I added hover over text, it messed up some of the formatting. But whatever, I gotta go write my TPS report.<h2>Krebs on Security</h2>2025-08-28 - <a href="https://krebsonsecurity.com/2025/08/affiliates-flock-to-soulless-scam-gambling-machine/" title="Last month, KrebsOnSecurity tracked the sudden emergence of hundreds of polished online gaming and wagering websites that lure people with free credits and eventually abscond with any cryptocurrency funds deposited by players. We've since learned that these scam gambling sites have proliferated thanks to a new Russian affiliate program called "Gambler Panel" that bills itself as a "soulless project that is made for profit.">Affiliates Flock to ‘Soulless’ Scam Gambling Machine</a><br><h2>Dark Reading</h2><h2>The Hacker News [ THN ] - Best Security Blog</h2>2025-09-01 - <a href="https://thehackernews.com/2025/09/scarcruft-uses-rokrat-malware-in.html" title="Cybersecurity researchers have discovered a new phishing campaign undertaken by the North Korea-linked hacking group called ScarCruft (aka APT37) to deliver a malware known as RokRAT.
The activity has been codenamed Operation HanKook Phantom by Seqrite Labs, stating the attacks appear to target individuals associated with the National Intelligence Research Association, including academic figures">ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics</a><br>2025-08-30 - <a href="https://thehackernews.com/2025/08/attackers-abuse-velociraptor-forensic.html" title="Cybersecurity researchers have called attention to a cyber attack in which unknown threat actors deployed an open-source endpoint monitoring and digital forensic tool called Velociraptor, illustrating ongoing abuse of legitimate software for malicious purposes.
"In this incident, the threat actor used the tool to download and execute Visual Studio Code with the likely intention of creating a">Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling</a><br>2025-08-30 - <a href="https://thehackernews.com/2025/08/whatsapp-issues-emergency-update-for.html" title="WhatsApp has addressed a security vulnerability in its messaging apps for Apple iOS and macOS that it said may have been exploited in the wild in conjunction with a recently disclosed Apple flaw in targeted zero-day attacks.
The vulnerability, CVE-2025-55177 (CVSS score: 8.0 [CISA-ADP]/5.4 [Facebook]), relates to a case of insufficient authorization of linked device synchronization messages.">WhatsApp Patches Zero-Click Exploit Targeting iOS and macOS Devices</a><br>2025-08-29 - <a href="https://thehackernews.com/2025/08/researchers-warn-of-sitecore-exploit.html" title="Three new security vulnerabilities have been disclosed in the Sitecore Experience Platform that could be exploited to achieve information disclosure and remote code execution.&nbsp;
The flaws, per watchTowr Labs, are listed below -

CVE-2025-53693 - HTML cache poisoning through unsafe reflections
CVE-2025-53691 - Remote code execution (RCE) through insecure deserialization
CVE-2025-53694 -">Researchers Warn of Sitecore Exploit Chain Linking Cache Poisoning and Remote Code Execution</a><br>2025-08-29 - <a href="https://thehackernews.com/2025/08/webinar-why-top-teams-are-prioritizing.html" title="Picture this: Your team rolls out some new code, thinking everything's fine. But hidden in there is a tiny flaw that explodes into a huge problem once it hits the cloud. Next thing you know, hackers are in, and your company is dealing with a mess that costs millions.
Scary, right? In 2025, the average data breach hits businesses with a whopping $4.44 million bill globally. And guess what? A big">Webinar: Learn How to Unite Dev, Sec, and Ops Teams With One Shared Playbook</a><br>2025-08-29 - <a href="https://thehackernews.com/2025/08/amazon-disrupts-apt29-watering-hole.html" title="Amazon on Friday said it flagged and disrupted what it described as an opportunistic watering hole campaign orchestrated by the Russia-linked APT29 actors as part of their intelligence gathering efforts.
The campaign used "compromised websites to redirect visitors to malicious infrastructure designed to trick users into authorizing attacker-controlled devices through Microsoft's device code">Amazon Disrupts APT29 Watering Hole Campaign Abusing Microsoft Device Code Authentication</a><br>2025-08-29 - <a href="https://thehackernews.com/2025/08/abandoned-sogou-zhuyin-update-server.html" title="An abandoned update server associated with input method editor (IME) software Sogou Zhuyin was leveraged by threat actors as part of an espionage campaign to deliver several malware families, including C6DOOR and GTELAM, in attacks primarily targeting users across Eastern Asia.
