Defend the organization from all the dangers that lurk in the digital space. But what constitutes danger is evolving, as are the technologies involved on both the offensive and defensive sides of cybersecurity. So, too, are the ways …CSOONLINE.COM
15 SepAppSuite-PDF, PDF Editor Operators Exploited 26 Code-Signing Certificates to Fake LegitimacyAnalysis reveals that the developers behind the AppSuite-PDF and PDF Editor campaigns have abused at least 26 distinct code-signing certificates over the past seven years to lend legitimacy to their malware, collectively tracked as BaoLoader. Previously classified as potentially …GBHACKERS.COM
15 SepYour SOC is the parachute — Will it open?The security economy revolves around the assumption that security operations centres (SOCs) will save organizations. Spend enough, outsource enough, automate enough, and you’ll be fine. Except you’re not. Breaches keep happening, and more often than not, they slip past the SOC in…CSOONLINE.COM
15 SepSamsung Patches Zero-Day Exploited Against Android UsersReported by Meta and WhatsApp, the vulnerability leads to remote code execution and was likely exploited by a spyware vendor. The post Samsung Patches Zero-Day Exploited Against Android Users appeared first on SecurityWeek .SECURITYWEEK.COM
15 SepFBI Releases IOCs on Cyber Threats Exploiting Salesforce for Data TheftThe Federal Bureau of Investigation (FBI) has released a detailed flash advisory disclosing indicators of compromise (IOCs) and tactics used by two cybercrime groups—UNC6040 and UNC6395—to breach Salesforce customer environments and siphon sensitive data. Coordinated with the Dep…GBHACKERS.COM
15 SepForrester's AEGIS Framework, the weekly news, and interviews with Fortra and Island - ESW #424Segment 1 - Interview with Jeff Pollard Introducing Forrester’s AEGIS Framework: Agentic AI Enterprise Guardrails For Information Security: https://www.forrester.com/blogs/introducing-aegis-the-guardrails-cisos-need-for-the-agentic-enterprise/ For this episode’s interview, we’re …YOUTUBE.COM
15 SepRed AI Range: Advanced AI Tool for Identifying and Mitigating Security FlawsRed AI Range (RAR) offers a turnkey platform for AI red teaming and vulnerability assessment, enabling security professionals to simulate realistic attack scenarios, uncover weaknesses, and deploy fixes all within a controlled, containerized environment. By consolidating diverse …GBHACKERS.COM
15 SepFBI Shares IoCs for Recent Salesforce Intrusion CampaignsThe cybercrime groups tracked as UNC6040 and UNC6395 have been extorting organizations after stealing data from their Salesforce instances. The post FBI Shares IoCs for Recent Salesforce Intrusion Campaigns appeared first on SecurityWeek .SECURITYWEEK.COM
15 SepBurger King Uses DMCA to Remove Blog Exposing Drive-Thru System Security FlawsBurger King has invoked the Digital Millennium Copyright Act to force the removal of a security researcher’s blog post that disclosed serious vulnerabilities in its new drive-thru “Assistant” system. Ethical hacker BobDaHacker published a report showing how attackers could bypass…GBHACKERS.COM
15 SepNew ransomware Yurei adopts open-source tools for double-extortion campaignsA new ransomware group called Yurei has surfaced, adopting a double-extortion model. The group encrypts the victim’s files, exfiltrates sensitive data, and demands a ransomware payment for decryption and refraining from publishing stolen data. First identified on September 5 by C…CSOONLINE.COM
15 Sep⚡ Weekly Recap: Bootkit Malware, AI-Powered Attacks, Supply Chain Breaches, Zero-Days & MoreIn a world where threats are persistent, the modern CISO’s real job isn't just to secure technology—it's to preserve institutional trust and ensure business continuity. This week, we saw a clear pattern: adversaries are targeting the complex relationships that hold businesses tog…THEHACKERNEWS.COM
15 SepScattered Spider’s ‘retirement’ announcement: genuine exit or elaborate smokescreen?Nearly 15 ransomware and cybercrime groups, led by the notorious Scattered Spider collective, announced their retirement in a dramatic farewell letter that cybersecurity experts believe may be an elaborate deception. The unusual manifesto, posted to BreachForums and addressed to …CSOONLINE.COM
15 SepPhishing Campaigns Exploit RMM Tools to Sustain Remote AccessA sophisticated phishing operation in which attackers deploy remote monitoring and management (RMM) tools—ITarian (formerly Comodo), PDQ Connect, SimpleHelp, and Atera—to gain persistent remote access to compromised systems. By disguising malicious installers as legitimate browse…GBHACKERS.COM
