MATLOCK.CA
84Articles
9Categories
2025-11-04Date
🚨
CISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2025-11371 Gladinet CentreStack and Triofox Files or Directories Accessible to External Parties Vulnerability CVE-2025-48703 CWP Control Web…
KEVCISA.GOV — Tue, 04 Nov 25 1
🐛
Google’s AI ‘Big Sleep’ Finds 5 New Vulnerabilities in Apple’s Safari WebKit
THEHACKERNEWS.COM — 04 Nov 2025
🐛
Android Hit by 0-Click RCE Vulnerability in Core System Component
GBHACKERS.COM — 04 Nov 2025
🐛
Critical WordPress Post SMTP Plugin Vulnerability Puts 400,000 Sites at Risk of Account Takeover
GBHACKERS.COM — 04 Nov 2025
🐛
Critical Flaw in Popular React Native NPM Package Exposes Developers to Attacks
SECURITYWEEK.COM — 04 Nov 2025
⚠️
MY TAKE: From AOL-Time Warner to OpenAI-Amazon — is the next tech bubble already inflating?
LASTWATCHDOG.COM — 04 Nov 2025
⚠️
Cybercriminals Exploit RMM Tools to Target Trucking Firms and Hijack Freight
GBHACKERS.COM — 04 Nov 2025
⚠️
Hackers Can Manipulate Claude AI APIs with Indirect Prompts to Steal User Data
GBHACKERS.COM — 04 Nov 2025
⚠️
SesameOp: Using the OpenAI Assistants API for Covert C2 Communication
GBHACKERS.COM — 04 Nov 2025
⚠️
Microsoft Detects "SesameOp" Backdoor Using OpenAI's API as a Stealth Command Channel
THEHACKERNEWS.COM — 04 Nov 2025
⚠️
Gen AI success requires an AI champions network
CSOONLINE.COM — 04 Nov 2025
⚠️
Modern supply-chain attacks and their real-world impact
CSOONLINE.COM — 04 Nov 2025
⚠️
165: Tanya
DARKNETDIARIES.COM — 04 Nov 2025
⚠️
Ransomware-Bande missbraucht Microsoft-Zertifikate
CSOONLINE.COM — 04 Nov 2025
⚠️
Balancer DeFi Platform Hit by Major Exploit Resulting in $100M+ in Losses
GBHACKERS.COM — 04 Nov 2025
⚠️
‘SleepyDuck’ Malware in Open VSX Lets Attackers Remotely Control Windows PCs
GBHACKERS.COM — 04 Nov 2025
⚠️
Hackers exploit critical auth bypass flaw in JobMonster WordPress theme
BLEEPINGCOMPUTER.COM — 04 Nov 2025
⚠️
Android Update Patches Critical Remote Code Execution Flaw
SECURITYWEEK.COM — 04 Nov 2025
⚠️
RondoDox Botnet Swells Its Arsenal — 650% Jump in Enterprise-Focused Exploits
GBHACKERS.COM — 04 Nov 2025
⚠️
Researching and Remediating RCEs via GitHub Actions - Bar Kaduri, Roi Nisimi - ASW #355
YOUTUBE.COM — 2025-11-04
⚠️
New backdoor ‘SesameOp’ abuses OpenAI Assistants API for stealthy C2 operations
CSOONLINE.COM — 04 Nov 2025
⚠️
Ransomware Defense Using the Wazuh Open Source Platform
THEHACKERNEWS.COM — 04 Nov 2025
⚠️
Apple Patches Everything, Again, (Tue, Nov 4th)
ISC.SANS.EDU — 04 Nov 2025
⚠️
Cybersecurity experts charged with running BlackCat ransomware operation
KEVCSOONLINE.COM — 04 Nov 2025
⚠️
New GDI Flaws Could Enable Remote Code Execution in Windows - Infosecurity Magazine
SH.ITJUST.WORKS — 4 Nov 2025
⚠️
Microsoft Teams Bugs Let Attackers Impersonate Colleagues and Edit Messages Unnoticed
THEHACKERNEWS.COM — 04 Nov 2025
⚠️