"Attackers employed sophisticated infection chains, such as hijacked software updates and fake cloud storage or login">Abandoned Sogou Zhuyin Update Server Hijacked, Weaponized in Taiwan Espionage Campaign</a><br>2025-08-29 - <a href="https://thehackernews.com/2025/08/can-your-security-stack-see-chatgpt-why.html" title="Generative AI platforms like ChatGPT, Gemini, Copilot, and Claude are increasingly common in organizations. While these solutions improve efficiency across tasks, they also present new data leak prevention for generative AI challenges. Sensitive information may be shared through chat prompts, files uploaded for AI-driven summarization, or browser plugins that bypass familiar security controls.">Can Your Security Stack See ChatGPT? Why Network Visibility Matters</a><br>2025-08-29 - <a href="https://thehackernews.com/2025/08/click-studios-patches-passwordstate.html" title="Click Studios, the developer of enterprise-focused password management solution Passwordstate, said it has released security updates to address an authentication bypass vulnerability in its software.
The high-severity issue, which is yet to be assigned a CVE identifier, has been addressed in Passwordstate 9.9 (Build 9972), released August 28, 2025.
The Australian company said it fixed a ">Click Studios Patches Passwordstate Authentication Bypass Vulnerability in Emergency Access Page</a><br>2025-08-29 - <a href="https://thehackernews.com/2025/08/freepbx-servers-targeted-by-zero-day.html" title="The Sangoma FreePBX Security Team has issued an advisory warning about an actively exploited FreePBX zero-day vulnerability that impacts systems with an administrator control panel (ACP) exposed to the public internet.
FreePBX is an open-source private branch exchange (PBX) platform widely used by businesses, call centers, and service providers to manage voice communications. It's built on top">FreePBX Servers Targeted by Zero-Day Flaw, Emergency Patch Now Available</a><br>2025-08-29 - <a href="https://thehackernews.com/2025/08/feds-seize-64m-veriftools-fake-id.html" title="Authorities from the Netherlands and the United States have announced the dismantling of an illicit marketplace called VerifTools that peddled fraudulent identity documents to cybercriminals across the world.
To that end, two marketplace domains (verif[.]tools and veriftools[.]net) and one blog have been taken down, redirecting site visitors to a splash page stating the action was undertaken by">Feds Seize $6.4M VerifTools Fake-ID Marketplace, but Operators Relaunch on New Domain</a><br>2025-08-29 - <a href="https://thehackernews.com/2025/08/google-warns-salesloft-oauth-breach.html" title="Google has revealed that the recent wave of attacks targeting Salesforce instances via Salesloft Drift is much broader in scope than previously thought, stating it impacts all integrations.
"We now advise all Salesloft Drift customers to treat any and all authentication tokens stored in or connected to the Drift platform as potentially compromised," Google Threat Intelligence Group (GTIG) and">Google Warns Salesloft Drift Breach Impacts All Drift Integrations Beyond Salesforce</a><br>2025-08-29 - <a href="https://thehackernews.com/2025/08/tamperedchef-malware-disguised-as-fake.html" title="Cybersecurity researchers have discovered a cybercrime campaign that's using malvertising tricks to direct victims to fraudulent sites to deliver a new information stealer called TamperedChef.
"The objective is to lure victims into downloading and installing a trojanized PDF editor, which includes an information-stealing malware dubbed TamperedChef," Truesec researchers Mattias Wåhlén, Nicklas">TamperedChef Malware Disguised as Fake PDF Editors Steals Credentials and Cookies</a><br>2025-08-28 - <a href="https://thehackernews.com/2025/08/researchers-find-vs-code-flaw-allowing.html" title="Cybersecurity researchers have discovered a loophole in the Visual Studio Code Marketplace that allows threat actors to reuse names of previously removed extensions.
Software supply chain security outfit ReversingLabs said it made the discovery after it identified a malicious extension named "ahbanC.shiba" that functioned similarly to two other extensions – ahban.shiba and ahban.cychelloworld –">Researchers Find VS Code Flaw Allowing Attackers to Republish Deleted Extensions Under Same Names</a><br>2025-08-28 - <a href="https://thehackernews.com/2025/08/salt-typhoon-exploits-cisco-ivanti-palo.html" title="The China-linked advanced persistent threat (APT) actor known as Salt Typhoon has continued its attacks targeting networks across the world, including organizations in the telecommunications, government, transportation, lodging, and military infrastructure sectors.
