matlock.ca // THREAT INTELLIGENCE

86Articles

7Categories

2025-11-06Date

🐛

RCE in React Native CLI opens Dev Servers to attacks

CSOONLINE.COM — 06 Nov 2025

🐛

HTTP/2 ‘MadeYouReset’ Vulnerability Enable Denial-of-Service (DoS) Attacks

GBHACKERS.COM — 06 Nov 2025

🐛

Critical Control Web Panel vulnerability is actively exploited (CVE-2025-48703) - Help Net Security

KEVSH.ITJUST.WORKS — 6 Nov 2025

🐛

Cisco Warns of New Firewall Attack Exploiting CVE-2025-20333 and CVE-2025-20362

THEHACKERNEWS.COM — 06 Nov 2025

🐛

Chromium: CVE-2025-12725 Out of bounds write in WebGPU

MSRC.MICROSOFT.COM — 06 Nov 2025

🐛

Chromium: CVE-2025-12727 Inappropriate implementation in V8

MSRC.MICROSOFT.COM — 06 Nov 2025

🐛

Chromium: CVE-2025-12726 Inappropriate implementation in Views.

MSRC.MICROSOFT.COM — 06 Nov 2025

⚠️

Google researchers detect first operational use of LLMs in active malware campaigns

CSOONLINE.COM — 06 Nov 2025

⚠️

Synthient Credential Stuffing Threat Data - 1,957,476,021 breached accounts

HAVEIBEENPWNED.COM — 06 Nov 2025

⚠️

Gootloader Returns with a New ZIP File Tactic to Conceal Malicious Payloads

GBHACKERS.COM — 06 Nov 2025

⚠️

Google Issues Emergency Chrome Update to Fix Critical RCE Flaw

GBHACKERS.COM — 06 Nov 2025

⚠️

Hyundai AutoEver Confirms Data Breach Exposing Personal Data, Including SSNs and License Info

GBHACKERS.COM — 06 Nov 2025

⚠️

What past ERP mishaps can teach CISOs about security platformization

CSOONLINE.COM — 06 Nov 2025

⚠️

Hackers Weaponize Windows Hyper-V to Hide Linux VM and Evade EDR Detection

THEHACKERNEWS.COM — 06 Nov 2025

⚠️

Digital health can’t scale if cybersecurity falls behind

CSOONLINE.COM — 06 Nov 2025

⚠️

Multiple Django Flaws Could Allow SQL Injection and Denial-of-Service Attacks

GBHACKERS.COM — 06 Nov 2025

⚠️

Sandworm hackers use data wipers to disrupt Ukraine's grain sector

BLEEPINGCOMPUTER.COM — 06 Nov 2025

⚠️

KI-Malware ist keine Theorie mehr

CSOONLINE.COM — 06 Nov 2025

⚠️

Rigged Poker Games

SCHNEIER.COM — 2025-11-06

⚠️

DeFi Protocol Balancer Starts Recovering Funds Stolen in $128 Million Heist

SECURITYWEEK.COM — 06 Nov 2025

⚠️

Cisco UCCX Vulnerabilities Allow Remote Attackers to Execute Arbitrary Code

GBHACKERS.COM — 06 Nov 2025

⚠️

Airstalk Malware Exploits AirWatch MDM for Covert C2 Communication

GBHACKERS.COM — 06 Nov 2025

⚠️

Threat Actors Exploit VS Code Extensions for Ransomware via GitHub C2

GBHACKERS.COM — 06 Nov 2025

⚠️

Cisco Confirms Active Exploitation of Secure ASA and FTD RCE Vulnerability

GBHACKERS.COM — 06 Nov 2025

⚠️

Iranian Hackers Exploit RMM Tools to Target Academics and Foreign-Policy Experts

GBHACKERS.COM — 06 Nov 2025

⚠️

Critical Cisco UCCX flaw lets attackers run commands as root

BLEEPINGCOMPUTER.COM — 06 Nov 2025

⚠️

Attackers exploit critical bypass flaw in WordPress JobMonster theme | SC Media

SH.ITJUST.WORKS — 6 Nov 2025

⚠️

The Great Firewall: Massive data leak reveals the inner workings of China's censorship regime

