matlock.ca // THREAT INTELLIGENCE

70Articles

8Categories

2025-09-19Date

🐛

CISA Warns of Two Malware Strains Exploiting Ivanti EPMM CVE-2025-4427 and CVE-2025-4428

THEHACKERNEWS.COM — 19 Sep 2025

🐛

HybridPetya ransomware bypasses Windows Secure Boot

CSOONLINE.COM — 19 Sep 2025

🐛

CISA Alerts of Hackers Targeting Ivanti Endpoint Manager Mobile Vulnerabilities to Distribute Malware

GBHACKERS.COM — 19 Sep 2025

🐛

Nokia CBIS/NCS Manager API Vulnerability Allows Attackers to Bypass Authentication

GBHACKERS.COM — 19 Sep 2025

🐛

Entra ID vulnerability exposes gaps in cloud identity trust models, experts warn

CSOONLINE.COM — 19 Sep 2025

🐛

HubSpot’s Jinjava Engine Flaw Exposes Thousands of Sites to RCE Attacks

GBHACKERS.COM — 19 Sep 2025

🐛

Fortra Releases Critical Patch for CVSS 10.0 GoAnywhere MFT Vulnerability

THEHACKERNEWS.COM — 19 Sep 2025

🐛

Chromium: CVE-2025-10501 Use after free in WebRTC

MSRC.MICROSOFT.COM — 19 Sep 2025

🐛

Chromium: CVE-2025-10585 Type Confusion in V8

MSRC.MICROSOFT.COM — 19 Sep 2025

🐛

Chromium: CVE-2025-10502 Heap buffer overflow in ANGLE

MSRC.MICROSOFT.COM — 19 Sep 2025

🐛

Chromium: CVE-2025-10500 Use after free in Dawn

MSRC.MICROSOFT.COM — 19 Sep 2025

🐛

Fortra patches critical GoAnywhere MFT flaw akin to past ransomware exploits

KEVCSOONLINE.COM — 19 Sep 2025

⚠️

0-Click ChatGPT Agent Flaw Exposes Gmail Data to Attackers

GBHACKERS.COM — 19 Sep 2025

⚠️

SolarWinds Issues Advisory Following Salesloft Drift Security Breach

GBHACKERS.COM — 19 Sep 2025

⚠️

SystemBC Botnet Compromises 1,500 VPS Every Day to Rent Out for DDoS Attacks

GBHACKERS.COM — 19 Sep 2025

⚠️

Cybersecurity in smart cities, under scrutiny

CSOONLINE.COM — 19 Sep 2025

⚠️

U.K. Arrests Two Teen Scattered Spider Hackers Linked to August 2024 TfL Cyber Attack

THEHACKERNEWS.COM — 19 Sep 2025

⚠️

How AI-Native Development Platforms Enable Fake Captcha Pages

TRENDMICRO.COM — 19 Sep 2025

⚠️

Unpatched Vulnerabilities Expose Novakon HMIs to Remote Hacking

SECURITYWEEK.COM — 19 Sep 2025

⚠️

New iOS Video Injection Tool Bypasses Biometric Locks on Jailbroken iPhones

GBHACKERS.COM — 19 Sep 2025

⚠️

Russian Airline Hit by Cyberattack, Website and Systems Disrupted

GBHACKERS.COM — 19 Sep 2025

⚠️

UK Police Arrest Two Scattered Spider Hackers Over London Transport Breach

GBHACKERS.COM — 19 Sep 2025

⚠️

Surveying the Global Spyware Market

SCHNEIER.COM — 2025-09-19

⚠️

Google patches sixth Chrome zero-day exploited in attacks this year

SH.ITJUST.WORKS — 19 Sep 2025

⚠️

AI-Driven Phishing Attacks: Deceptive Tactics to Bypass Security Systems

GBHACKERS.COM — 19 Sep 2025

⚠️

Vulnerability-Lookup 2.16.0

INFOSEC.PUB — 19 Sep 2025

⚠️

Fortra warns of max severity flaw in GoAnywhere MFT’s License Servlet

BLEEPINGCOMPUTER.COM — 19 Sep 2025

⚠️

CISA exposes malware kits deployed in Ivanti EPMM attacks

BLEEPINGCOMPUTER.COM — 19 Sep 2025

⚠️

FBI warns of cybercriminals using fake FBI crime reporting portals

BLEEPINGCOMPUTER.COM — 19 Sep 2025

⚠️

A Vulnerability in GoAnywhere Managed File Transfer (MFT) Could Allow for Command Injection

CISECURITY.ORG — 19 Sep 2025

⚠️

A Vulnerability in WatchGuard Fireware OS Could Allow for Arbitrary Code Execution

CISECURITY.ORG — 19 Sep 2025

⚠️

Critical Microsoft's Entra ID Vulnerability Allows Attackers to Gain Complete Administrative Control

SH.ITJUST.WORKS — 19 Sep 2025

📢

Weaponized ScreenConnect App Spreads AsyncRAT and PowerShell RAT

GBHACKERS.COM — 19 Sep 2025

📢

CISA Analyzes Malware From Ivanti EPMM Intrusions

SECURITYWEEK.COM — 19 Sep 2025

📢

Fortra security advisory (AV25-604)