"While these actors focus on large backbone routers of major telecommunications providers, as well as provider edge (PE) and">Salt Typhoon Exploits Flaws in Edge Network Devices to Breach 600 Organizations Worldwide</a><br>2025-08-28 - <a href="https://thehackernews.com/2025/08/hidden-vulnerabilities-of-project.html" title="Every day, businesses, teams, and project managers trust platforms like Trello, Asana, etc., to collaborate and manage tasks. But what happens when that trust is broken? According to a recent report by Statista, the average cost of a data breach worldwide was about $4.88 million. Also, in 2024, the private data of over 15 million Trello user profiles was shared on a popular hacker forum. Yet,">Hidden Vulnerabilities of Project Management Tools & How FluentPro Backup Secures Them</a><br>2025-08-28 - <a href="https://thehackernews.com/2025/08/malicious-nx-packages-in-s1ngularity.html" title="The maintainers of the nx build system have alerted users to a supply chain attack that allowed attackers to publish malicious versions of the popular npm package and other auxiliary plugins with data-gathering capabilities.
"Malicious versions of the nx package, as well as some supporting plugin packages, were published to npm, containing code that scans the file system, collects credentials,">Malicious Nx Packages in ‘s1ngularity’ Attack Leaked 2,349 GitHub, Cloud, and AI Credentials</a><br>2025-08-28 - <a href="https://thehackernews.com/2025/08/us-treasury-sanctions-dprk-it-worker.html" title="The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) announced a fresh round of sanctions against two individuals and two entities for their role in the North Korean remote information technology (IT) worker scheme to generate illicit revenue for the regime's weapons of mass destruction and ballistic missile programs.
"The North Korean regime continues to target American">U.S. Treasury Sanctions DPRK IT-Worker Scheme, Exposing $600K Crypto Transfers and $1M+ Profits</a><br>2025-08-28 - <a href="https://thehackernews.com/2025/08/storm-0501-exploits-entra-id-to.html" title="The financially motivated threat actor known as Storm-0501 has been observed refining its tactics to conduct data exfiltration and extortion attacks targeting cloud environments.
"Unlike traditional on-premises ransomware, where the threat actor typically deploys malware to encrypt critical files across endpoints within the compromised network and then negotiates for a decryption key,">Storm-0501 Exploits Entra ID to Exfiltrate and Delete Azure Data in Hybrid Cloud Attacks</a><br><h2>Schneier on Security</h2>2025-08-28 - <a href="https://www.schneier.com/blog/archives/2025/08/friday-squid-blogging-catching-humboldt-squid.html" title="<p>First-person <a href="https://gilaherald.com/editorial-not-intentionally-fishing-for-squid/">account</a> of someone accidentally catching several Humboldt squid on a fishing line. No photos, though.</p>
<p>As usual, you can also use this squid post to talk about the security stories in the news that I haven&#8217;t covered.</p>
<p><a href="https://www.schneier.com/blog/archives/2024/06/new-blog-moderation-policy.html">Blog moderation policy.</a></p>">Friday Squid Blogging: Catching Humboldt Squid</a><br>2025-08-28 - <a href="https://www.schneier.com/blog/archives/2025/08/baggage-tag-scam.html" title="<p>I just heard about <a href="https://www.fodors.com/news/news/there-are-warnings-about-the-bag-tag-scam-but-is-it-really-a-scam">this</a>:</p>
<blockquote><p>There&#8217;s a <a href="https://travelnoire.com/luggage-tag-scam">travel scam warning</a> going around the internet right now: You should keep your baggage tags on your bags until you get home, then shred them, because scammers are using luggage tags to file fraudulent claims for missing baggage with the airline.</p></blockquote>
