MATLOCK.CA
98Articles
9Categories
2025-10-28Date
🚨
CISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2025-6204 Dassault Systèmes DELMIA Apriso Code Injection Vulnerability CVE-2025-6205 Dassault Systèmes DELMIA Apriso Missing Authorization V…
KEVCISA.GOV — Tue, 28 Oct 25 1
🐛
Gamaredon Phishing Campaign Exploits WinRAR Vulnerability to Target Government Agencies
GBHACKERS.COM — 28 Oct 2025
🐛
Critical QNAP .NET Flaw Lets Attackers Bypass Security Protections
GBHACKERS.COM — 28 Oct 2025
🐛
Chrome Zero-Day Exploited to Deliver Italian Memento Labs' LeetAgent Spyware
THEHACKERNEWS.COM — 28 Oct 2025
⚠️
OpenAI Atlas Browser Vulnerability Lets Attackers Execute Malicious Scripts in ChatGPT
GBHACKERS.COM — 28 Oct 2025
⚠️
Apache Tomcat Flaws Allow Remote Code Execution on Vulnerable Servers
GBHACKERS.COM — 28 Oct 2025
⚠️
Beware of Free Video Game Cheats that Deliver Infostealer Malwares
GBHACKERS.COM — 28 Oct 2025
⚠️
CISA Alerts on Critical Veeder-Root Flaws Allowing Attackers to Execute System Commands
GBHACKERS.COM — 28 Oct 2025
⚠️
Do CISOs need to rethink service provider risk?
CSOONLINE.COM — 28 Oct 2025
⚠️
70% of CISOs say internal conflicts more damaging than cyberattacks
CSOONLINE.COM — 28 Oct 2025
⚠️
Sweden’s Power Grid Operator Admits Data Breach Linked to Everest Ransomware Gang
GBHACKERS.COM — 28 Oct 2025
⚠️
New GhostGrab Android Malware Silently Steals Banking Login Details and Intercept SMS for OTPs
GBHACKERS.COM — 28 Oct 2025
⚠️
Quantum Computing Isn’t A Threat To Blockchains - Yet - Sandy Carielli, Martha Bennett - ASW #354
YOUTUBE.COM — 2025-10-28
⚠️
Step aside, SOC. It’s time to ROC
CSOONLINE.COM — 28 Oct 2025
⚠️
Zero-Click Exploit Targets MCP and Linked AI Agents to Stealthily Steal Data
GBHACKERS.COM — 28 Oct 2025
⚠️
Social Engineering People’s Credit Card Details
SCHNEIER.COM — 2025-10-28
⚠️
Cybercriminals Trade 183 Million Stolen Credentials on Telegram, Dark Forums
SECURITYWEEK.COM — 28 Oct 2025
⚠️
Volvo’s recent security breach: 5 tips to speed incident response while preserving forensic integrity
CSOONLINE.COM — 28 Oct 2025
⚠️
Atlas browser exploit lets attackers hijack ChatGPT memory
CSOONLINE.COM — 28 Oct 2025
⚠️
Anivia Stealer Peddled on Dark Web with UAC Bypass
GBHACKERS.COM — 28 Oct 2025
⚠️
Copilot diagrams could leak corporate emails via indirect prompt injection
CSOONLINE.COM — 28 Oct 2025
⚠️
IPFire 2.29 Released with Enhanced Intrusion Prevention System Reporting
GBHACKERS.COM — 28 Oct 2025
⚠️
Chrome Zero-Day Exploitation Linked to Hacking Team Spyware - SecurityWeek
SH.ITJUST.WORKS — 28 Oct 2025
⚠️
New Atroposia malware comes with a local vulnerability scanner
BLEEPINGCOMPUTER.COM — 28 Oct 2025
⚠️
Qilin Ransomware Combines Linux Payload With BYOVD Exploit in Hybrid Attack
SH.ITJUST.WORKS — 28 Oct 2025
⚠️
The Agentic AI Platform for the Agentic Workforce of the Future
PALOALTONETWORKS.COM — 28 Oct 2025
⚠️
How evolving regulations are redefining CISO responsibility
CSOONLINE.COM — 28 Oct 2025
⚠️
Apache Tomcat Security Vulnerabilities Expose Servers to Remote Code Execution Attacks
SH.ITJUST.WORKS — 28 Oct 2025
⚠️
QNAP NetBak PC Agent Affected by Recent ASP.NET Core Vulnerability
SECURITYWEEK.COM — 28 Oct 2025
⚠️
Making A Virtual Machine Look Like Real Hardware To Malware
INFOSEC.PUB — 28 Oct 2025
⚠️
CISA Releases Three Industrial Control Systems Advisories
CISA.GOV — Tue, 28 Oct 25 1
⚠️
New Android Trojan 'Herodotus' Outsmarts Anti-Fraud Systems by Typing Like a Human
THEHACKERNEWS.COM — 28 Oct 2025
⚠️
CISA warns of two more actively exploited Dassault vulnerabilities
KEVBLEEPINGCOMPUTER.COM — 28 Oct 2025
⚠️
I'm a cyber major, but what should I minor in?
