MATLOCK.CA
103Articles
9Categories
2025-12-15Date
🚨
CISA Adds Actively Exploited Sierra Router Flaw to KEV CatalogThe Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting Sierra Wireless AirLink ALEOS routers to its Known Exploited Vulnerabilities (KEV) catalogue, warning organisations about active exploitation in the wild. Critical File Upload…
KEVGBHACKERS.COM — 15 Dec 2025
🚨
CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalogsubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/12/cisa-flags-actively-exploited-geoserver.html
KEVSH.ITJUST.WORKS — 15 Dec 2025
πŸ›
Critical pgAdmin Flaw Allows Attackers to Execute Shell Commands on Host
GBHACKERS.COM — 15 Dec 2025
πŸ›
Windows Remote Access Connection Manager Flaw Allows Arbitrary Code Execution
GBHACKERS.COM — 15 Dec 2025
πŸ›
CISA Alerts on Actively Exploited Google Chromium Zero-Day Flaw
KEVGBHACKERS.COM — 15 Dec 2025
πŸ›
CISA orders immediate patching as GeoServer flaw faces active exploitation
KEVCSOONLINE.COM — 15 Dec 2025
πŸ›
More React2Shell Exploits CVE-2025-55182, (Mon, Dec 15th)
ISC.SANS.EDU — 15 Dec 2025
πŸ›
FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE
THEHACKERNEWS.COM — 15 Dec 2025
πŸ›
AL25-019 - Vulnerabilities impacting Fortinet products - FortiCloud SSO Login Authentication Bypass - CVE-2025-59718 and CVE-2025-59719
CYBER.GC.CA — 2025-12-15
πŸ›
ZnDoor Malware Actively Exploits React2Shell to Breach Network Infrastructure
GBHACKERS.COM — 15 Dec 2025
πŸ›
PCPcat Malware Leverages React2Shell Vulnerability to Breach 59,000+ Servers
GBHACKERS.COM — 15 Dec 2025
πŸ›
Defending against the CVE-2025-55182 (React2Shell) vulnerability in React Server Components
MICROSOFT.COM — 15 Dec 2025
πŸ›
CVE‑2025‑14174 Chromium: CVE-2025-14174 Out of bounds memory access in ANGLE
MSRC.MICROSOFT.COM — 15 Dec 2025
πŸ›
CVE-2025-14174 Chromium: CVE-2025-14174 Out of bounds memory access in ANGLE
MSRC.MICROSOFT.COM — 15 Dec 2025
⚠️
Cybersecurity Today: Apple Security Updates, AI Search Engine Scams, Torrent Malware, and Stanford's AI Penetration Testing
KEVCYBERSECURITYTODAY.LIBSYN.COM — 15 Dec 2025
⚠️
New VolkLocker Ransomware Variant Targets Both Linux and Windows Systems
GBHACKERS.COM — 15 Dec 2025
⚠️
Critical Plesk Vulnerability Allows Users to Gain Root-Level Access
GBHACKERS.COM — 15 Dec 2025
⚠️
Cybersecurity leaders’ top seven takeaways from 2025
CSOONLINE.COM — 15 Dec 2025
⚠️
Apple Patches Two Zero-Days Tied to Mysterious Exploited Chrome Flaw
SECURITYWEEK.COM — 15 Dec 2025
⚠️
Phantom Stealer Spread by ISO Phishing Emails Hitting Russian Finance Sector
THEHACKERNEWS.COM — 15 Dec 2025
⚠️
Illuminating Data Blind Spots, Topic, Enterprise News - Tony Kelly - ESW #437
YOUTUBE.COM — 2025-12-15
⚠️