<p>First, the scam is possible. I had a bag destroyed by baggage handlers on a recent flight, and all the information I needed to file a claim was on my luggage tag. I have no idea if I will successfully get any money from the airline, or what form it will be in, or how it will be tied to my name, but at least the first step is possible...</p>">Baggage Tag Scam</a><br><h2>ThreatPost</h2><h2>Sydney Morning Herald</h2><h2>New York Times</h2>2025-08-31 - <a href="https://www.nytimes.com/2025/08/31/technology/builder-ai-collapse.html" title="Builder.ai went from a value of $1.5 billion to zero in a few months, amid questions over the sales of an A.I. product. Its downfall hints at a broader downturn.">How Builder.ai Collapsed Amid Silicon Valley’s Biggest Boom</a><br>2025-08-31 - <a href="https://www.nytimes.com/2025/08/31/technology/clanker-anti-ai.html" title="The term, which was popularized by a “Star Wars” show and is rooted in real frustrations with technology, has become a go-to slur against artificial intelligence and robots.">How ‘Clanker’ Became an Anti-A.I. Rallying Cry</a><br>2025-08-29 - <a href="https://www.nytimes.com/2025/08/29/podcasts/hardfork-intel-waymo.html" title="“At its core, what this is is like a state-sponsored industrial project.”">Intel’s New Deal + Waymo C.E.O. Tekedra Mawakana on Scaling Driverless Cars + Trumps in Tech</a><br>2025-08-31 - <a href="https://www.nytimes.com/2025/08/31/science/trump-science-autocrats.html" title="Authoritarians have long feared and suppressed science as a rival for social influence. Experts see President Trump as borrowing some of their tactics.">Historians See Autocratic Playbook in Trump’s Attacks on Science</a><br>2025-08-30 - <a href="https://www.nytimes.com/2025/08/30/us/school-shooting-hoax-universities-purgatory-swatting.html" title="Members of the group offered on Telegram to draw armed officers to schools, malls and airports, though their claims are unverified. Such false emergency calls have disrupted campus life in recent days.">An Online Group Claims It’s Behind Campus Swatting Wave</a><br>2025-08-29 - <a href="https://www.nytimes.com/2025/08/29/business/cadillac-electric-vehicles-trump.html" title="Electric models from the luxury car brand have been very successful, but they may struggle once a $7,500 federal tax credit ends next month.">Can Cadillac Keep Selling E.V.s as Trump Repeals Climate Policies?</a><br><h2>Wall Street Journal</h2><h2>BBC</h2>2025-09-01 - <a href="https://www.bbc.com/news/articles/cly702xd0edo?at_medium=RSS&at_campaign=rss" title="The digital ticketing trials will allow passengers to check in and out using a location-identifying app.">Ticketless train travel to be trialled across cities</a><br>2025-09-01 - <a href="https://www.bbc.com/news/articles/clyrkj0d44vo?at_medium=RSS&at_campaign=rss" title="The impending ban is popular with many parents, but experts have raised concerns over privacy and age verification technology.">Enforcing Australia's social media ban on kids is possible but contains risks, report says</a><br>2025-09-01 - <a href="https://www.bbc.com/news/articles/cx2pr1wwq44o?at_medium=RSS&at_campaign=rss" title="The EV maker faces a crowed market, with rivals like XPeng and Telsa, which have all cut prices.">BYD shares slide as China's EV price war hits profits</a><br>2025-08-31 - <a href="https://www.bbc.com/news/articles/cy08jr6jwn2o?at_medium=RSS&at_campaign=rss" title="The first new game in the series in a decade - a remake - has been released, without involvement of the series creator.">The first game to feel truly cinematic is back - years after its creator left</a><br>2025-08-29 - <a href="https://www.bbc.com/news/articles/cx293qg7z39o?at_medium=RSS&at_campaign=rss" title="The document suggests the government may still want access despite US officials saying it had dropped the demand.">Court documents shed new light on UK-Apple row over user data</a><br>2025-08-29 - <a href="https://www.bbc.com/news/articles/ckgyk2p55g8o?at_medium=RSS&at_campaign=rss" title="The fast food chain is reassessing its use of the tech after a number of errors were shared widely online.">Taco Bell rethinks AI drive-through after man orders 18,000 waters</a><br>2025-08-29 - <a href="https://www.bbc.com/news/articles/cn47ey2wxkpo?at_medium=RSS&at_campaign=rss" title="US regulators allege his late disclosure of Twitter share purchases allowed him to buy them at "artificially low prices".">Musk files to dismiss lawsuit over his purchase of Twitter shares</a><br>2025-08-28 - <a href="https://www.bbc.com/news/articles/cx23zdvk854o?at_medium=RSS&at_campaign=rss" title="Raphaël Graven, also known as Jean Pormanove, died during a live stream on the Kick website.">Kick accuses French authorities of politicising streamer's death</a><br>2025-08-28 - <a href="https://www.bbc.com/news/articles/crr24eqnnq9o?at_medium=RSS&at_campaign=rss" title="A report from the makers of Claude said the AI tool had been used to commit cyber-attacks and fraud.">AI firm says its technology weaponised by hackers</a><br>2025-08-28 - <a href="https://www.bbc.com/news/articles/c3wnj8611y7o?at_medium=RSS&at_campaign=rss" title="Nvidia remains