Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been actively exploited since at least July 18th, with no patch available and at least 85 servers already compromised worldwide. [...]
( 12
min )
Hewlett-Packard Enterprise (HPE) is warning of hardcoded credentials in Aruba Instant On Access Points that allow attackers to bypass normal device authentication and access the web interface. [...]
( 8
min )
📖 [The CloudSecList] Issue 297 was originally published by Marco Lancini at CloudSecList on July 20, 2025.
( 6
min )
A PoisonSeed phishing campaign is bypassing FIDO2 security key protections by abusing the cross-device sign-in feature in WebAuthn to trick users into approving login authentication requests from fake company portals. [...]
( 9
min )
Popular JavaScript libraries eslint-config-prettier and eslint-plugin-prettier were hijacked this week and turned into malware droppers, in a supply chain attack achieved via targeted phishing and credential theft. [...]
( 9
min )
GPT-5 might be just a few days or weeks away, as we've spotted references to a new model called gpt-5-reasoning-alpha-2025-07-13. [...]
( 8
min )
AI companies could soon disrupt the education market with their new AI-based learning tools for students. [...]
( 8
min )
Meet Ammonite, a tiny weird iceball that casts doubt on the Planet Nine hypothesis.
( 7
min )
CrushFTP is warning that threat actors are actively exploiting a zero-day vulnerability tracked as CVE-2025-54309, which allows attackers to gain administrative access via the web interface on vulnerable servers. [...]
( 9
min )
Arch Linux has pulled three malicious packages uploaded to the Arch User Repository (AUR) were used to install the CHAOS remote access trojan (RAT) on Linux devices. [...]
( 9
min )
The UK National Cyber Security Centre (NCSC) has formally attributed 'Authentic Antics' espionage malware attacks to APT28 (Fancy Bear), threat actor already linked to Russia's military intelligence service (GRU). [...]
( 9
min )
Microsoft has mistakenly tagged an ongoing Windows Firewall error message bug as fixed in recent updates, stating that they are still working on a resolution. [...]
( 8
min )
ChatGPT's o3 is OpenAI's best model to date because it features reasoning, and it might get even better in the next update. [...]
( 8
min )
WineLab, the retail store of the largest alcohol company in Russia, has closed its stores following a cyberattack that is impacting its operations and causing purchase problems to its customers. [...]
( 9
min )
Today marks a defining moment for U.S. crypto policy. After years of regulatory limbo, Congress has taken a major step…
The post Chainalysis POV: What the GENIUS and CLARITY Act Bills Really Mean for Crypto Compliance appeared first on Chainalysis.
( 12
min )
This week, we discuss data dumps, high stakes, and lizard brain screen time.
( 4
min )
404 Media is throwing a live podcast and party at RIP.SPACE in the Arts District.
( 3
min )
John Adams says "facts do not care about our feelings" in one of the AI-generated videos in PragerU's series partnership with White House.
( 7
min )
Meta executives settled a shareholders' lawsuit alleging continuous disregard of privacy regulations for the price of $8 billion.
( 10
min )
Microsoft will spotlight its AI-first, end-to-end security platform at Black Hat USA 2025. Read our blog post for details on how to connect with us there and what to expect from our participation.
The post Microsoft at Black Hat USA 2025: A unified approach to modern cyber defense appeared first on Microsoft Security Blog.
( 35
min )
Facial recognition and crowdsourced social media investigations are constantly being used not just on cringe CEOs, but on random people who are simply existing in public.
( 4
min )
404 Media has seen user manuals for Mobile Fortify, ICE’s new facial recognition app which allows officers to instantly look up DHS, State Department, and state law enforcement databases by just pointing a phone at someone’s face.
( 4
min )
Hacked data obtained by 404 Media reveals dozens more people on deportation flights to El Salvador who are unaccounted for. “We have not heard from these people’s families, so I think perhaps even they don’t know," one lawyer said.
( 9
min )
The Song of Wade was a popular legend that survives in only one enigmatic text. Now, researchers think they have solved a longstanding puzzle about its meaning.
( 7
min )
Microsoft believes in transparently sharing performance data from Microsoft Defender for Office 365, and other ecosystem providers, to help customers evaluate email security solutions and make decisions to layer for defense in depth.
The post Transparency on Microsoft Defender for Office 365 email security effectiveness appeared first on Microsoft Security Blog.
