MATLOCK.CA
98Articles
9Categories
2025-12-02Date
🚨
CISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2025-48572 Android Framework Privilege Escalation Vulnerability   CVE-2025-48633 Android Framework Information Disclosure Vulnerab…
KEVCISA.GOV — Tue, 02 Dec 25 1
🐛
Google Fixes Android Zero-Day Flaws Actively Exploited in the Wild
KEVGBHACKERS.COM — 02 Dec 2025
🐛
Apache Struts Flaw Allows Attackers to Launch Disk Exhaustion Attacks
GBHACKERS.COM — 02 Dec 2025
🐛
OpenAI Codex CLI Flaw Allows Attackers to Run Arbitrary Commands
GBHACKERS.COM — 02 Dec 2025
🐛
Vulnerability in OpenAI Coding Agent Could Facilitate Attacks on Developers
SECURITYWEEK.COM — 02 Dec 2025
🐛
nopCommerce Flaw Lets Attackers Access Accounts Using Captured Cookies
GBHACKERS.COM — 02 Dec 2025
⚠️
Key questions CISOs must ask before adopting AI-enabled cyber solutions
CSOONLINE.COM — 02 Dec 2025
⚠️
Coupang Data Breach Exposes Personal Information of 33.7 Million Customers
GBHACKERS.COM — 02 Dec 2025
⚠️
Google Patches 107 Android Flaws, Including Two Framework Bugs Exploited in the Wild
KEVTHEHACKERNEWS.COM — 02 Dec 2025
⚠️
Vaillant-CISO: “Starten statt Warten”
CSOONLINE.COM — 02 Dec 2025
⚠️
Android’s December 2025 Updates Patch Two Zero-Days
SECURITYWEEK.COM — 02 Dec 2025
⚠️
Making TN Critical Infrastructure the Most Secure in the Nation - T. Gwyddon 'Data' ("... - ASW #359
YOUTUBE.COM — 2025-12-02
⚠️
Azure API Management Vulnerability Lets Attackers Create Accounts Across Tenants
GBHACKERS.COM — 02 Dec 2025
⚠️
OpenVPN Flaws Allow Hackers to Launch DoS Attacks and Bypass Security Checks
GBHACKERS.COM — 02 Dec 2025
⚠️
Hackers Exploit Telegram, WinSCP, Chrome, and Teams to Deliver ValleyRat Malware
GBHACKERS.COM — 02 Dec 2025
⚠️
Arkanix Stealer Emerges as New Threat: Steals VPN Logins, Wi-Fi Credentials, and Screenshots
GBHACKERS.COM — 02 Dec 2025
⚠️
SecAlerts Cuts Through the Noise with a Smarter, Faster Way to Track Vulnerabilities
THEHACKERNEWS.COM — 02 Dec 2025
⚠️
AI Adoption Surges While Governance Lags — Report Warns of Growing Shadow Identity Risk
CSOONLINE.COM — 02 Dec 2025
⚠️
Like Social Media, AI Requires Difficult Choices
SCHNEIER.COM — 2025-12-02
⚠️
A NICE Retrospective on Shaping Cybersecurity’s Future
NIST.GOV — 02 Dec 2025
⚠️
Cyber Startup Frenetik Launches with Patented Deception Technology That Bets Against the AI Arms Race
CSOONLINE.COM — 02 Dec 2025
⚠️
CSO 30 Awards 2025: Celebrating Excellence, Innovation and Leadership in Cybersecurity
CSOONLINE.COM — 02 Dec 2025
⚠️
Google fixes two Android zero days exploited in attacks, 107 flaws
KEVBLEEPINGCOMPUTER.COM — 02 Dec 2025
⚠️
Cyber Startup Frenetik Launches with Patented Deception Technology That Bets Against the AI Arms Race
GBHACKERS.COM — 02 Dec 2025
⚠️
AI Adoption Surges While Governance Lags — Report Warns of Growing Shadow Identity Risk
GBHACKERS.COM — 02 Dec 2025
⚠️
Dash Cam Hack: How Criminals Can Seize Control in Seconds
GBHACKERS.COM — 02 Dec 2025
⚠️
Early Indicators of Insider Threats Through Authentication and Access Controls
GBHACKERS.COM — 02 Dec 2025
⚠️
Evilginx Attack Techniques Allow Hackers to Defeat MFA Through SSO Phishing
GBHACKERS.COM — 02 Dec 2025
⚠️
SmartTube Android TV App Compromised After Signing Keys Leak
GBHACKERS.COM — 02 Dec 2025
⚠️
End-of-Year Threat Intelligence Sightings Forecast
INFOSEC.PUB — 2 Dec 2025
⚠️
Newly discovered malicious extensions could be lurking in enterprise browsers
CSOONLINE.COM — 02 Dec 2025
⚠️
K7 Antivirus: Named pipe abuse, registry manipulation and privilege escalation