exposed to geopolitical tensions between the US and China.">AI boom boosts Nvidia despite 'geopolitical issues'</a><br>2025-08-28 - <a href="https://www.bbc.com/news/articles/cqlew2rv337o?at_medium=RSS&at_campaign=rss" title="The limit would only apply outside of work and study time and no fines would be given if breached">Japanese town proposes two-hour daily limit on smartphones</a><br>2025-08-28 - <a href="https://www.bbc.com/news/articles/cx2ngz7ep1eo?at_medium=RSS&at_campaign=rss" title="Activists in Querétaro criticise state government for prioritising the data processing needs for US tech firms over their own citizens">Thirsty data centres boom in drought-hit Mexico</a><br><h2>SecurityBrief AU</h2>2025-09-01 - <a href="https://securitybrief.com.au/story/exclusive-autodesk-s-daron-green-warns-of-ai-disintermediation" title="Autodesk is harnessing AI to reshape design workflows, boosting productivity and user experience amid rising digital disruption across industries.">Exclusive: Autodesk’s Daron Green warns of AI 'disintermediation'</a><br>2025-09-01 - <a href="https://securitybrief.com.au/story/arlo-secure-6-adds-ai-event-captions-natural-video-search" title="Arlo Secure 6 now features AI-driven Event Captions with Video Search coming soon, enhancing home security footage access and review for subscribers.">Arlo Secure 6 adds AI event captions & natural video search</a><br>2025-09-01 - <a href="https://securitybrief.com.au/story/f5-named-overall-leader-in-2025-kuppingercole-waap-report" title="F5 has been named overall leader in the 2025 KuppingerCole report for its advanced Web Application and API Protection solutions across complex multi-cloud environments.">F5 named overall leader in 2025 KuppingerCole WAAP report</a><br>2025-09-01 - <a href="https://securitybrief.com.au/story/five-connectivity-trends-that-will-redefine-enterprise-it-in-2026-and-beyond" title="By 2026, five key connectivity trends, including widespread AI network management and Wi-Fi 7 adoption, will transform enterprise IT into a strategic growth driver.">Five connectivity trends that will redefine enterprise IT in 2026 and beyond</a><br>2025-09-01 - <a href="https://securitybrief.com.au/story/gravitylab-tops-global-b-corp-ranking-for-tech-support-services" title="New Zealand’s GravityLab tops global B Corp rankings for tech support, leading in social impact and anti-trafficking efforts with USD $1m donated.">GravityLab tops global B Corp ranking for tech support services</a><br>2025-09-01 - <a href="https://securitybrief.com.au/story/amp-bank-go-blocks-over-1-000-mule-accounts-with-new-features" title="AMP Bank GO has blocked over 1,000 fraudulent accounts in six months using a selfie video verification and numberless cards to enhance security.">AMP Bank GO blocks over 1,000 mule accounts with new features</a><br>2025-09-01 - <a href="https://securitybrief.com.au/story/wiz-secures-irap-protected-level-enabling-cloud-for-agencies" title="Wiz has achieved IRAP Protected level, enabling its cloud security platform to support Australian government agencies in secure cloud transitions.">Wiz secures IRAP Protected level, enabling cloud for agencies</a><br>2025-09-01 - <a href="https://securitybrief.com.au/story/celebrating-diversity-tackling-insider-threats-in-cybersecurity" title="This September, the cybersecurity sector highlights tackling insider threats and advancing women’s roles to build a more resilient, diverse future.">Celebrating diversity & tackling insider threats in cybersecurity</a><br>2025-08-29 - <a href="https://securitybrief.com.au/story/scam-awareness-week-shines-a-light-on-the-collective-effort-needed-to-fight-scams" title="Australians lost over AUD $119 million to scams in early 2025, highlighting the urgent need for collective action from individuals, businesses and government.">Scam Awareness Week shines a light on the collective effort needed to fight scams</a><br>2025-08-29 - <a href="https://securitybrief.com.au/story/exclusive-rimini-street-ceo-says-erp-software-is-dead" title="Rimini Street's CEO predicts AI will obsolete legacy ERP systems within a decade, as firms favour intelligent automation over costly software upgrades.">Exclusive: Rimini Street CEO says ERP software is dead</a><br><h2>ITNews AU</h2>2025-09-01 - <a href="https://www.itnews.com.au/news/dpv-health-revamps-vulnerability-management-with-automated-attack-simulation-619824?