( 21
min )
The database contained 1,115,061 records including the names of children, birth parents, adoptive parents, and other potentially sensitive information like case notes.
( 10
min )
A researcher has disclosed how he found a—now fixed—vulnerability in Meta AI that could have allowed others to see private questions and answers.
( 9
min )
File sharing site WeTransfer has rolled back language that allowed it to train machine learning models on any files that its users uploaded.
( 9
min )
Google has released an update for its Chrome browser to patch six security vulnerabilities including one zero-day.
( 9
min )
At Bishop Fox, thinking like an adversary comes naturally. So it’s no surprise that comics—where power, perspective, and outsider thinking collide—resonate deeply with our team. Ahead of Comic-Con 2025, we asked our Foxes: what comics still stick with you?
( 8
min )
Key findings Stolen funds With over $2.17 billion stolen from cryptocurrency services so far in 2025, this year is more…
The post 2025 Crypto Crime Mid-year Update: Stolen Funds Surge as DPRK Sets New Records appeared first on Chainalysis.
( 17
min )
Amazon Web Services (AWS) has completed its annual Collaborative Cloud Audit Group (CCAG) audit engagement with leading European financial institutions. At AWS, security remains our highest priority. As customers continue to embrace the scalability and flexibility of the cloud, we support them in evolving security, identity, and compliance into core business enablers. The AWS Compliance […]
( 26
min )
TL;DR A UK law enforcement officer stole approximately 50 BTC from assets seized in the Silk Road 2.0 investigation. Despite…
The post How Chainalysis Helped Uncover an NCA Officer’s Theft of Seized Bitcoin appeared first on Chainalysis.
( 10
min )
We are honored to be recognized once again as a Leader in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platforms—our sixth consecutive time. Microsoft was recognized for its completeness of vision and ability to execute, which we believe underscores the effectiveness of Defender for Endpoint in the face of an ever-shifting threat environment.
The post Microsoft is named a Leader in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platforms appeared first on Microsoft Security Blog.
( 21
min )
To help protect and inform customers, Microsoft highlights protection coverage across the Microsoft Defender security ecosystem to protect against threat actors like Octo Tempest.
The post Protecting customers from Octo Tempest attacks across multiple industries appeared first on Microsoft Security Blog.
( 22
min )
Steam, which has hosted sex games for years, says developers must now comply with the standards of payment processors and financial institutions.
( 5
min )
This month I ordered a meal at the Bojangles drive-thru in South Carolina, which is now using AI. This is how AI becomes the background noise of the world.
( 5
min )
Early studies show that 3D printers may leave behind similar toolmarks on repeated prints.
( 3
min )
A former US army colonel faces up to ten years in prison after revealing national secrets on a foreign dating app.
( 10
min )
Amazon has emailed 200 million customers to warn them about a rather convincing phishing campaign.
( 9
min )
We are on a path to where social media will feed you hyperpersonalized AI slop about anything and everything.
( 4
min )
Nearly two minutes of Mark Zuckerberg's thoughts about AI have been lost to the sands of time. Can Meta's all-powerful AI recover this artifact?
( 9
min )
The app, which jumped to the top of an App Store chart, lets users report sightings of ICE officials.
( 3
min )
TL;DR: The Cryptocurrency Section of the Italian Carabinieri recently arrested Franco Lee, a Chinese national operating an illicit cryptocurrency exchange…
The post Italian Carabinieri Leverage Chainalysis to Dismantle €8.8M Illicit Crypto Exchange, Employing Advanced Forensics to Decrypt Seed Phrases and Seize Illicit Assets appeared first on Chainalysis.
( 10
min )
In June 2025, MaReads, the website for readers and writers of Thai-language fiction and comics suffered a data breach that exposed 74k records. The breach included usernames, email addresses, phone numbers and dates of birth. MaReads is aware of the breach.
( 2
min )
This week on the Lock and Code podcast, we speak with Anna Brading and Zach Hinkle about whether using AI is damaging for our health.
( 9
min )
Cybercriminals are using sponsored ads and fake news websites to lure victims to investment scams.
( 10
min )
A list of topics we covered in the week of July 7 to July 13 of 2025
( 8
min )
Announcing the general availability of Microsoft Security Copilot capabilities for IT with Microsoft Intune and Microsoft Entra, offering AI-powered efficiency and enhanced security for your operations.
