Port 22

~ 18 Jul 2025 ~

Friday Squid Blogging: The Giant Squid Nebula

CERT-UA Discovers LAMEHUG Malware Linked to APT28, Using LLM for Phishing Campaign

Google Sues 25 Chinese Entities Over BADBOX 2.0 Botnet Affecting 10M Android Devices

Critical NVIDIA Container Toolkit Flaw Allows Privilege Escalation on AI Cloud Services

From Backup to Cyber Resilience: Why IT Leaders Must Rethink Backup in the Age of Ransomware

How Chinas Patriotic Honkers Became the Nations Elite Cyber Spies

As companies race to add AI, terms of service changes are going to freak a lot of people out

New Mobile Phone Forensics Tool

Poor Passwords Tattle on AI Hiring Bot Maker Paradox.ai

PsMapExec PowerShell Command Mapping for Lateral Movement

~ 17 Jul 2025 ~

Google sues 25 alleged BadBox 2.0 botnet operators, all of whom are in China

Hackers Use GitHub Repositories to Host Amadey Malware and Data Stealers, Bypassing Filters

Hackers Exploit Apache HTTP Server Flaw to Deploy Linuxsys Cryptocurrency Miner

Watch out, another max-severity, make-me-root Cisco bug on the loose

Europol Disrupts NoName057(16) Hacktivist Group Linked to DDoS Attacks Against Ukraine

CTEM vs ASM vs Vulnerability Management: What Security Leaders Need to Know in 2025

Transparency on Microsoft Defender for Office 365 email security effectiveness

Chinese Hackers Target Taiwan's Semiconductor Sector with Cobalt Strike, Custom Backdoors

Leviton AcquiSuite and Energy Monitoring Hub

Hackers Are Finding New Ways to Hide Malware in DNS Records

Quantum code breaking? You'd get further with an 8-bit computer, an abacus, and a dog

Cisco Warns of Critical ISE Flaw Allowing Unauthenticated Attackers to Execute Root Code

Security Vulnerabilities in ICEBlock

GhostContainer backdoor: malware compromising Exchange servers of high-value organizations in Asia

Microsoft offers vintage Exchange and Skype server users six more months of security updates

~ 16 Jul 2025 ~

Hackers Leverage Microsoft Teams to Spread Matanbuchus 3.0 Malware to Targeted Firms

Ukrainian hackers claim to have destroyed major Russian drone maker's entire network

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Operation Eastwood shutters 100+ servers used to DDoS websites supporting Ukraine

DHS Faces New Pressure Over DNA Taken From Immigrant Children

Critical Golden dMSA Attack in Windows Server 2025 Enables Cross-Domain Attacks and Persistent Access

Microsoft is named a Leader in the 2025 Gartner Magic Quadrant for Endpoint Protection Platforms

Hacking Trains

AI Agents Act Like Employees With Root AccessHere's How to Regain Control

Adoption Agency Data Exposure Revealed Information About Children and Parents

Protecting customers from Octo Tempest attacks across multiple industries

Urgent: Google Releases Critical Chrome Update for CVE-2025-6558 Exploit Active in the Wild

New Konfety Malware Variant Evades Detection by Manipulating APKs and Dynamic Code

Deepfakes. Fake Recruiters. Cloned CFOs Learn How to Stop AI-Driven Attacks in Real Time

Crims hijacking fully patched SonicWall VPNs to deploy stealthy backdoor and rootkit

Google AI "Big Sleep" Stops Exploitation of Critical SQLite Vulnerability Before Hackers Act

Retailer Co-op: Attackers snatched all 6.5M member records

Turbulence at Air Serbia, the latest airline under cyber siege

Security shop Adarma ceases trading, confirms it will enter administration

Defending Against Malicious Botnets in 2025 Automated Traffic Threats and Mitigation

~ 15 Jul 2025 ~

Curl creator mulls nixing bug bounty awards to stop AI slop

Ex-US soldier who Googled 'can hacking be treason' pleads guilty to extortion

Hyper-Volumetric DDoS Attacks Reach Record 7.3 Tbps, Targeting Key Global Sectors