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="Podcast: With former CIO Noel Toal.">DPV Health revamps vulnerability management with automated attack simulation</a><br>2025-08-30 - <a href="https://www.itnews.com.au/news/zero-click-apple-and-whatsapp-bug-combo-used-to-drop-gov-spyware-619961?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="Meta comms app vulnerability could affect Android users as well.">Zero-click Apple and WhatsApp bug combo used to drop gov spyware</a><br>2025-08-28 - <a href="https://www.itnews.com.au/news/google-tightens-android-developer-verification-619900?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="After malware spike for sideloaded apps.">Google tightens Android developer verification</a><br>2025-08-28 - <a href="https://www.itnews.com.au/news/western-sydney-university-targets-file-sharing-sites-hosting-stolen-data-619905?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="After its SSO breach.">Western Sydney University targets file-sharing sites hosting stolen data</a><br>2025-08-28 - <a href="https://www.itnews.com.au/video/dont-fight-the-cyber-battle-blindfolded-619902?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="As cyber threats grow more sophisticated and AI reshapes the attack surface, CISOs must rethink traditional security approaches to stay ahead.">Don&#8217;t fight the cyber-battle blindfolded</a><br>2025-08-28 - <a href="https://www.itnews.com.au/news/international-coalition-calls-out-three-chinese-companies-over-hacking-campaign-619899?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="Some activity linked to Salt Typhoon.">International coalition calls out three Chinese companies over hacking campaign</a><br><h2>BleepingComputer</h2>2025-08-31 - <a href="https://www.bleepingcomputer.com/news/artificial-intelligence/openai-is-testing-thinking-effort-for-chatgpt/" title="OpenAI is working on a new feature called the Thinking effort picker for ChatGPT. [...]">OpenAI is testing "Thinking effort" for ChatGPT</a><br>2025-08-30 - <a href="https://www.bleepingcomputer.com/news/security/tamperedchef-infostealer-delivered-through-fraudulent-pdf-editor/" title="Threat actors have been using multiple websites promoted through Google ads to distribute a convincing PDF editing app that delivers an info-stealing malware called TamperedChef. [...]">TamperedChef infostealer delivered through fraudulent PDF Editor</a><br>2025-08-29 - <a href="https://www.bleepingcomputer.com/news/microsoft/windows-11-kb5064081-update-clears-up-cpu-usage-metrics-in-task-manager/" title="Microsoft has released the KB5064081 preview cumulative update for Windows 11 24H2, which includes thirty-six new features or changes, with many gradually rolling out. These updates include new Recall features and a new way of displaying CPU usage in Task Manager. [...]">Windows 11 KB5064081 update clears up CPU usage metrics in Task Manager</a><br>2025-08-29 - <a href="https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-bug-behind-windows-certificate-enrollment-errors/" title="Microsoft has resolved a known issue causing false CertificateServicesClient (CertEnroll) error messages after installing the July 2025 preview and subsequent Windows 11 24H2 updates. [...]">Microsoft fixes bug behind Windows certificate enrollment errors</a><br>2025-08-29 - <a href="https://www.bleepingcomputer.com/news/security/whatsapp-patches-vulnerability-exploited-in-zero-day-attacks/" title="WhatsApp has patched a security vulnerability in its iOS and macOS messaging clients that was exploited in targeted zero-day attacks. [...]">WhatsApp patches vulnerability exploited in zero-day attacks</a><br>2025-08-29 - <a href="https://www.bleepingcomputer.com/news/microsoft/microsoft-to-enforce-mfa-for-azure-resource-management-in-october/" title="Starting in October, Microsoft will enforce multi-factor authentication (MFA) for all Azure resource management actions to protect Azure clients from unauthorized access attempts. [...]">Microsoft to enforce MFA for Azure resource management in October</a><br>2025-08-29 - <a href="https://www.bleepingcomputer.com/news/microsoft/microsoft-says-recent-KB5063878-windows-update-didnt-kill-your-ssd/" title="Microsoft has found no link between the August 2025 KB5063878 security update and customer reports of failure and data corruption issues affecting solid-state drives (SSDs) and hard disk drives (HDDs). [...]">Microsoft says recent Windows update didn't kill your SSD</a><br>2025-08-28 - <a href="https://www.bleepingcomputer.com/news/security/google-warns-salesloft-breach-impacted-some-workspace-accounts/" title="Google