MATLOCK.CA
79Articles
8Categories
2025-11-10Date
🚨
CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2025-21042 Samsung Mobile Devices Out-of-Bounds Write Vulnerability   This type of vulnerability is a frequent attack vector f…
KEVCISA.GOV — Mon, 10 Nov 25 1
🐛
Monsta FTP Remote Code Execution Flaw Being Exploited in the Wild
KEVGBHACKERS.COM — 10 Nov 2025
🐛
Hackers Abuse runc Tool to Escape Containers and Compromise Hosts
GBHACKERS.COM — 10 Nov 2025
🐛
Elastic Defend for Windows Vulnerability Allows Threat Actors to Gain Elevated Access
GBHACKERS.COM — 10 Nov 2025
🐛
LangGraph Deserialization Flaw Enables Execution of Malicious Python Code
GBHACKERS.COM — 10 Nov 2025
🐛
Runtime bugs break container walls, enabling root on Docker hosts
CSOONLINE.COM — 10 Nov 2025
🐛
Popular npm Library Used in AI and NLP Projects Exposes Systems to RCE
GBHACKERS.COM — 10 Nov 2025
🐛
Just a moment...
SH.ITJUST.WORKS — 10 Nov 2025
🐛
Runc Vulnerabilities Can Be Exploited to Escape Containers
SECURITYWEEK.COM — 10 Nov 2025
🐛
Chromium: CVE-2025-12729 Inappropriate implementation in Omnibox
MSRC.MICROSOFT.COM — 10 Nov 2025
🐛
Chromium: CVE-2025-12728 Inappropriate implementation in Omnibox
MSRC.MICROSOFT.COM — 10 Nov 2025
⚠️
US Congressional Budget Office Breach, AI in Cyber Attacks & Veterans Defend Canada
CYBERSECURITYTODAY.LIBSYN.COM — 10 Nov 2025
⚠️
New Whisper-Based Attack Reveals User Prompts Hidden Inside Encrypted AI Traffic
GBHACKERS.COM — 10 Nov 2025
⚠️
Ex-Intel Employee Hid 18,000 Sensitive Documents Prior to Leaving the Company
GBHACKERS.COM — 10 Nov 2025
⚠️
CISOs must prove the business value of cyber — the right metrics can help
CSOONLINE.COM — 10 Nov 2025
⚠️
Why you should purple team your SOC
CSOONLINE.COM — 10 Nov 2025
⚠️
Hackers Exploit Websites to Inject Malicious Links for SEO Manipulation
GBHACKERS.COM — 10 Nov 2025
⚠️
GlassWorm Malware Discovered in Three VS Code Extensions with Thousands of Installs
THEHACKERNEWS.COM — 10 Nov 2025
⚠️
Researchers trick ChatGPT into prompt injecting itself
CSOONLINE.COM — 10 Nov 2025
⚠️
Ransomware Operators Exploit RMM Tools to Deploy Medusa and DragonForce
GBHACKERS.COM — 10 Nov 2025
⚠️
QNAP Patches Vulnerabilities Exploited at Pwn2Own Ireland
SECURITYWEEK.COM — 10 Nov 2025
⚠️
Whisper Leak uses a side channel attack to eavesdrop on encrypted AI conversations
CSOONLINE.COM — 10 Nov 2025
⚠️
LANDFALL: New Commercial-Grade Android Spyware in Exploit Chain Targeting Samsung Devices
SH.ITJUST.WORKS — 10 Nov 2025
⚠️
⚡ Weekly Recap: Hyper-V Malware, Malicious AI Bots, RDP Exploits, WhatsApp Lockdown and More
THEHACKERNEWS.COM — 10 Nov 2025
⚠️
MAD-CAT “Meow” Tool Sparks Real-World Data Corruption Attacks
GBHACKERS.COM — 10 Nov 2025
⚠️
NuGet Supply-Chain Exploit Uses Timed Destructive Payloads Against ICS
GBHACKERS.COM — 10 Nov 2025
⚠️
Incident Response Team (ShieldForce) Partners with AccuKnox for Zero Trust CNAPP in Latin America
GBHACKERS.COM — 10 Nov 2025
⚠️
Layered security: How SMBs can protect against sophisticated cyberthreats during the holiday season.