The post Improving IT efficiency with Microsoft Security Copilot in Microsoft Intune and Microsoft Entra appeared first on Microsoft Security Blog.
( 22
min )
📖 [The CloudSecList] Issue 296 was originally published by Marco Lancini at CloudSecList on July 13, 2025.
( 5
min )
Amazon Web Services (AWS) is pleased to announce that the Spring 2025 System and Organization Controls (SOC) 1, 2, and 3 reports are now available. The reports cover 184 services over the 12-month period from April 1, 2024, to March 31, 2025, giving customers a full year of assurance. The reports demonstrate our continuous commitment to […]
( 26
min )
Employing a Zero Trust strategy is an effective way to modernize security infrastructure to protect against ever evolving security challenges.
The post Forrester names Microsoft a Leader in the 2025 Zero Trust Platforms Wave™ report appeared first on Microsoft Security Blog.
( 20
min )
Following the Money is a new Q&A series that spotlights how Chainalysis customers use our products in the real world…
The post Following the Money with Chainalysis: 7 Questions for Mina Eklad from Block appeared first on Chainalysis.
( 9
min )
Last month, we announced new sovereign controls and governance structure for the AWS European Sovereign Cloud. The AWS European Sovereign Cloud is a new, independent cloud for Europe, designed to help customers meet their evolving sovereignty needs, including stringent data residency, operational autonomy, and resiliency requirements. Launching by the end of 2025, the AWS European […]
( 26
min )
Deepfake attacks aren't just for recruitment and banking fraud; they've now reached the highest levels of government.
( 9
min )
The job applicants' personal information could be accessed by simply guessing a username and using the password “12345.”
( 11
min )
Today, Chainalysis Co-Founder and CEO Jonathan Levin joined a panel of industry leaders and policymakers on Capitol Hill to testify…
The post Chainalysis’ 5 Takeaways from Today’s Senate Banking Committee Hearing on Digital Assets appeared first on Chainalysis.
( 9
min )
The Microsoft Zero Trust workshop has been expanded to cover all six pillars of Zero Trust security, providing a comprehensive guide for organizations to modernize their security posture.
The post Microsoft expands Zero Trust workshop to cover network, SecOps, and more appeared first on Microsoft Security Blog.
( 20
min )
Conventional pen testing methods fall short with LLMs. Static prompt tests miss adversarial context manipulation and latent model behaviors. Explore how to test AI systems like an attacker.
( 7
min )
Researchers have discovered a campaign of malicious browser extensions that were available in the official Chrome and Edge web stores.
( 10
min )
Amazon Web Services (AWS) is pleased to announce that three new AWS services have been added to the scope of our Payment Card Industry Data Security Standard (PCI DSS) certification: Amazon Verified Permissions AWS B2B Data Interchange AWS Resource Explorer This certification means that customers can use these services while maintaining PCI DSS compliance, enabling […]
( 25
min )
Google says its Gemini AI will soon be able to access your messages, WhatsApp, and utilities on your phone. But we're struggling to see that as a good thing.
( 11
min )
If someone is going to negotiate with criminals for you, that person should at least be on your side.
( 10
min )
Read Coordinated Defense: Building an AI-powered, unified SOC, the new e-book on how organizations can unify security operations to better meet the challenges of today’s cyberthreat landscape.
The post Learn how to build an AI-powered, unified SOC in new Microsoft e-book appeared first on Microsoft Security Blog.
( 20
min )
We’re excited to announce that AWS has completed the CyberVadis assessment of its security posture with the highest score (Mature) in all assessed areas. This demonstrates our continued commitment to meet the heightened expectations for cloud service providers. Customers can now use the 2025 AWS CyberVadis report and scorecard to reduce their supplier due-diligence burden. With […]
( 25
min )
This new piece co-authored by the Citizen Lab’s Gabrielle Lim discusses the risks of privatized space technology. She and her co-authors highlight that the issue is not private-sector involvement, but the concentration of power in the hands of a few private firms that are “incentivized to serve the surveillance state and further a new kind... Read more »
( 3
min )
Let's Encrypt has started rolling out certificates for IP addresses. Although it's a security solution it also offers cybercriminals opportunities.