QUARKSLAB.COM — 2025-12-02
⚠️
Malicious npm Package Uses Hidden Prompt and Script to Evade AI Security Tools
THEHACKERNEWS.COM — 02 Dec 2025
⚠️
CISA Releases Five Industrial Control Systems Advisories
CISA.GOV — Tue, 02 Dec 25 1
⚠️
Introducing constant-time support for LLVM to protect cryptographic code
TRAILOFBITS.COM — 02 Dec 2025
📢
Belgium bans China's DeepSeek from government devices
INFOSEC.PUB — 2 Dec 2025
📢
Belgium bans China's DeepSeek from government devices
SH.ITJUST.WORKS — 2 Dec 2025
📢
OpenVPN security advisory (AV25-798)
CYBER.GC.CA — 2025-12-02
📢
Ireland: 'Aggressive response' needed as cyber threats aligned to states like China and Russia pose “significant threat” to national security, cyber agency says
INFOSEC.PUB — 2 Dec 2025
📢
Ireland: 'Aggressive response' needed as cyber threats aligned to states like China and Russia pose “significant threat” to national security, cyber agency says
SH.ITJUST.WORKS — 2 Dec 2025
📢
Android security advisory – December 2025 monthly rollup (AV25-799)
CYBER.GC.CA — 2025-12-02
📢
Apache Struts security advisory (AV25-800)
CYBER.GC.CA — 2025-12-02
📢
HPE security advisory (AV25-801)
CYBER.GC.CA — 2025-12-02
🔥
4.3 Million Chrome and Edge Users Hacked in 7-Year ShadyPanda Malware Campaign
GBHACKERS.COM — 02 Dec 2025
🔥
Personal Information of 33.7 Million Stolen From Coupang
SECURITYWEEK.COM — 02 Dec 2025
🔥
SmartTube YouTube app for Android TV breached to push malicious update
SH.ITJUST.WORKS — 2 Dec 2025
🔥
Malware Manipulates AI Detection in Latest npm Package Breach - Infosecurity Magazine
SH.ITJUST.WORKS — 2 Dec 2025
🔥
University of Pennsylvania confirms new data breach after Oracle hack
BLEEPINGCOMPUTER.COM — 02 Dec 2025
🔥
Unit 42 Incident Response Retainer for AWS Security Incident Response
PALOALTONETWORKS.COM — 02 Dec 2025
🔥
Sorbonne Université staff data on dark web: hackers claim major breach
SH.ITJUST.WORKS — 2 Dec 2025
🔥
SmartTube's signature has been compromised, possible injected malicious library found by some users
SH.ITJUST.WORKS — 2 Dec 2025
🔥
Microsoft Defender portal outage disrupts threat hunting alerts
BLEEPINGCOMPUTER.COM — 02 Dec 2025
🔥
A data breach at analytics giant Mixpanel leaves a lot of open questions
TECHCRUNCH.COM — 02 Dec 2025
🔥
University of Pennsylvania confirms new data breach after Oracle hack
SH.ITJUST.WORKS — 2 Dec 2025
🔥
Shai-Hulud 2.0 NPM malware attack exposed up to 400,000 dev secrets
BLEEPINGCOMPUTER.COM — 02 Dec 2025
🔥
Asahi cyber attack spirals into massive data breach impacting almost 2 million people
BITDEFENDER.COM — 02 Dec 2025
🔥
FTC settlement requires Illuminate to delete unnecessary student data
BLEEPINGCOMPUTER.COM — 02 Dec 2025
🔥
Korea arrests suspects selling intimate videos from hacked IP cameras
BLEEPINGCOMPUTER.COM — 02 Dec 2025
🕵️
Stealthy browser extensions waited years before infecting 4.3M Chrome, Edge users with backdoors and spyware
INFOSEC.PUB — 2 Dec 2025
🕵️
ISC Stormcast For Tuesday, December 2nd, 2025 https://isc.sans.edu/podcastdetail/9720, (Tue, Dec 2nd)
ISC.SANS.EDU — 02 Dec 2025
🕵️
Mandatory ‘Undeletable’ Security App to Be Installed on Every Smartphone in India
GBHACKERS.COM — 02 Dec 2025
🕵️
Glassworm Malware Targets OpenVSX and Microsoft Visual Studio with 24 New Malicious Packages
GBHACKERS.COM — 02 Dec 2025
🕵️
Wireshark Vulnerabilities Let Attackers Crash by Injecting a Malformed Packet
SH.ITJUST.WORKS — 2 Dec 2025
🕵️
ShadyPanda browser extensions amass 4.3M installs in malicious campaign
SH.ITJUST.WORKS — 2 Dec 2025