Microsoft stellt neue Sicherheitsstrategie vor
CSOONLINE.COM — 15 Dec 2025
⚠️
⚑ Weekly Recap: Apple 0-Days, WinRAR Exploit, LastPass Fines, .NET RCE, OAuth Scams & More
THEHACKERNEWS.COM — 15 Dec 2025
⚠️
Google links more Chinese hacking groups to React2Shell attacks
BLEEPINGCOMPUTER.COM — 15 Dec 2025
⚠️
No more orange juice? Why one ship reveals America’s maritime cybersecurity crisis
CSOONLINE.COM — 15 Dec 2025
⚠️
CISA Warns of Windows Cloud Files Mini Filter 0-Day Vulnerability Exploited in Attacks
SH.ITJUST.WORKS — 15 Dec 2025
⚠️
New React RSC Vulnerabilities Enable DoS and Source Code Exposure
SH.ITJUST.WORKS — 15 Dec 2025
⚠️
Google Sees 5 Chinese Groups Exploiting React2Shell for Malware Delivery
SECURITYWEEK.COM — 15 Dec 2025
⚠️
Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild
KEVSH.ITJUST.WORKS — 15 Dec 2025
⚠️
The 5 power skills every CISO needs to master in the AI era
CSOONLINE.COM — 15 Dec 2025
⚠️
Unifying Data Protection Tools
YOUTUBE.COM — 2025-12-15
⚠️
Featured Chrome Browser Extension Caught Intercepting Millions of Users' AI Chats
THEHACKERNEWS.COM — 15 Dec 2025
⚠️
xHunt APT Exploits Microsoft Exchange and IIS to Deploy Custom Backdoors
GBHACKERS.COM — 15 Dec 2025
⚠️
Wireshark 4.6.2 Released With Crash Vulnerability Fixes and Protocol Updates
GBHACKERS.COM — 15 Dec 2025
⚠️
Shannon: AI Pentesting Tool That Autonomously Identifies and Exploits Code Vulnerabilities
GBHACKERS.COM — 15 Dec 2025
⚠️
Askul confirms theft of 740k customer records in ransomware attack
BLEEPINGCOMPUTER.COM — 15 Dec 2025
⚠️
Multiple Vulnerabilities in Apple Products Could Allow for Arbitrary Code Execution
CISECURITY.ORG — 15 Dec 2025
πŸ“‹
NVIDIA Merlin Vulnerabilities Allows Malicious Code Execution and DoS Attacks
GBHACKERS.COM — 15 Dec 2025
πŸ“‹
Microsoft: December security updates cause Message Queuing failures
BLEEPINGCOMPUTER.COM — 15 Dec 2025
πŸ“‹
Atlassian Patches Critical Apache Tika Flaw
SECURITYWEEK.COM — 15 Dec 2025
πŸ“‹
Microsoft: Recent Windows updates break VPN access for WSL users
BLEEPINGCOMPUTER.COM — 15 Dec 2025
πŸ“‹
Microsoft December 2025 Security Updates Disrupt MSMQ Functionality on IIS
GBHACKERS.COM — 15 Dec 2025
πŸ“’
French Interior Ministry confirms cyberattack on email servers
BLEEPINGCOMPUTER.COM — 15 Dec 2025
πŸ“’
Against the Federal Moratorium on State-Level Regulation of AI
SCHNEIER.COM — 2025-12-15
πŸ“’
Your KnowBe4 Compliance Plus Fresh Content Updates from November 2025
KNOWBE4.COM — 15 Dec 2025
πŸ“’
HPE security advisory (AV25-833)
CYBER.GC.CA — 2025-12-15
πŸ“’
Microsoft Edge security advisory (AV25-832)
CYBER.GC.CA — 2025-12-15
πŸ“’
React security advisory (AV25-834)
CYBER.GC.CA — 2025-12-15
πŸ“’
IBM security advisory (AV25-835)
