Flaws in Software Used by Hundreds of Cities and Towns Exposed Sensitive Data

The affected application is made by Workhorse Software Services, which provides software solutions to 310 municipalities in Wisconsin. The vendor has released patches and mitigations after being no...

Aug 20, 2025 VULNS

FBI Warns FSB-Linked Hackers Exploiting Unpatched Cisco Devices for Cyber Espionage

A Russian state-sponsored cyber espionage group known as Static Tundra has been observed actively exploiting a seven-year-old security flaw in Cisco IOS and Cisco IOS XE software as a means to esta...

Aug 20, 2025 CYBERSECURITY

2025-08-20 Daily Vulns

NEW: CVE vendor-product description metric Referenceurl title GithubURL CVE-2024-44373 n/a - n/a A Path...

Aug 20, 2025 VULNERABILITIES

Threat Actors Attacking Organizations Key Employees With Weaponized Copyright Documents to Deliver Noodlophile Stealer

These personalized attacks primarily target key employees and generic organizational inboxes such as info@ and support@, creating a sense of urgency through legal threats that pressure recipients i...

Aug 19, 2025 CYBER SECURITY

Oregon man charged with administering “Rapper Bot” DDoS-for-hire Botnet

An Oregon man was charged by a federal criminal complaint today in the District of Alaska on charges related to his alleged development and administration of the “Rapper Bot” DDoS-for-hire Botnet t...

Aug 19, 2025 CRIME

New Research Links VPN Apps, Highlights Security Deficiencies

Nearly two dozen VPN applications in Google Play contain security weaknesses impacting the privacy of their users, exposing transmitted data to decryption, a new Citizen Lab report shows. Furtherm...

Aug 19, 2025 SECURITY

Like burglars closing a door, Apache ActiveMQ attackers patch critical vuln after breaking in

Criminals exploiting a critical vulnerability in open source Apache ActiveMQ middleware are fixing the flaw that allowed them access, after establishing persistence on Linux servers. Researchers a...

Aug 19, 2025 VULNERABILITIES

Legitimate Chrome VPN Extension Turns to Browser Spyware

A popular Google-featured browser extension offering a virtual private network (VPN) service recently turned malicious and is now spying on users’ every move online. Researchers from Koi Security d...

Aug 19, 2025 SECURITY

From Campus to C2 Tracking a Persistent Chinese Operation Against Vietnamese Universities

Occasionally, when threat actors are hosting payloads over HTTP, they accidentally expose the whole entire directory and subdirectory of files, rather than the singular payload they intended to sha...

Aug 19, 2025 APT

Web Hosting Firms in Taiwan Attacked by Chinese APT for Access to High-Value Targets

Tracked as UAT-7237 and believed to be active since 2022, the threat actor is likely a division of the hacking group that Talos tracks as UAT-5918, which overlaps with Chinese APTs such as Volt Typ...

Aug 18, 2025 SECURITY

Someone's poking the bear with infostealers targeting Russian crypto developers

Safety’s head of research Paul McCarty last week revealed his discovery of npm packages that he wrote “targeted the Solana cryptocurrency ecosystem and pretend to ‘scan’ for Solana SDK components.”...

Aug 18, 2025 RESEARCH

New Ghost-tapping Attacks Steal Customers’ Cards Linked to Services Like Apple Pay and Google Pay

Recorded Future analysts identified key threat actors operating on Telegram platforms, particularly @webu8, who advertises specialized burner phones and ghost-tapping services to Chinese-speaking c...

Aug 18, 2025 CYBER SECURITY

Microsoft Windows Vulnerability Exploited to Deploy PipeMagic RansomExx Malware

The attacks involve the exploitation of CVE-2025-29824, a privilege escalation vulnerability impacting the Windows Common Log File System (CLFS) addressed by Microsoft in April 2025, as reported by...

Aug 18, 2025 APT

Man Jailed for 20 Months After Compromising Millions of Accounts

A Rotherham man has been sentenced to 20 months behind bars for a range of hacktivism-related offenses. Al-Tahery Al-Mashriky, 26, was arrested in 2022 by National Crime Agency (NCA) officers after...

Aug 18, 2025 ARREST

Researcher to release exploit for full auth bypass on FortiWeb

A security researcher has released a partial proof of concept exploit for a vulnerability in the FortiWeb web application firewall that allows a remote attacker to bypass authentication. The flaw w...

Aug 16, 2025 SECURITY

EncryptHub Abuses Brave Support in new Campaign Exploiting- MSC Eviltwin Flaw

The SpiderLabs Research team recently observed an EncryptHub campaign that combines social engineering and the exploitation of the Microsoft Management Console (MMC): CVE-2025-26633. This vulnerabi...

Aug 16, 2025 RESEARCH

APT Group UAT-7237 Targets Taiwan's Web Infrastructure with Custom Tools

A Chinese-speaking advanced persistent threat (APT) group, tracked as UAT-7237, has been observed targeting web infrastructure entities in Taiwan using customized versions of open-sourced tools wit...

Aug 16, 2025 APT

2025-08-16 Daily Vulns

NEW: CVE vendor-product description metric Referenceurl title GithubURL CVE-2025-24975 FirebirdSQL - firebird...

Aug 16, 2025 VULNERABILITIES

UK-based Telecommunications Company Colt Technology Services Hit by Major Cyberattack

UK-based telecommunications company Colt Technology Services is dealing with a cyberattack that has caused a multi-day outage of some of the company’s operations, including hosting and porting serv...

Aug 15, 2025 CYBERSECURITY

Cyberattack on Dutch prosecution service is keeping speed cameras offline

The Dutch newspaper Leeuwarder Courant has reported that dozens of speed cameras remain offline after they were temporarily shut down following the system compromise. The cyberattack itself, which ...