( 10
min )
The Call of Duty team confirmed that the PC edition of WWII has been taken offline following "reports of an issue."
( 11
min )
A list of topics we covered in the week of June 30 to July 6 of 2025
( 8
min )
📖 [The CloudSecList] Issue 295 was originally published by Marco Lancini at CloudSecList on July 06, 2025.
( 5
min )
“Transnational repression is a phenomenon that is only growing in scope, scale and sophistication worldwide,” writes Ron Deibert in his new op-ed for the Globe and Mail.
( 3
min )
This week, our theme is “how secure is your API security?”. We highlight two recent attacks targeting major financial platforms, along with a new industry survey that exposes significant gaps in API security practices. We also explore technical deep-dives into vulnerabilities such as JWT flaws and host header injection attacks. Plus, we share details on [...]
Read More...
The post Issue 275: API hackers strike gold, Malicious API drift at CoinMarketCap, Survey reveals major API security gaps appeared first on API Security News.
( 9
min )
The “El Chapo” Mexican drug cartel snooped on FBI personnel through hacked cameras, and listened in on their phone calls to...
( 10
min )
Stalkerware app Catwatchful has been leaking customer and victim information. It is one in a long line of such apps to do this.
( 10
min )
Amazon Web Services (AWS) customers can enable secure remote access to their cloud resources, supporting business operations with both speed and agility. As organizations embrace flexible work environments, employees can safely connect to AWS resources from various locations using different devices. AWS provides comprehensive security solutions that help organizations maintain strong protection of corporate resources, […]
( 34
min )
Microsoft is transitioning Microsoft Sentinel into the Microsoft Defender portal to create a unified security operations experience.
The post Planning your move to Microsoft Defender portal for all Microsoft Sentinel customers appeared first on Microsoft Security Blog.
( 34
min )
July 2, 2025: We’ve updated this post to include an FAQ section at the end. This includes our response to changing validity periods and associated certificate price points. AWS Certificate Manager (ACM) simplifies the provisioning, management, and deployment of public and private TLS certificates for AWS services and your on-premises and hybrid applications. To further […]
( 34
min )
📖 [The CloudSecList] Issue 294 was originally published by Marco Lancini at CloudSecList on June 29, 2025.
( 5
min )
In June 2024, the Philippines' largest shopping-mall operators Robinsons Malls suffered a data breach stemming from their mobile app. The incident exposed 195k unique email addresses along with names, phone numbers, dates of birth, genders and the user's city and province.
( 2
min )
In August 2021, the teaching resources website Have Fun Teaching suffered a data breach that leaked 80k WooCommerce transactions which were later posted to a popular hacking forum. The data contained 27k unique email addresses along with physical and IP addresses, names, payment methods and the item purchased. Have Fun Teaching is aware of the incident.
( 2
min )
With tens of thousands of CVEs flooding in each year, how do you spot the ones that actually matter? At Bishop Fox, we’ve built a smarter way to cut through the noise and act fast on real-world threats. Here’s how we prioritize CVEs that truly impact our customers.
( 8
min )
We continue to expand the scope of our assurance programs at Amazon Web Services (AWS) and are pleased to announce that 122 services are now certified as adherent to the Cloud Infrastructure Services Providers in Europe (CISPE) Data Protection Code of Conduct. This alignment with the CISPE requirements demonstrates our ongoing commitment to adhere to the heightened expectations for […]
( 25
min )
On June 28, join Citizen Lab director Ron Deibert, author of Chasing Shadows, for this book talk at the Toronto International Festival of Authors.
( 3
min )
In the past decade, we have seen a significant shift in how governments talk about misinformation. Many countries now consider or intentionally frame misinformation as a matter of national security or public safety in order to justify the passage of new laws that impose penalties for the spread of information deemed false or other administrative... Read more »
( 3
min )
On June 29 at REcon, Citizen Lab senior researcher Bill Marczak and co-presenter Daniel Roethlisberger will recount how they discovered a Pegasus exploit targeting iOS 10 devices back in 2017. They will describe their investigation, analyze the root cause of the vulnerability, detail how the exploit leveraged the vulnerability to gain code execution after boot, and explain how the vulnerability was mitigated.
( 3
min )
📖 [The CloudSecList] Issue 293 was originally published by Marco Lancini at CloudSecList on June 22, 2025.
( 6
min )