CYBER.GC.CA — 2025-12-15
πŸ“’
Android Users at Risk as Malware Poses as mParivahan and e-Challan Apps
GBHACKERS.COM — 15 Dec 2025
πŸ“’
Ubuntu security advisory (AV25-836)
CYBER.GC.CA — 2025-12-15
πŸ“’
[Control systems] CISA ICS security advisories (AV25–838)
CYBER.GC.CA — 2025-12-15
πŸ“’
Apple security advisory (AV25-837)
CYBER.GC.CA — 2025-12-15
πŸ“’
ConnectWise security advisory (AV25-840)
CYBER.GC.CA — 2025-12-15
πŸ“’
VMware security advisory (AV25-839)
CYBER.GC.CA — 2025-12-15
πŸ”₯
VolkLocker Ransomware Exposed by Hard-Coded Master Key Allowing Free Decryption
THEHACKERNEWS.COM — 15 Dec 2025
πŸ”₯
Gentlemen Ransomware Emerges as a Threat to Corporate Networks
GBHACKERS.COM — 15 Dec 2025
πŸ”₯
700Credit Data Breach Impacts 5.8 Million Individuals
SECURITYWEEK.COM — 15 Dec 2025
πŸ”₯
Fieldtex Data Breach Impacts 238,000
SH.ITJUST.WORKS — 15 Dec 2025
πŸ”₯
South Korean Police Raid Coupang Over Data Breach as CEO Resigns - Infosecurity Magazine
SH.ITJUST.WORKS — 15 Dec 2025
πŸ”₯
Hamas-Linked Hackers Probe Middle Eastern Diplomats
SH.ITJUST.WORKS — 15 Dec 2025
πŸ”₯
CyberVolk’s ransomware debut stumbles on cryptography weakness
SH.ITJUST.WORKS — 15 Dec 2025
πŸ”₯
Ransomware-Bande attackiert Ideal Versicherung
CSOONLINE.COM — 15 Dec 2025
πŸ”₯
New PyStoreRAT Malware Targets OSINT Researchers Through GitHub – Hackread – Cybersecurity News, Data Breaches, AI, and More
SH.ITJUST.WORKS — 15 Dec 2025
πŸ”₯
New Gentlemen Ransomware Breaching Corporate Networks to Exfiltrate and Encrypt Sensitive Data
SH.ITJUST.WORKS — 15 Dec 2025
πŸ”₯
700Credit data breach impacts 5.8 million vehicle dealership customers
BLEEPINGCOMPUTER.COM — 15 Dec 2025
πŸ”₯
Experts found an unsecured 16TB database containing 4.3B professional records
SH.ITJUST.WORKS — 15 Dec 2025
πŸ”₯
Data breach at credit check giant 700Credit affects at least 5.6 million | TechCrunch
SH.ITJUST.WORKS — 15 Dec 2025
πŸ”₯
PornHub extorted after hackers steal Premium member activity data
BLEEPINGCOMPUTER.COM — 15 Dec 2025
πŸ”₯
SoundCloud confirms breach after member data stolen, VPN access disrupted
BLEEPINGCOMPUTER.COM — 15 Dec 2025
πŸ”₯
PornHub extorted after hackers steal Premium member activity data
BLEEPINGCOMPUTER.COM — 15 Dec 2025
πŸ”₯
LLMs & Ransomware | An Operational Accelerator, Not a Revolution
SENTINELONE.COM — 15 Dec 2025
πŸ•΅οΈ
ISC Stormcast For Monday, December 15th, 2025 https://isc.sans.edu/podcastdetail/9738, (Mon, Dec 15th)
ISC.SANS.EDU — 15 Dec 2025
πŸ•΅οΈ
Storm-0249: EDR Process Sideloading to Conceal Malicious Activity
GBHACKERS.COM — 15 Dec 2025
πŸ•΅οΈ
Third DraftKings Hacker Pleads Guilty
SECURITYWEEK.COM — 15 Dec 2025
πŸ•΅οΈ
LW ROUNDTABLE: Part 3, Cyber resilience faltered in 2025 β€” recalibration now under way