🕵️
DevilsTongue Spyware Targets Windows Users Across Multiple Countries
GBHACKERS.COM — 02 Dec 2025
🕵️
Sonesta International Hotels Implements Industry-Leading Cloud Security Through AccuKnox Collaboration
GBHACKERS.COM — 02 Dec 2025
🕵️
Glassworm malware returns in third wave of malicious VS Code packages
SH.ITJUST.WORKS — 2 Dec 2025
🕵️
Saporo Raises $8 Million for Identity Security Platform
SECURITYWEEK.COM — 02 Dec 2025
🕵️
Claude: The Best Command Line Agent
YOUTUBE.COM — 2025-12-02
🕵️
Police takes down Cryptomixer cryptocurrency mixing service
SH.ITJUST.WORKS — 2 Dec 2025
🕵️
Canada flags urgent threat from nation-state and criminal groups to critical infrastructure - Industrial Cyber
SH.ITJUST.WORKS — 2 Dec 2025
🕵️
Chrome, Edge Extensions Caught Tracking Users, Creating Backdoors
SECURITYWEEK.COM — 02 Dec 2025
🕵️
Iran-Linked Hackers Hits Israeli Sectors with New MuddyViper Backdoor in Targeted Attacks
THEHACKERNEWS.COM — 02 Dec 2025
🕵️
CyberheistNews Vol 15 #48 [New Deepfake Danger] 1 in 5 Biometric Attacks Are Now AI-Driven
KNOWBE4.COM — 02 Dec 2025
🕵️
The Great Disconnect: Unmasking the ‘Two Separate Conversations’ in Security
SECURITYWEEK.COM — 02 Dec 2025
🕵️
North Korea lures engineers to rent identities in fake IT worker scheme
BLEEPINGCOMPUTER.COM — 02 Dec 2025
🕵️
Ukrainian Hackers Target Russian Aerospace and Defense Sectors
GBHACKERS.COM — 02 Dec 2025
🕵️
Researchers Capture Lazarus APT's Remote-Worker Scheme Live on Camera
THEHACKERNEWS.COM — 02 Dec 2025
🕵️
Zafran Security Raises $60 Million in Series C Funding
SECURITYWEEK.COM — 02 Dec 2025
🕵️
Building Secure Features with Developer Insights
YOUTUBE.COM — 2025-12-02
🕵️
How to build forward-thinking cybersecurity teams for tomorrow
MICROSOFT.COM — 02 Dec 2025
🕵️
India Orders Messaging Apps to Work Only With Active SIM Cards to Prevent Fraud and Misuse
THEHACKERNEWS.COM — 02 Dec 2025
🕵️
MuddyWater: Snakes by the riverbank
SH.ITJUST.WORKS — 2 Dec 2025
🕵️
Unraveling Water Saci's New Multi-Format, AI-Enhanced Attacks Propagated via WhatsApp
TRENDMICRO.COM — 02 Dec 2025
🕵️
AI semantics, Calendly, Teams, Schmaltz, India, Antigravity, Scada, Aaran Leyland - SWN #534
YOUTUBE.COM — 2025-12-02
🕵️
Legacy Equipment: A Hidden Threat
YOUTUBE.COM — 2025-12-02
🌐
Cybercrime Goes SaaS: Renting Tools, Access, and Infrastructure
BLEEPINGCOMPUTER.COM — 02 Dec 2025
🌐
GlassWorm Returns with 24 Malicious Extensions Impersonating Popular Developer Tools
THEHACKERNEWS.COM — 02 Dec 2025
🌐
MuddyWater: Snakes by the riverbank
WELIVESECURITY.COM — 02 Dec 2025
🎙️
The AI Fix #79: Gemini 3, poetry jailbreaks, and do we even need safe robots?
GRAHAMCLULEY.COM — 02 Dec 2025
📡
Windows 11 KB5070311 update fixes File Explorer freezes, search issues
BLEEPINGCOMPUTER.COM — 02 Dec 2025
📡
India plans to verify and record every smartphone in circulation
TECHCRUNCH.COM — 02 Dec 2025
📡
Microsoft: KB5070311 triggers File Explorer white flash in dark mode
BLEEPINGCOMPUTER.COM — 02 Dec 2025
📡
Fake Calendly invites spoof top brands to hijack ad manager accounts
BLEEPINGCOMPUTER.COM — 02 Dec 2025
📡
How cheaters use rigged DeckMate 2 shuffling machines in poker games | Kaspersky official blog
KASPERSKY.COM — 02 Dec 2025
📡
ChatGPT is down worldwide, conversations dissapeared for users
BLEEPINGCOMPUTER.COM — 02 Dec 2025
📡
ChatGPT is down worldwide, conversations disappeared for users
BLEEPINGCOMPUTER.COM — 02 Dec 2025
📡
Inside the CopyCop Playbook: How to Fight Back in the Age of Synthetic Media
RECORDEDFUTURE.COM — 02 Dec 2025