Police arrests suspects linked to €600 million crypto fraud ring
BLEEPINGCOMPUTER.COM — 04 Nov 2025
⚠️
The Top 3 Browser Sandbox Threats That Slip Past Modern Security Tools
BLEEPINGCOMPUTER.COM — 04 Nov 2025
⚠️
Critical React Native CLI Flaw Exposed Millions of Developers to Remote Attacks
THEHACKERNEWS.COM — 04 Nov 2025
⚠️
Europol and Eurojust Dismantle €600 Million Crypto Fraud Network in Global Sweep
THEHACKERNEWS.COM — 04 Nov 2025
⚠️
CISA Releases Five Industrial Control Systems Advisories
CISA.GOV — Tue, 04 Nov 25 1
⚠️
DragonForce Cartel Emerges as Conti-Derived Ransomware Threat
SH.ITJUST.WORKS — 4 Nov 2025
⚠️
A Cybercrime Merger Like No Other — Scattered Spider, LAPSUS$, and ShinyHunters Join Forces
THEHACKERNEWS.COM — 04 Nov 2025
⚠️
Hackers exploit WordPress plugin Post SMTP to hijack admin accounts
BLEEPINGCOMPUTER.COM — 04 Nov 2025
⚠️
A Vulnerability in CWP (aka Control Web Panel or CentOS Web Panel) Could Allow for Remote Code Execution
CISECURITY.ORG — 04 Nov 2025
⚠️
How social engineering works | Unlocked 403 cybersecurity podcast (S2E6)
WELIVESECURITY.COM — 04 Nov 2025
📋
Apple Releases Security Update Addressing Critical Flaws in iOS 26.1 and iPadOS 26.1
GBHACKERS.COM — 04 Nov 2025
📋
Microsoft’s WSUS Patch Causes Hotpatching Failures on Windows Server 2025
GBHACKERS.COM — 04 Nov 2025
📋
Louvre delayed Windows security updates ahead of burglary
CSOONLINE.COM — 04 Nov 2025
📢
Apple security advisory (AV25-722)
CYBER.GC.CA — 2025-11-04
📢
Android security advisory – November 2025 monthly rollup (AV25-723)
CYBER.GC.CA — 2025-11-04
📢
Bob Flores, Former CTO of the CIA, Joins Brinker
GBHACKERS.COM — 04 Nov 2025
📢
VMware security advisory (AV25-724)
CYBER.GC.CA — 2025-11-04
📢
Tenable security advisory (AV25-725)
CYBER.GC.CA — 2025-11-04
🔥
Malicious PuTTY Ads Deliver OysterLoader, Allowing Attackers Full Device and Network Access
GBHACKERS.COM — 04 Nov 2025
🔥
U.S. Prosecutors Indict Cybersecurity Insiders Accused of BlackCat Ransomware Attacks
KEVTHEHACKERNEWS.COM — 04 Nov 2025
🔥
Microsoft Plans to Remove Entra Accounts from Authenticator on Jailbroken Devices
GBHACKERS.COM — 04 Nov 2025
🔥
Operation SkyCloak Deploys Tor-Enabled OpenSSH Backdoor Targeting Defense Sectors
THEHACKERNEWS.COM — 04 Nov 2025
🔥
Hackers hit Polish loan site​ | Cybernews
SH.ITJUST.WORKS — 4 Nov 2025
🔥
New Dante Spyware Linked to Rebranded Hacking Team, Now Memento Labs – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
SH.ITJUST.WORKS — 4 Nov 2025
🔥
2025 Insider Risk Report Finds Most Organizations Struggle to Detect and Predict Insider Risks
GBHACKERS.COM — 04 Nov 2025
🔥
Transportation Companies Hacked to Steal Cargo
SECURITYWEEK.COM — 04 Nov 2025
🔥
Media giant Nikkei reports data breach impacting 17,000 people
BLEEPINGCOMPUTER.COM — 04 Nov 2025
🔥
Data breach at major Swedish software supplier impacts 1.5 million
BLEEPINGCOMPUTER.COM — 04 Nov 2025
🔥