reports that the Salesloft Drift breach is larger than initially thought, warning that attackers also used stolen OAuth tokens to access Google Workspace email accounts in addition to Salesforce data. [...]">Google warns Salesloft breach impacted some Workspace accounts</a><br>2025-08-28 - <a href="https://www.bleepingcomputer.com/news/legal/us-targets-north-korean-it-worker-army-with-new-sanctions/" title="The U.S. Treasury's Office of Foreign Assets Control (OFAC) has sanctioned two individuals and two companies associated with North Korean IT worker schemes that operate at the expense of American organizations. [...]">US targets North Korean IT worker army with new sanctions</a><br>2025-08-28 - <a href="https://www.bleepingcomputer.com/news/google/google-shares-chromeos-workarounds-for-clever-classlink-auth-failures/" title="Google is working to resolve authentication failures preventing users from signing into their Clever and ClassLink accounts on some ChromeOS devices. [...]">Google shares workarounds for auth failures on ChromeOS devices</a><br>2025-08-28 - <a href="https://www.bleepingcomputer.com/news/security/malware-devs-abuse-anthropics-claude-ai-to-build-ransomware/" title="Anthropic's Claude Code large language model has been abused by threat actors who used it in data extortion campaigns and to develop ransomware packages. [...]">Malware devs abuse Anthropic’s Claude AI to build ransomware</a><br>2025-08-28 - <a href="https://www.bleepingcomputer.com/news/microsoft/microsoft-word-will-save-your-files-to-the-cloud-by-default/" title="Microsoft says that Word for Windows will soon enable autosave and automatically save all new documents to the cloud by default. [...]">Microsoft Word will save your files to the cloud by default</a><br><h2>/r/NetSec</h2>2025-09-01 - <a href="https://www.reddit.com/r/netsec/comments/1n5dil1/zeroday_alert_automated_discovery_of_critical/" title="<!-- SC_OFF --><div class="md"><p><strong>TL;DR: Discovered an unpatched zero-day in TP-Link routers (AX10/AX1500) that allows remote code execution. Reported to TP-Link on May 11th, 2024 - still unpatched. 4,247 vulnerable devices found online.</strong></p> <h1>The Discovery</h1> <p>Used automated taint analysis to find a stack-based buffer overflow in TP-Link's CWMP (TR-069) implementation. The vulnerability exists in function <code>sub_1e294</code> that processes SOAP SetParameterValues messages.</p> <p><strong>Key Technical Details:</strong></p> <ul> <li>Stack buffer: 3072 bytes</li> <li>PC register overwrite: 3112 bytes (payload: &quot;A&quot;*3108 + &quot;BBBB&quot;)</li> <li>Result: <code>pc = 0x42424242</code> (full control)</li> <li>Canary exploit mitigations</li> </ul> <h1>Proof of Concept</h1> <pre><code>// Vulnerable code pattern char* result_2 = strstr(s, &quot;cwmp:SetParameterValues&quot;); // Size calculated from user input - BAD PRACTICE strncpy(stack_buffer, user_data, calculated_size); // OVERFLOW! </code></pre> <p>Exploitation requires setting a malicious CWMP server URL in router config, then device connects and gets pwned.</p> <h1>Impact</h1> <p><strong>Affected Models:</strong></p> <ul> <li>TP-Link Archer AX10 (all hardware versions V1, V1.2, V2, V2.6)</li> <li>TP-Link Archer AX1500 (identical binary)</li> <li>Potentially: EX141, Archer VR400, TD-W9970</li> </ul> <p><strong>Firmware Versions:</strong> 1.3.2, 1.3.8, 1.3.9, 1.3.10 (all vulnerable)</p> <p><strong>Internet Exposure:</strong> 4,247 unique IPs confirmed vulnerable via Fofa search</p> <h1>Why This Matters</h1> <p>Router security is often terrible - default passwords, weak configs, other vulns. Getting config access isn't that hard, and setting up a rogue CWMP server is trivial. Once you change the TR-069 server URL, the router connects to your malicious server and you get root.</p> <h1>Timeline</h1> <ul> <li><strong>Discovery:</strong> January 2025 (automated analysis)</li> <li><strong>Vendor Notification:</strong> May 11th, 2024</li> <li><strong>Current Status:</strong> Probably Patched</li> <li><strong>Public Disclosure:</strong> Now</li> </ul> </div><!