15 SepNeues Phishing-Framework stiehlt Login-Daten von Microsoft und Googlesrcset="https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_2142206135.jpg?quality=50&strip=all 9147w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_2142206135.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
15 SepSidewinder Hackers Weaponize Nepal Protests to Spread Cross-Platform MalwareSidewinder, a well-known advanced persistent threat (APT) group, has adapted its tactics to exploit the ongoing protests in Nepal, deploying a coordinated campaign of mobile and Windows malware alongside credential phishing. By masquerading as respected national institutions and …GBHACKERS.COM
15 SepMicrosoft to force install the Microsoft 365 Copilot app in OctoberNext month, Microsoft will begin automatically installing the Microsoft 365 Copilot app on Windows devices that have the Microsoft 365 desktop client apps. [...]BLEEPINGCOMPUTER.COM
15 SepOpen Source + AI = A Dangerous Combo? ⚠️AI tools are boosting developer productivity in open source projects, but cybersecurity experts are raising alarms. This short explores how AI-written code might speed up workflows while also creating new security risks hackers could exploit. Fast, real, and thought-provoking for…YOUTUBE.COM
15 SepHow the Marine Corps slashed IT delays by shifting to DevOps and agile developmentThe U.S. Marine Corps is celebrated for its precision and ability to adapt on the battlefield. But behind the IT scenes, another battle was taking place against outdated IT systems that made it harder to serve Marines and their families. That’s where Marine Corps Community Servic…CSOONLINE.COM
15 SepSupporting Rowhammer research to protect the DRAM ecosystemPosted by Daniel Moghimi Rowhammer is a complex class of vulnerabilities across the industry. It is a hardware vulnerability in DRAM where repeatedly accessing a row of memory can cause bit flips in adjacent rows, leading to data corruption. This can be exploited by attackers to …SECURITY.GOOGLEBLOG.COM
15 SepGoogle confirms hackers gained access to law enforcement portalGoogle has confirmed that hackers created a fraudulent account in its Law Enforcement Request System (LERS) platform that law enforcement uses to submit official data requests to the company [...]BLEEPINGCOMPUTER.COM
15 SepGoogle confirms fraudulent account created in law enforcement portalGoogle has confirmed that hackers created a fraudulent account in its Law Enforcement Request System (LERS) platform that law enforcement uses to submit official data requests to the company [...]BLEEPINGCOMPUTER.COM
15 SepRisky Biz Soap Box: runZero shakes up vulnerability managementIn this sponsored Soap Box edition of the Risky Business podcast, industry legend HD Moore joins the show to talk about runZero’s major push into vulnerability management. With its new Nuclei integration, runZero is now able to get a very accurate picture of what’s vulnerable in …RISKY.BIZ
📋 SECURITY BULLETINS 1[−]
15 SepMicrosoft says Windows September updates break SMBv1 sharesMicrosoft has confirmed that the September 2025 Windows security updates are causing connection issues to Server Message Block (SMB) v1 shares. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 7[−]
15 SepGoogle Launched Behind-the-Scenes Campaign Against California Privacy Legislation; It Passed AnywayIn April, Rhode Island resident Navah Hopkins received a plea for her help to defeat legislation thousands of miles away in California. The ask came from Google, maker of the world’s most used web browser, Chrome. The tech giant sent a message to an email list that Hopkins and ot…SECURITYWEEK.COM
15 SepMicrosoft: Exchange 2016 and 2019 reach end of support in 30 daysMicrosoft has reminded administrators again that Exchange 2016 and Exchange 2019 will reach the end of extended support next month and has provided guidance for decommissioning outdated servers. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 11[−]
15 SepOver 500GB of Sensitive Great Firewall of China Data Leaked OnlineA massive data breach has exposed the inner workings of China’s internet censorship system, with over 500GB of sensitive documents from the Great Firewall of China (GFW) leaked online on September 11, 2025. This represents the largest leak of internal GFW documents in histo…GBHACKERS.COM
15 SepNPM Attack Leave Hackers Empty Handed: Cybersecurity Today with David ShipleyCybersecurity Today: NPM Attack, Void Proxy Phishing, and Major Business Disruptions In this episode of Cybersecurity Today, host David Shipley discusses a recent massive NPM attack that, despite causing significant disruption, left hackers with minimal gains. We also cover a new…CYBERSECURITYTODAY.LIBSYN.COM