SH.ITJUST.WORKS — 28 Oct 2025
⚠️
HTTPS by default
SECURITY.GOOGLEBLOG.COM — 2025-10-28
⚠️
Advertising giant Dentsu reports data breach at subsidiary Merkle
BLEEPINGCOMPUTER.COM — 28 Oct 2025
📢
Unterstützung für Dobrindts Pläne zu aktiver Cyberabwehr
CSOONLINE.COM — 28 Oct 2025
📢
Active Directory at Risk Due to Domain-Join Account Misconfigurations
GBHACKERS.COM — 28 Oct 2025
📢
Apache Tomcat security advisory (AV25-702)
CYBER.GC.CA — 2025-10-28
📢
Veeam security advisory (AV25-703)
CYBER.GC.CA — 2025-10-28
📢
CyDeploy wants to create a replica of a company’s system to help it test updates before pushing them out — catch it at Disrupt 2025
TECHCRUNCH.COM — 28 Oct 2025
📢
Mozilla security advisory (AV25-704)
CYBER.GC.CA — 2025-10-28
📢
Windows 11 KB5067036 update rolls out Administrator Protection feature
BLEEPINGCOMPUTER.COM — 28 Oct 2025
🔥
Cybersicherheit ist größte Herausforderung für die Finanzbranche
CSOONLINE.COM — 28 Oct 2025
🔥
Industrial Giants Schneider Electric and Emerson Named as Victims of Oracle Hack
SECURITYWEEK.COM — 28 Oct 2025
🔥
Multi-Protocol Cascading Round-Robin Cipher
INFOSEC.PUB — 28 Oct 2025
🔥
Iran’s MOIS-linked Ravin Academy hit by data breach • The Register
SH.ITJUST.WORKS — 28 Oct 2025
🔥
Why Early Threat Detection Is a Must for Long-Term Business Growth
THEHACKERNEWS.COM — 28 Oct 2025
🔥
Multi-Protocol Cascading Round-Robin Cipher
SH.ITJUST.WORKS — 28 Oct 2025
🔥
Google disputes false claims of massive Gmail data breach
SH.ITJUST.WORKS — 28 Oct 2025
🔥
HSBC USA data breach exposes client transactions, hackers claim | Cybernews
SH.ITJUST.WORKS — 28 Oct 2025
🔥
Ransomware profits drop as victims stop paying hackers
SH.ITJUST.WORKS — 28 Oct 2025
🔥
Qilin ransomware abuses WSL to run Linux encryptors in Windows
BLEEPINGCOMPUTER.COM — 28 Oct 2025
🕵️
ISC Stormcast For Tuesday, October 28th, 2025 https://isc.sans.edu/podcastdetail/9674, (Tue, Oct 28th)
ISC.SANS.EDU — 28 Oct 2025
🕵️
SideWinder Adopts New ClickOnce-Based Attack Chain Targeting South Asian Diplomats
THEHACKERNEWS.COM — 28 Oct 2025
🕵️
Water Saci Hackers Use WhatsApp to Deploy Persistent SORVEPOTEL Malware
GBHACKERS.COM — 28 Oct 2025
🕵️
BlueNoroff Shifts Tactics: Targets C-Suite and Managers with New Infiltration Methods
GBHACKERS.COM — 28 Oct 2025
🕵️
Hackers Target Swedish Power Grid Operator
SECURITYWEEK.COM — 28 Oct 2025
🕵️
FileFix + Cache Smuggling: A New Evasion Combo
GBHACKERS.COM — 28 Oct 2025
🕵️
MuddyWater’s Phoenix Backdoor Infects More Than 100 Government Organizations
GBHACKERS.COM — 28 Oct 2025
🕵️
Europol Warns of Rising Threat From Caller ID Spoofing Attacks - Infosecurity Magazine
SH.ITJUST.WORKS — 28 Oct 2025
🕵️
OpenAI Atlas Browser tripped up by malformed URLs • The Register
SH.ITJUST.WORKS — 28 Oct 2025
🕵️
Sublime Security Raises $150 Million for Email Security Platform
SECURITYWEEK.COM — 28 Oct 2025
🕵️
New Phishing Attack Using Invisible Characters Hidden in Subject Line Using MIME Encoding
GBHACKERS.COM — 28 Oct 2025
🕵️
CyberheistNews Vol 15 #43 [Heads Up] Block Attackers Who Abuse Grok to Spread Phishing Links
KNOWBE4.COM — 28 Oct 2025
🕵️
Herodotus: New Android Malware Mimics Human Behavior to Bypass Biometric Security