CSOONLINE.COM — 10 Nov 2025
⚠️
ATT&CK → ATLAS: A CISO’s Blueprint for AI Governance - Sandy Dunn - CSP #218
YOUTUBE.COM — 2025-11-10
⚠️
Popular JavaScript library expr-eval vulnerable to RCE flaw
BLEEPINGCOMPUTER.COM — 10 Nov 2025
⚠️
CISA orders feds to patch Samsung zero-day used in spyware attacks
BLEEPINGCOMPUTER.COM — 10 Nov 2025
⚠️
Multiple Vulnerabilities in Google Android OS Could Allow for Remote Code Execution
CISECURITY.ORG — 10 Nov 2025
📢
European Commission moves to loosen GDPR for AI and cookie tracking
CSOONLINE.COM — 10 Nov 2025
📢
Dell security advisory (AV25-733)
CYBER.GC.CA — 2025-11-10
📢
IBM security advisory (AV25-732)
CYBER.GC.CA — 2025-11-10
📢
Ubuntu security advisory (AV25-734)
CYBER.GC.CA — 2025-11-10
📢
Red Hat security advisory (AV25-735)
CYBER.GC.CA — 2025-11-10
📢
[Control systems] CISA ICS security advisories (AV25–736)
CYBER.GC.CA — 2025-11-10
📢
EU's cybersecurity agency reports surge in cyberattacks against public administrations across Europe
INFOSEC.PUB — 10 Nov 2025
📢
EU's cybersecurity agency reports surge in cyberattacks against public administrations across Europe
SH.ITJUST.WORKS — 10 Nov 2025
📢
Cyber information sharing law would get extension under shutdown deal bill | CyberScoop
SH.ITJUST.WORKS — 10 Nov 2025
🔥
Data Leak Exposes Chinese State-Sponsored Cyber Arsenal and Target Database
GBHACKERS.COM — 10 Nov 2025
🔥
APT Groups Target Construction Firms to Steal RDP, SSH, and Citrix Credentials
GBHACKERS.COM — 10 Nov 2025
🔥
Large-Scale ClickFix Phishing Attacks Target Hotel Systems with PureRAT Malware
THEHACKERNEWS.COM — 10 Nov 2025
🔥
Hack halts Dutch broadcaster, forcing radio hosts back to LPs
BITDEFENDER.COM — 10 Nov 2025
🔥
Nearly 30 Alleged Victims of Oracle EBS Hack Named on Cl0p Ransomware Site
SECURITYWEEK.COM — 10 Nov 2025
🔥
Data breach at Chinese infosec firm reveals weapons arsenal • The Register
SH.ITJUST.WORKS — 10 Nov 2025
🔥
Why a lot of people are getting hacked with government spyware
TECHCRUNCH.COM — 10 Nov 2025
🔥
Android Users Hit by Malware Disguised as Relaxation Programs
GBHACKERS.COM — 10 Nov 2025
🔥
Vibe-codierte Ransomware auf Microsoft Marketplace entdeckt
CSOONLINE.COM — 10 Nov 2025
🔥
Yanluowang initial access broker to plead guilty to ransomware attacks
BLEEPINGCOMPUTER.COM — 10 Nov 2025
🔥
Nevada ransomware attack traced back to malware download by employee | Cybersecurity Dive
SH.ITJUST.WORKS — 10 Nov 2025
🔥
Cyberattacks surge against IoT, mobile devices in critical infrastructure | Cybersecurity Dive
SH.ITJUST.WORKS — 10 Nov 2025
🔥
Yanluowang initial access broker pleaded guilty to ransomware attacks