15 SepTop 10 Best Ransomware Protection Companies in 2025As per a recent Sophos report from July 2025, 53% of Indian organizations impacted by ransomware paid the ransom, though the median payment saw a significant drop to around $481,636 (approximately ₹4 crore). However, the average recovery cost, excluding ransom, soared to $1.01 mi…GBHACKERS.COM
15 SepBlackNevas Ransomware Encrypts Files, Exfiltrates Corporate DataCountries with most cyberattacks stopped highlighting global cyber defense efforts, including key regions in Asia-Pacific and North America. BlackNevas has released a comprehensive attack strategy spanning three major regions, with the Asia-Pacific area bearing the heaviest burde…GBHACKERS.COM
15 SepWest Virginia Credit Union Notifying 187,000 People Impacted by 2023 Data BreachTwo years after the fact, Fairmont Federal Credit Union tells customers their personal, financial, and medical information was compromised. The post West Virginia Credit Union Notifying 187,000 People Impacted by 2023 Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
15 SepSecurity researcher discover China-linked malware used to infiltrate Philippine military companysubmitted by Hotznplotzn to cybersecurity 2 points | 0 comments https://web.archive.org/web/20250915095502/https://asiapacificdefencereporter.com/bitdefender-discovers-china-linked-malware/ cross-posted from: lemmy.sdf.org/post/42301965 Archived A Chinese APT group compromised a …INFOSEC.PUB
15 SepSecurity researcher discover China-linked malware used to infiltrate Philippine military companysubmitted by Hotznplotzn to cybersecurity 2 points | 0 comments https://web.archive.org/web/20250915095502/https://asiapacificdefencereporter.com/bitdefender-discovers-china-linked-malware/ Archived A Chinese APT group compromised a Philippine military company using a new, filele…SH.ITJUST.WORKS
15 SepLawsuit About WhatsApp SecurityAttaullah Baig, WhatsApp’s former head of security, has filed a whistleblower lawsuit alleging that Facebook deliberately failed to fix a bunch of security flaws, in violation of its 2019 settlement agreement with the Federal Trade Commission. The lawsuit, alleging violatio…SCHNEIER.COM
15 Sep689,000 Affected by Insider Breach at FinWise BankA former FinWise employee gained access to American First Finance customer information. The post 689,000 Affected by Insider Breach at FinWise Bank appeared first on SecurityWeek .SECURITYWEEK.COM
15 SepFinWise insider breach impacts 689K American First Finance customersFinWise Bank is warning on behalf of corporate customers that it suffered a data breach after a former employee accessed sensitive files after the end of their employment. [...]BLEEPINGCOMPUTER.COM
15 SepCompany that owns Gucci, Balenciaga, other brands confirms hackKering said the hackers did not steal credit card numbers and that it has contacted the customers whose data is part of the breach, without saying how many were affected.TECHCRUNCH.COM
🕵️ THREAT INTELLIGENCE 12[−]
15 SepISC Stormcast For Monday, September 15th, 2025 https://isc.sans.edu/podcastdetail/9612, (Mon, Sep 15th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
15 SepZehn Karrierekiller für CISOsCISOs müssen sich anpassen und weiterentwickeln. Nur so können sie selbst und ihre arbeitgebenden Unternehmen florieren. Ground Picture – Shutterstock.com CISOs tragen große Verantwortung und können daher mit Fehlverhalten ein Unternehmen sowie ihren eigenen Lebenslauf nachhaltig…CSOONLINE.COM
15 SepVoidProxy PhaaS Targets Microsoft 365 and Google Accounts in New CampaignPhishing-as-a-Service operation called VoidProxy that uses advanced adversary-in-the-middle techniques to bypass traditional multi-factor authentication and steal session tokens from Microsoft 365 and Google accounts. The five steps of a SIM-swap attack illustrating how fraudster…GBHACKERS.COM
15 SepDarkCloud Stealer Targets Financial Firms via Weaponized RAR FilesAugust 2025 saw a dramatic surge in targeted attacks by the DarkCloud Stealer against financial institutions worldwide. CyberProof’s MDR analysts and threat hunters identified a wave of phishing emails bearing malicious RAR archives designed to prey on Windows users. Once execute…GBHACKERS.COM
15 SepHackers using generative AI “ChatGPT” to evade anti-virus defensesThe Kimsuky APT group has begun leveraging generative AI ChatGPT to craft deepfake South Korean military agency ID cards. Phishing lures deliver batch files and AutoIt scripts designed to evade anti-virus scanning through sophisticated obfuscation. Organizations must deploy endpo…GBHACKERS.COM
15 SepPro-Russian Hackers Target Critical Industries Across the GlobeIn 2024, as the Russia-Ukraine war prolongs and military and economic cooperation between North Korea and Russia deepens, cyberspace has emerged as a central battleground for international conflict. Russia is increasingly using cyber-attacks as a strategic tool to alleviate econo…GBHACKERS.COM