INFOSEC.PUB — 6 Nov 2025

⚠️

The Great Firewall: Massive data leak reveals the inner workings of China's censorship regime

SH.ITJUST.WORKS — 6 Nov 2025

⚠️

CISA Releases Four Industrial Control Systems Advisories

CISA.GOV — Thu, 06 Nov 25 1

⚠️

LastPass Phishing Campaign Informs Users of Phony Death Notifications

KNOWBE4.COM — 06 Nov 2025

⚠️

Nikkei’s Slack breach leaks sensitive data from more than 17,000 users

CSOONLINE.COM — 06 Nov 2025

⚠️

Multiple Vulnerabilities in Cisco Products Could Allow for Remote Code Execution

CISECURITY.ORG — 06 Nov 2025

📢

2026 – nichts für schwache CI(S)O-Nerven

CSOONLINE.COM — 06 Nov 2025

📢

Verdacht des systematischen Missbrauchs von Zahlungsdienstleistern

CSOONLINE.COM — 06 Nov 2025

📢

From Tabletop to Turnkey: Building Cyber Resilience in Financial Services

THEHACKERNEWS.COM — 06 Nov 2025

🔥

HackedGPT: New Vulnerabilities in GPT Models Allow Attackers to Launch 0-Click Attacks

GBHACKERS.COM — 06 Nov 2025

🔥

SonicWall Confirms State-Sponsored Hackers Behind September Cloud Backup Breach

THEHACKERNEWS.COM — 06 Nov 2025

🔥

EndClient RAT Leverages Compromised Code-Signing to Slip Past Antivirus

GBHACKERS.COM — 06 Nov 2025

🔥

Automotive IT Firm Hyundai AutoEver Discloses Data Breach

SECURITYWEEK.COM — 06 Nov 2025

🔥

Nevada Ransomware Attack Started Months Before It Was Discovered, Per Report

SECURITYWEEK.COM — 06 Nov 2025

🔥

Smashing Security podcast #442: The hack that messed with time, and rogue ransom where negotiators

GRAHAMCLULEY.COM — 06 Nov 2025

🔥

HackedGPT - 7 New Vulnerabilities in GPT-4o and GPT-5 Enables 0-Click Attacks

SH.ITJUST.WORKS — 6 Nov 2025

🔥

Curly COMrades Hacker Group Using New Tools to Create Hidden Remote Access on Compromised Windows 10

SH.ITJUST.WORKS — 6 Nov 2025

🔥

5 ways to strengthen your firewall and endpoint’s defenses against ransomware – Sophos News

SH.ITJUST.WORKS — 6 Nov 2025

🔥

Iran's 'SmudgedSerpent APT Phishes US Policy Wonks

SH.ITJUST.WORKS — 6 Nov 2025

🔥

Critical Bug in Midnight Ransomware Tool Unlocks File Recovery

GBHACKERS.COM — 06 Nov 2025

🔥

SonicWall says state-sponsored hackers behind September security breach

SH.ITJUST.WORKS — 6 Nov 2025

🔥

Credentials and Misconfigurations Behind Most Cloud Breaches, Says AWS – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More

SH.ITJUST.WORKS — 6 Nov 2025

🔥

Nikkei-Daten über Slack-Konto eines Mitarbeiters geleakt

CSOONLINE.COM — 06 Nov 2025

🔥

Hyundai AutoEver America data breach exposes SSNs, drivers licenses

SH.ITJUST.WORKS — 6 Nov 2025

🔥

The rising tide of cyber attacks against the UK water sector

FORTRA.COM — 06 Nov 2025

🔥

How a ransomware gang encrypted Nevada government's systems

BLEEPINGCOMPUTER.COM — 06 Nov 2025

🔥

AI-Slop ransomware test sneaks on to VS Code marketplace

BLEEPINGCOMPUTER.COM — 06 Nov 2025

🔥

U.S. Congressional Budget Office hit by suspected foreign cyberattack

BLEEPINGCOMPUTER.COM — 06 Nov 2025

🕵️

ISC Stormcast For Thursday, November 6th, 2025 https://isc.sans.edu/podcastdetail/9688, (Thu, Nov 6th)

ISC.SANS.EDU — 06 Nov 2025

🕵️

Binary Breadcrumbs: Correlating Malware Samples with Honeypot Logs Using PowerShell [Guest Diary], (Wed, Nov 5th)