LASTWATCHDOG.COM — 15 Dec 2025
πŸ•΅οΈ
Soverli Raises $2.6 Million for Secure Smartphone OS
SECURITYWEEK.COM — 15 Dec 2025
πŸ•΅οΈ
Fake β€˜One Battle After Another’ torrent hides malware in subtitles
SH.ITJUST.WORKS — 15 Dec 2025
πŸ•΅οΈ
Deepfake Training: A Strategic Advantage Against Emerging Threats
KNOWBE4.COM — 15 Dec 2025
πŸ•΅οΈ
New Advanced Phishing Kits Use AI and MFA Bypass Tactics to Steal Credentials at Scale
SH.ITJUST.WORKS — 15 Dec 2025
πŸ•΅οΈ
France and Germany Grappling With Nation-State Hacks
SH.ITJUST.WORKS — 15 Dec 2025
πŸ•΅οΈ
Militant Groups Are Experimenting With AI, and the Risks Are Expected to Grow
SECURITYWEEK.COM — 15 Dec 2025
πŸ•΅οΈ
Warning: Phishing Attacks Abuse Free Cloudflare Pages
KNOWBE4.COM — 15 Dec 2025
πŸ•΅οΈ
Asahi to Launch Cybersecurity Overhaul After Crippling Cyber-Attack
SH.ITJUST.WORKS — 15 Dec 2025
πŸ•΅οΈ
Microsoft named an overall leader in KuppingerCole Leadership Compass for Generative AI Defense
TECHCOMMUNITY.MICROSOFT.COM — 15 Dec 2025
πŸ•΅οΈ
Frogblight Android Malware Spoofs Government Sites to Collect SMS and Device Details
GBHACKERS.COM — 15 Dec 2025
πŸ•΅οΈ
ClickFix Attack Abuses finger.exe to Execute Malicious Code
GBHACKERS.COM — 15 Dec 2025
πŸ•΅οΈ
DSPM: Automating Data Discovery
YOUTUBE.COM — 2025-12-15
πŸ•΅οΈ
What’s Next for Enterprise Threat Intelligence in 2026
RECORDEDFUTURE.COM — 15 Dec 2025
🌐
Man jailed for teaching criminals how to use malware
BITDEFENDER.COM — 15 Dec 2025
🌐
New SantaStealer malware steals data from browsers, crypto wallets
BLEEPINGCOMPUTER.COM — 15 Dec 2025
🌐
Cyber Risk Management: Defenders Tell It Like It Is
TRENDMICRO.COM — 15 Dec 2025
🌐
The 2025 Cloudflare Radar Year in Review: The rise of AI, post-quantum, and record-breaking DDoS attacks
CLOUDFLARE.COM — 15 Dec 2025
πŸ“‘
Game of clones: Sophos and the MITRE ATT&CK Enterprise 2025 Evaluations
SOPHOS.COM — 15 Dec 2025
πŸ“‘
A Browser Extension Risk Guide After the ShadyPanda Campaign
THEHACKERNEWS.COM — 15 Dec 2025
πŸ“‘
2025’s Top Phishing Trends and What They Mean for Your Security Strategy
BLEEPINGCOMPUTER.COM — 15 Dec 2025
πŸ“‘
2026 Cybersecurity Predictions
F5.COM — 15 Dec 2025
πŸ“‘
Google is shutting down dark web reports in January because they weren’t helpful
ARSTECHNICA.COM — 15 Dec 2025
πŸ“‘
Ongoing SoundCloud issue blocks VPN users with 403 server error
BLEEPINGCOMPUTER.COM — 15 Dec 2025
πŸ“‘
How to discover and secure ownerless corporate IT assets
KASPERSKY.COM — 15 Dec 2025
πŸ“‘
Google is shutting down its dark web report feature in January
BLEEPINGCOMPUTER.COM — 15 Dec 2025
πŸ“‘
Enhancing security awareness with cyber risk exposure management
TRENDMICRO.COM — 15 Dec 2025
πŸ“‘
2026 Cybersecurity Predictions
F5.COM — 15 Dec 2025