​​Learn what generative AI can do for your security operations center
MICROSOFT.COM — 04 Nov 2025
🔥
Former ransomware negotiators allegedly targeted US firms with ALPHV/BlackCat ransomware - Help Net Security
SH.ITJUST.WORKS — 4 Nov 2025
🔥
Apache OpenOffice disputes data breach claims by ransomware gang
BLEEPINGCOMPUTER.COM — 04 Nov 2025
🕵️
ISC Stormcast For Tuesday, November 4th, 2025 https://isc.sans.edu/podcastdetail/9684, (Tue, Nov 4th)
ISC.SANS.EDU — 04 Nov 2025
🕵️
Zscaler Acquires AI Security Company SPLX
SECURITYWEEK.COM — 04 Nov 2025
🕵️
Anatomy of Tycoon 2FA Phishing: Tactics Targeting M365 and Gmail
GBHACKERS.COM — 04 Nov 2025
🕵️
Apple Patches 19 WebKit Vulnerabilities
SECURITYWEEK.COM — 04 Nov 2025
🕵️
Cybercriminals Targeting Payroll Sites
SCHNEIER.COM — 2025-11-04
🕵️
Microsoft: SesameOp malware abuses OpenAI Assistants API in attacks
SH.ITJUST.WORKS — 4 Nov 2025
🕵️
Android Malware Mutes Alerts, Drains Crypto Wallets
SH.ITJUST.WORKS — 4 Nov 2025
🕵️
Zscaler Acquires SPLX to Strengthen AI-Powered Zero Trust Security
GBHACKERS.COM — 04 Nov 2025
🕵️
XLoader Malware Analyzed Using ChatGPT’s AI, Breaks RC4 Encryption Layers in Hours
GBHACKERS.COM — 04 Nov 2025
🕵️
Bugcrowd Acquires Application Security Firm Mayhem
SECURITYWEEK.COM — 04 Nov 2025
🕵️
Hacker steals over $120 million from Balancer DeFi crypto protocol
SH.ITJUST.WORKS — 4 Nov 2025
🕵️
Data Theft Hits Behavioral Health Network in 3 States
SH.ITJUST.WORKS — 4 Nov 2025
🕵️
SesameOp Malware Abuses OpenAI API
SECURITYWEEK.COM — 04 Nov 2025
🕵️
Hacker Conversations: Kunal Agarwal and the DNA of a Hacker
SECURITYWEEK.COM — 04 Nov 2025
🕵️
Russian hackers abuse Hyper-V to hide malware in Linux VMs
BLEEPINGCOMPUTER.COM — 04 Nov 2025
🕵️
Hackers Deliver SSH-Tor Backdoor Via Weaponized Military Documents in ZIP Files
SH.ITJUST.WORKS — 4 Nov 2025
🕵️
CyberheistNews Vol 15 #44 [Mystery] Tough One: Is It or Is It Not an HP Scam?
KNOWBE4.COM — 04 Nov 2025
🕵️
Prisma SASE as Your New Blueprint for Modern Branch Security
PALOALTONETWORKS.COM — 04 Nov 2025
🕵️
How to check if Tor Onion Service is alive?
SH.ITJUST.WORKS — 4 Nov 2025
🕵️
How to check if Tor Onion Service is alive?
INFOSEC.PUB — 4 Nov 2025
🕵️
How to check if Tor Onion Service is alive?
PROGRAMMING.DEV — 4 Nov 2025
🕵️
News alert: Insider risk report finds behavioral blind spots leave most orgs exposed, confidence low
LASTWATCHDOG.COM — 04 Nov 2025
🎙️
The AI Fix #75: Claude’s existential battery crisis, and why ChatGPT is a terrible therapist
GRAHAMCLULEY.COM — 04 Nov 2025
📡
Windows 10 update bug triggers incorrect end-of-support alerts
BLEEPINGCOMPUTER.COM — 04 Nov 2025
📡
Phone location data of top EU officials for sale, report finds
TECHCRUNCH.COM — 04 Nov 2025
📡
Microsoft removing Defender Application Guard from Office
BLEEPINGCOMPUTER.COM — 04 Nov 2025
📡
Malicious Android apps on Google Play downloaded 42 million times
BLEEPINGCOMPUTER.COM — 04 Nov 2025