CYBER.GC.CA — 2025-09-19

📢

[Control systems] ABB security advisory (AV25-605)

CYBER.GC.CA — 2025-09-19

🔥

New Loader “CountLoader” Uses PDFs to Launch Ransomware Attacks

GBHACKERS.COM — 19 Sep 2025

🔥

Cloudflare Confirms API Outage Caused by React useEffect Overload Issue

GBHACKERS.COM — 19 Sep 2025

🔥

Vastaamo psychotherapy hack: US citizen charged in latest twist of notorious data breach

BITDEFENDER.COM — 19 Sep 2025

🔥

Russland und China nehmen deutsche Wirtschaft ins Visier

CSOONLINE.COM — 19 Sep 2025

🔥

Russian Hacking Groups Gamaredon and Turla Target Organizations to Deliver Kazuar Backdoor

GBHACKERS.COM — 19 Sep 2025

🔥

Luxury Jeweler Tiffany Reports Data Breach Exposing User Personal Data

GBHACKERS.COM — 19 Sep 2025

🔥

Ransomware-Attacke auf BMW Group?

CSOONLINE.COM — 19 Sep 2025

🔥

Turla and Gamaredon Working Together in Fresh Ukrainian Intrusions

SECURITYWEEK.COM — 19 Sep 2025

🔥

Known. Emerging. Unstoppable? Ransomware Attacks Still Evade Defenses

BLEEPINGCOMPUTER.COM — 19 Sep 2025

🔥

In Other News: 600k Hit by Healthcare Breaches, Major ShinyHunters Hacks, DeepSeek’s Coding Bias

SECURITYWEEK.COM — 19 Sep 2025

🔥

ChatGPT tricked to swipe sensitive data from Gmail

SH.ITJUST.WORKS — 19 Sep 2025

🔥

BreachLock Named Sample Vendor for PTaaS and AEV in Two New 2025 Gartner® Reports

GBHACKERS.COM — 19 Sep 2025

🔥

CrowdStrike's AI Innovations in Cyber Defense - SWN #513

YOUTUBE.COM — 2025-09-19

🕵️

ISC Stormcast For Friday, September 19th, 2025 https://isc.sans.edu/podcastdetail/9620, (Fri, Sep 19th)

ISC.SANS.EDU — 19 Sep 2025

🕵️

Have I Been Pwned Demos Are Now Live!

TROYHUNT.COM — 19 Sep 2025

🕵️

Windows 11 Notepad to Receive AI Upgrade for Free Text Writing and Summarizing

GBHACKERS.COM — 19 Sep 2025

🕵️

Researchers Reveal Connection Between Belsen and ZeroSeven Cybercrime Groups

GBHACKERS.COM — 19 Sep 2025

🕵️

Russian Hackers Gamaredon and Turla Collaborate to Deploy Kazuar Backdoor in Ukraine

THEHACKERNEWS.COM — 19 Sep 2025

🕵️

Two Scattered Spider Suspects Arrested in UK; One Charged in US

SECURITYWEEK.COM — 19 Sep 2025

🕵️

Netskope Raises Over $908 Million in IPO

SECURITYWEEK.COM — 19 Sep 2025

🕵️

ChatGPT Tricked Into Solving CAPTCHAs

SECURITYWEEK.COM — 19 Sep 2025

🕵️

WatchGuard patches ‘critical’ VPN flaw in firewalls that could lead to compromise

SH.ITJUST.WORKS — 19 Sep 2025

🕵️

Why Your Security Strategy Needs a Human Upgrade

KNOWBE4.COM — 19 Sep 2025

🕵️

Top 10 Best API Security Testing Companies in 2025

GBHACKERS.COM — 19 Sep 2025

🕵️

Click Adventure: How a Banned Steam Game Drained Wallets and Dodged Steam Security

SH.ITJUST.WORKS — 19 Sep 2025

🕵️

UNC1549 Hacks 34 Devices in 11 Telecom Firms via LinkedIn Job Lures and MINIBIKE Malware

THEHACKERNEWS.COM — 19 Sep 2025

🕵️

Friday Squid Blogging: Giant Squid vs. Blue Whale

SCHNEIER.COM — 2025-09-19

🕵️

Gamaredon X Turla collab

WELIVESECURITY.COM — 19 Sep 2025

🌐

SystemBC Powers REM Proxy With 1,500 Daily VPS Victims Across 80 C2 Servers

THEHACKERNEWS.COM — 19 Sep 2025

🎙️

Cybersecurity Today - The Good News Edition

CYBERSECURITYTODAY.LIBSYN.COM — 19 Sep 2025

📡

How To Automate Alert Triage With AI Agents and Confluence SOPs Using Tines

THEHACKERNEWS.COM — 19 Sep 2025

📡

Steam will stop running on Windows 32-bit in January 2026

BLEEPINGCOMPUTER.COM — 19 Sep 2025

📡

17,500 Phishing Domains Target 316 Brands Across 74 Countries in Global PhaaS Surge

THEHACKERNEWS.COM — 19 Sep 2025

📡

Microsoft starts rolling out Gaming Copilot on Windows 11 PCs

BLEEPINGCOMPUTER.COM — 19 Sep 2025