GBHACKERS.COM — 28 Oct 2025
🕵️
Brida Introduces New Release Offering Complete Support for Latest Frida Integration
GBHACKERS.COM — 28 Oct 2025
🕵️
BSidesPDX 2025
INFOSEC.PUB — 28 Oct 2025
🕵️
SAINTCON 25
INFOSEC.PUB — 28 Oct 2025
🕵️
TurboMirai-Class ‘Aisuru’ Botnet Blamed for 20+ Tbps DDoS Attacks
SECURITYWEEK.COM — 28 Oct 2025
🕵️
AI-Driven, Quantum-Ready Network Security
PALOALTONETWORKS.COM — 28 Oct 2025
🕵️
Prisma AIRS 2.0 Is Powering the Next Wave of Secure AI Innovation
PALOALTONETWORKS.COM — 28 Oct 2025
🕵️
CyberRiskTV Live Coverage from InfoSec World 2025 - Day 2
YOUTUBE.COM — 2025-10-28
🕵️
'Herodotus' Android Trojan Mimics Human Sluggishness
SH.ITJUST.WORKS — 28 Oct 2025
🕵️
SimSpace Raises $39 Million for Cyber Range Platform
SECURITYWEEK.COM — 28 Oct 2025
🕵️
Meet Atroposia: The Stealthy Feature-Packed RAT
SH.ITJUST.WORKS — 28 Oct 2025
🕵️
GhostCall and GhostHire — two campaigns by BlueNoroff
KASPERSKY.COM — 28 Oct 2025
🕵️
Researchers Expose GhostCall and GhostHire: BlueNoroff's New Malware Chains
THEHACKERNEWS.COM — 28 Oct 2025
🕵️
Stragglers From Myanmar Scam Center Raided by Army Cross Into Thailand as Buildings are Blown Up
SECURITYWEEK.COM — 28 Oct 2025
🕵️
Secure the AI Factory with Palo Alto Networks & NVIDIA
PALOALTONETWORKS.COM — 28 Oct 2025
🕵️
TEE.fail: Breaking Trusted Execution Environments via DDR5 Memory Bus Interposition
SH.ITJUST.WORKS — 28 Oct 2025
🕵️
Is It Or Is It Not an HP Scam?
KNOWBE4.COM — 28 Oct 2025
🕵️
Lockpick chaos, CoPhish, Atlas, Turing, ForumTroll, PKD, Kilgore Trout, Aaran Leyland - SWN #524
YOUTUBE.COM — 2025-10-28
🕵️
MY TAKE: Have you noticed how your phone’s AI assistant is starting to remap what you trust?
LASTWATCHDOG.COM — 28 Oct 2025
🕵️
Recruitment red flags: Can you spot a spy posing as a job seeker?
WELIVESECURITY.COM — 28 Oct 2025
🌐
New Herodotus Android malware fakes human typing to avoid detection
BLEEPINGCOMPUTER.COM — 28 Oct 2025
🎙️
The AI Fix #74: AGI, LLM brain rot, and how to scam an AI browser
GRAHAMCLULEY.COM — 28 Oct 2025
📡
A phishing with invisible characters in the subject line, (Tue, Oct 28th)
ISC.SANS.EDU — 28 Oct 2025
📡
Is Your Google Workspace as Secure as You Think it is?
THEHACKERNEWS.COM — 28 Oct 2025
📡
BiDi Swap: The bidirectional text trick that makes fake URLs look real
BLEEPINGCOMPUTER.COM — 28 Oct 2025
📡
TEE.Fail attack breaks confidential computing on Intel, AMD, NVIDIA CPUs
BLEEPINGCOMPUTER.COM — 28 Oct 2025
📡
Google Chrome to warn users before opening insecure HTTP sites
BLEEPINGCOMPUTER.COM — 28 Oct 2025
📡
Microsoft: Copilot now lets you build apps, automate workflows
BLEEPINGCOMPUTER.COM — 28 Oct 2025
📡
Microsoft sued for allegedly tricking millions into Copilot M365 subscriptions
BLEEPINGCOMPUTER.COM — 28 Oct 2025
📡
Protecting specified information in non-Government of Canada systems and organizations (ITSP.10.171)
CYBER.GC.CA — 2025-10-28
📡
Python rejects $1.5M grant from U.S. govt. fearing ethical compromise
BLEEPINGCOMPUTER.COM — 28 Oct 2025
📡
AI Security: NVIDIA BlueField Now with Vision One™
TRENDMICRO.COM — 28 Oct 2025
📡
Keeping the Internet fast and secure: introducing Merkle Tree Certificates
CLOUDFLARE.COM — 28 Oct 2025