ISC.SANS.EDU — 06 Nov 2025

🕵️

Google Warns of PROMPTFLUX Malware That Uses Gemini API for Self-Rewriting Attacks

GBHACKERS.COM — 06 Nov 2025

🕵️

Authorities Dismantle Large-Scale Credit Card Fraud Scheme Affecting 4.3 Million Users

GBHACKERS.COM — 06 Nov 2025

🕵️

ValleyRAT Campaign Targets Windows via WeChat and DingTalk

GBHACKERS.COM — 06 Nov 2025

🕵️

State-Sponsored Hackers Stole SonicWall Cloud Backups in Recent Attack

SECURITYWEEK.COM — 06 Nov 2025

🕵️

Cisco Patches Critical Vulnerabilities in Contact Center Appliance

SECURITYWEEK.COM — 06 Nov 2025

🕵️

Police busts credit card fraud rings with 4.3 million victims

SH.ITJUST.WORKS — 6 Nov 2025

🕵️

Checkpoint Analysis: Dissecting the $128M Balancer Pool Drain in Under 30 Minutes

GBHACKERS.COM — 06 Nov 2025

🕵️

Follow Pragmatic Interventions to Keep Agentic AI in Check

SECURITYWEEK.COM — 06 Nov 2025

🕵️

Google uncovers malware using LLMs to operate and evade detection - Help Net Security

SH.ITJUST.WORKS — 6 Nov 2025

🕵️

Truffle Security Raises $25 Million for Secret Scanning Engine

SECURITYWEEK.COM — 06 Nov 2025

🕵️

AI Browsers That Beat Paywalls by Imitating Humans

GBHACKERS.COM — 06 Nov 2025

🕵️

Perfectshift leak exposes healthcare credentials | Cybernews

SH.ITJUST.WORKS — 6 Nov 2025

🕵️

Researchers Hack ChatGPT Memories and Web Search Features

SECURITYWEEK.COM — 06 Nov 2025

🕵️

Gootloader malware is back with new tricks after 7-month break

SH.ITJUST.WORKS — 6 Nov 2025

🕵️

New IDC research highlights a major cloud security shift

MICROSOFT.COM — 06 Nov 2025

🕵️

I'm Hosting a New Podcast

TAOSECURITY.BLOGSPOT.COM — 2025-11-06

🕵️

Microsoft Help Desk Phishing Attempt

KNOWBE4.COM — 06 Nov 2025

🕵️

Turning To The Darkside & AI Cyberslop - PSW #899

YOUTUBE.COM — 2025-11-06

🕵️

A CIO’s First Principles Reference Guide for Securing AI by Design

PALOALTONETWORKS.COM — 06 Nov 2025

🕵️

ESET APT Activity Report Q2 2025–Q3 2025

WELIVESECURITY.COM — 06 Nov 2025

🌐

Cloudflare Scrubs Aisuru Botnet from Top Domains List

KREBSONSECURITY.COM — 06 Nov 2025

🌐

ThreatsDay Bulletin: AI Tools in Malware, Botnets, GDI Flaws, Election Attacks & More

THEHACKERNEWS.COM — 06 Nov 2025

🌐

ClickFix malware attacks evolve with multi-OS support, video tutorials

BLEEPINGCOMPUTER.COM — 06 Nov 2025

🌐

Trojanized ESET Installers Drop Kalambur Backdoor in Phishing Attacks on Ukraine

THEHACKERNEWS.COM — 06 Nov 2025

🌐

Italian political consultant says he was targeted with Paragon spyware

TECHCRUNCH.COM — 06 Nov 2025

📡

Bitdefender Named a Representative Vendor in the 2025 Gartner® Market Guide for Managed Detection and Response

THEHACKERNEWS.COM — 06 Nov 2025

📡

Continuous Purple Teaming: Turning Red-Blue Rivalry into Real Defense

BLEEPINGCOMPUTER.COM — 06 Nov 2025

📡

How enterprise efficiency grows with Kaspersky SD-WAN

KASPERSKY.COM — 06 Nov 2025

📡

“Pay up or we share the tapes”: Hackers target massage parlour clients in blackmail scheme

BITDEFENDER.COM — 06 Nov 2025