BLEEPINGCOMPUTER.COM — 10 Nov 2025
🕵️
ISC Stormcast For Monday, November 10th, 2025 https://isc.sans.edu/podcastdetail/9692, (Mon, Nov 10th)
ISC.SANS.EDU — 10 Nov 2025
🕵️
Italian Adviser Becomes Latest Target in Expanding Paragon Graphite Spyware Surveillance Case
GBHACKERS.COM — 10 Nov 2025
🕵️
Today I learned: binfmt_misc - dfir.ch - shadow suid
INFOSEC.PUB — 10 Nov 2025
🕵️
HackGPT Launches as AI-Driven Penetration Testing Suite Using GPT-4 and Other Models
GBHACKERS.COM — 10 Nov 2025
🕵️
OT Security Doesn't Have to be a Struggle, Spotting Red Flags, Enterprise News - ESW #432
YOUTUBE.COM — 2025-11-10
🕵️
Australia Sanctions Hackers Supporting North Korea’s Weapons Program
SECURITYWEEK.COM — 10 Nov 2025
🕵️
Threat Actors Attacking Outlook and Google Bypassing Traditional Email Defenses
GBHACKERS.COM — 10 Nov 2025
🕵️
New Attacks Against Secure Enclaves
SCHNEIER.COM — 2025-11-10
🕵️
GlassWorm malware returns on OpenVSX with 3 new VSCode extensions
SH.ITJUST.WORKS — 10 Nov 2025
🕵️
GlassWorm Malware Returns to Open VSX, Emerges on GitHub
SECURITYWEEK.COM — 10 Nov 2025
🕵️
Dangerous runC flaws could allow hackers to escape Docker containers
SH.ITJUST.WORKS — 10 Nov 2025
🕵️
Microsoft Uncovers 'Whisper Leak' Attack That Identifies AI Chat Topics in Encrypted Traffic
SH.ITJUST.WORKS — 10 Nov 2025
🕵️
Quantum Route Redirect: Anonymous Tool Streamlining Global Phishing Attack
KNOWBE4.COM — 10 Nov 2025
🕵️
Two New Web Application Risk Categories Added to OWASP Top 10
SECURITYWEEK.COM — 10 Nov 2025
🕵️
Microsoft Teams’ New “Chat with Anyone” Feature Exposes Users to Phishing and Malware Attacks
SH.ITJUST.WORKS — 10 Nov 2025
🕵️
Stadtverwaltung Ludwigshafen kämpft mit IT-Ausfall
CSOONLINE.COM — 10 Nov 2025
🕵️
Many Forbes AI 50 Companies Leak Secrets on GitHub
SECURITYWEEK.COM — 10 Nov 2025
🕵️
​​Securing our future: November 2025 progress report on Microsoft’s Secure Future Initiative ​​
MICROSOFT.COM — 10 Nov 2025
🕵️
APT37 hackers abuse Google Find Hub in Android data-wiping attacks
BLEEPINGCOMPUTER.COM — 10 Nov 2025
🌐
New Browser Security Report Reveals Emerging Threats for Enterprises
THEHACKERNEWS.COM — 10 Nov 2025
📡
5 reasons why attackers are phishing over LinkedIn
BLEEPINGCOMPUTER.COM — 10 Nov 2025
📡
It isn't always defaults: Scans for 3CX usernames, (Mon, Nov 10th)
ISC.SANS.EDU — 10 Nov 2025
📡
What is FileFix — a ClickFix variation? | Kaspersky official blog
KASPERSKY.COM — 10 Nov 2025
📡
Quantum Route Redirect PhaaS targets Microsoft 365 users worldwide
BLEEPINGCOMPUTER.COM — 10 Nov 2025
📡
Mozilla Firefox gets new anti-fingerprinting defenses
BLEEPINGCOMPUTER.COM — 10 Nov 2025