Newly Emerged GLOBAL GROUP RaaS Expands Operations with AI-Driven Negotiation Tools

The FBI's Jeffrey Epstein Prison Video Had Nearly 3 Minutes Cut Out

State-Backed HazyBeacon Malware Uses AWS Lambda to Steal Data from SE Asian Governments

Securing Agentic AI: How to Protect the Invisible Identity Access

AsyncRAT's Open-Source Code Sparks Surge in Dangerous Malware Variants Across the Globe

North Korean Hackers Flood npm Registry with XORIndex Malware in Ongoing Attack Campaign

LITEON IC48A and IC80A EV Chargers

Hitachi Energy Asset Suite

ABB RMC-100

Unmasking AsyncRAT: Navigating the labyrinth of forks

Britain's billion-pound F-35s not quite ready for, well, anything

DOGE Denizen Marko Elez Leaked API Key for xAI

~ 14 Jul 2025 ~

The Unusual Suspect: Git Repos

New PHP-Based Interlock RAT Variant Uses FileFix Delivery Mechanism to Target Multiple Industries

Someone hijacked Elmo's X account to post antisemitic rants

Nvidia A6000 GPUs flip memory bits if beaten by GPUHammer

Report from the Cambridge Cybercrime Conference

Weekly Recap: Scattered Spider Arrests, Car Exploits, macOS Malware, Fortinet RCE and More

A software-defined radio can derail a US train by slamming the brakes on remotely

Improving IT efficiency with Microsoft Security Copilot in Microsoft Intune and Microsoft Entra

CBI Shuts Down 390K U.K. Tech Support Scam, Arrests Key Operatives in Noida Call Center

AI 'Nudify' Websites Are Raking in Millions of Dollars

eSIM Vulnerability in Kigen's eUICC Cards Exposes Billions of IoT Devices to Malicious Attacks

GPS on the fritz? Britain and France plot a backup plan

Forensic journey: Breaking down the UserAssist artifact structure

UK's NCA disputes claim it's nearly three times less efficient than the FBI

Iran seeks at least three cloud providers to power its government

TREVORspray Credential Spray Toolkit for Azure, Okta, OWA & More

~ 13 Jul 2025 ~

Nvidia warns its GPUs even Blackwells need protection against Rowhammer attacks

You have a fake North Korean IT worker problem - here's how to stop it

~ 12 Jul 2025 ~

GPUHammer: New RowHammer Attack Variant Degrades AI Models on NVIDIA GPUs

Over 600 Laravel Apps Exposed to Remote Code Execution Due to Leaked APP_KEYs on GitHub

4 Arrested Over Scattered Spider Hacking Spree

~ 11 Jul 2025 ~

Squid Dominated the Oceans in the Late Cretaceous

Fortinet Releases Patch for Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257)

CVSS 10 RCE in Wing FTP exploited within 24 hours, security researchers warn

PerfektBlue Bluetooth Vulnerabilities Expose Millions of Vehicles to Remote Code Execution

Securing Data in the AI Era

Critical Wing FTP Server Vulnerability (CVE-2025-47812) Actively Being Exploited in the Wild

Metadata Shows the FBIs Raw Jeffrey Epstein Prison Video Was Likely Modified

Iranian-Backed Pay2Key Ransomware Resurfaces with 80% Profit Share for Cybercriminals

Tradecraft in the Information Age

UK Online Safety Act 'not up to scratch' on misinformation, warn MPs

CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

Security company hired a used car salesman to build a website, and it didn't end well

French cops cuff Russian pro basketball player on ransomware charges

Chinese censorship-busters claim Tencent is trying to kill its WeChat archive

Force Push Scanner Hunt GitHub Dangling Commits for Leaked Secrets

~ 10 Jul 2025 ~

Lovestruck US Air Force worker admits leaking secrets on dating app

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

Now everybody but Citrix agrees that CitrixBleed 2 is under exploit

DHS Tells Police That Common Protest Activities Are Violent Tactics