15 SepHacker breaks into on-campus smart washing machines — management eventually disables devices, leaving thousands of students with no reliable laundry servicesubmitted by Amoxtli to cybersecurity 2 points | 0 comments https://www.tomshardware.com/tech-industry/cyber-security/hacker-breaks-into-on-campus-smart-washing-machines-management-eventually-disables-devices-leaving-thousands-of-students-with-no-reliable-laundry-serviceSH.ITJUST.WORKS
15 SepTerra Security Raises $30 Million for AI Penetration Testing PlatformThe Israeli cybersecurity startup plans to expand its offensive security offering to cover more enterprise attack surface. The post Terra Security Raises $30 Million for AI Penetration Testing Platform appeared first on SecurityWeek .SECURITYWEEK.COM
15 SepRazzia gegen Darknet-Drogenversandsrcset="https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_2008599362.jpg?quality=50&strip=all 4904w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_2008599362.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
15 SepProtecting AI Agents Will Be Status QuoProtecting humans means protecting the tools humans use.KNOWBE4.COM
15 SepSilent Push Raises $10 Million for Threat Intelligence PlatformSilent Push, which provides Indicators of Future Attack, has raised a total of $32 million in funding. The post Silent Push Raises $10 Million for Threat Intelligence Platform appeared first on SecurityWeek .SECURITYWEEK.COM
15 SepZero Trust Is 15 Years Old — Why Full Adoption Is Worth the StruggleFifteen years after its debut, Zero Trust remains the gold standard in cybersecurity theory — but its uneven implementation leaves organizations both stronger and dangerously exposed. The post Zero Trust Is 15 Years Old — Why Full Adoption Is Worth the Struggle appeared first on …SECURITYWEEK.COM
📡 INFOSEC NEWS 11[−]
15 SepAI-Powered Villager Pen Testing Tool Hits 11,000 PyPI Downloads Amid Abuse ConcernsA new artificial intelligence (AI)-powered penetration testing tool linked to a China-based company has attracted nearly 11,000 downloads on the Python Package Index (PyPI) repository, raising concerns that it could be repurposed by cybercriminals for malicious purposes. Dubbed V…THEHACKERNEWS.COM
15 Sep6 Browser-Based Attacks Security Teams Need to Prepare For Right NowAttacks that target users in their web browsers have seen an unprecedented rise in recent years. In this article, we’ll explore what a “browser-based attack” is, and why they’re proving to be so effective. What is a browser-based attack? First, it’s important to establish w…THEHACKERNEWS.COM
15 SepMicrosoft fixes Windows 11 audio issues confirmed in DecemberMicrosoft has removed a safeguard hold that prevented some users from upgrading their systems to Windows 11 24H2 due to compatibility issues that were causing Bluetooth headsets and speakers to malfunction. [...]BLEEPINGCOMPUTER.COM
15 SepBy popular demand: 10 extra exhibit tables open at TechCrunch Disrupt 2025Back by overwhelming demand, we’ve added 10 more exhibit tables to TechCrunch Disrupt 2025 — and this will be the final release before they sell out. This is your last chance to showcase your company in front of 10,000+ founders, VCs, and tech innovators from October 27-29 at San…TECHCRUNCH.COM
15 SepIsrael announces seizure of $1.5 million from crypto wallets tied to IranThe Israeli government ordered the seizure of 187 wallets it said belong to the IRGC, which have over time received $1.5 billion in crypto, according to a blockchain analysis firm.TECHCRUNCH.COM
15 SepMore Mozilla User-Agents, Please: a Deep Dive into an Inadvertent Disclosure ScannerSensor Intel Series: September 2025 TrendsF5.COM
15 SepNew Phoenix attack bypasses Rowhammer defenses in DDR5 memoryAcademic researchers have devised a new variant of Rowhammer attacks that bypass the latest protection mechanisms on DDR5 memory chips from SK Hynix. [...]BLEEPINGCOMPUTER.COM
15 SepApple Updates Everything - iOS/macOS 26 Edition, (Mon, Sep 15th)Today, as expected, Apple released iOS/iPadOS/macOS/watchOS/tvOS 26. Going forward, Apple will adopt the same OS number across its different offerings, setting us up for a potential year 2100 issue. Notably, VisionOS was not updated.
ISC.SANS.EDU
15 SepOpenAI's new GPT-5 Codex model takes on Claude CodeOpenAI is rolling out the GPT-5 Codex model to all Codex instances, including Terminal, IDE extension, and Codex Web (codex.chatgpt.com). [...]BLEEPINGCOMPUTER.COM
15 SepMore Mozilla User-Agents, Please: a Deep Dive into an Inadvertent Disclosure ScannerSensor Intel Series: September 2025 TrendsF5.COM
15 SepMore Mozilla User-Agents, Please: a Deep Dive into an Inadvertent Disclosure ScannerSensor Intel Series: September 2025 TrendsF5.COM