-- SC_ON --> &#32; submitted by &#32; <a href="https://www.reddit.com/user/Mehrrun"> /u/Mehrrun </a> <br /> <span><a href="https://medium.com/@mehrrun/zero-day-alert-automated-discovery-of-critical-cwmp-stack-overflow-in-tp-link-routers-0bc495a08679">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1n5dil1/zeroday_alert_automated_discovery_of_critical/">[comments]</a></span>">ZERO-DAY ALERT: Automated Discovery of Critical CWMP Stack Overflow in TP-Link Routers</a><br>2025-08-30 - <a href="https://www.reddit.com/r/netsec/comments/1n43kvo/netskope_client_for_windows_local_privilege/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/AlmondOffSec"> /u/AlmondOffSec </a> <br /> <span><a href="https://blog.amberwolf.com/blog/2025/august/advisory---netskope-client-for-windows---local-privilege-escalation-via-rogue-server/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1n43kvo/netskope_client_for_windows_local_privilege/">[comments]</a></span>">Netskope Client for Windows - Local Privilege Escalation via Rogue Server (CVE-2025-0309)</a><br>2025-08-29 - <a href="https://www.reddit.com/r/netsec/comments/1n31plm/rage_against_the_authentication_state_machine/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/dn3t"> /u/dn3t </a> <br /> <span><a href="https://blog.silentsignal.eu/2025/06/14/gitblit-cve-CVE-2024-28080/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1n31plm/rage_against_the_authentication_state_machine/">[comments]</a></span>">Rage Against the Authentication State Machine (CVE-2024-28080)</a><br>2025-08-29 - <a href="https://www.reddit.com/r/netsec/comments/1n33j71/cache_me_if_you_can_sitecore_experience_platform/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/dx7r__"> /u/dx7r__ </a> <br /> <span><a href="https://labs.watchtowr.com/cache-me-if-you-can-sitecore-experience-platform-cache-poisoning-to-rce/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1n33j71/cache_me_if_you_can_sitecore_experience_platform/">[comments]</a></span>">Cache Me If You Can (Sitecore Experience Platform Cache Poisoning to RCE) - watchTowr Labs</a><br>2025-08-28 - <a href="https://www.reddit.com/r/netsec/comments/1n2falf/how_to_phish_users_on_android_applications_a_case/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/gdraperi"> /u/gdraperi </a> <br /> <span><a href="https://remoteawesomethoughts.blogspot.com/2025/08/how-to-phish-users-on-android.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1n2falf/how_to_phish_users_on_android_applications_a_case/">[comments]</a></span>">How to phish users on Android applications - A case study on Meta Threads application</a><br>2025-08-28 - <a href="https://www.reddit.com/r/netsec/comments/1n2fa6l/sliding_into_your_dms_abusing_microsoft_teams_for/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/permis0"> /u/permis0 </a> <br /> <span><a href="https://permiso.io/blog/sliding-into-your-dms-abusing-microsoft-teams-for-malware-delivery?hs_preview=VYVYybGX-195188659586">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1n2fa6l/sliding_into_your_dms_abusing_microsoft_teams_for/">[comments]</a></span>">Sliding into your DMs: Abusing Microsoft Teams for Malware Delivery</a><br>2025-08-29 - <a href="https://www.reddit.com/r/netsec/comments/1n3a1ll/ai_waifu_rat_a_ring3_malwarelike_rat_based_on_llm/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/Classic_Yesterday165"> /u/Classic_Yesterday165 </a> <br /> <span><a href="https://ryingo.gitbook.io/writeups-ai_waifu_rat">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1n3a1ll/ai_waifu_rat_a_ring3_malwarelike_rat_based_on_llm/">[comments]</a></span>">AI Waifu RAT: A Ring3 malware-like RAT based on LLM manipulation is circulating in the wild.</a><br><h2>/r/InfoSecNews</h2>2025-08-31 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n4y45b/whatsapp_0day_exploited_in_attacks_on_targeted/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n4y45b/whatsapp_0day_exploited_in_attacks_on_targeted/"> <img alt="WhatsApp 0-Day Exploited in Attacks on Targeted iOS and macOS Users" src="https://external-preview.redd.it/W6WcZlE63F7dFVgZb8R27TpKVRbKTCzPrHuK8BmQBZs.jpeg?width=640&amp;crop=smart&amp;auto=webp&amp;s=275a5084333dd1ad2b3541582f8177773eab463a" title="WhatsApp 0-Day Exploited in Attacks on Targeted iOS and macOS Users" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/jamessonnycrockett"> /u/jamessonnycrockett </a> <br /> <span><a href="https://hackread.com/whatsapp-0-day-exploit-attack-targeted-ios-macos-users/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n4y45b/whatsapp_0day_exploited_in_attacks_on_targeted/">[comments]</a></span> </td></tr></table>">WhatsApp 0-Day Exploited in Attacks on Targeted iOS and macOS Users</a><br>2025-08-31 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n501lg/feds_seize_fake_ids_marketplace_veriftoolsnet/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n501lg/feds_seize_fake_ids_marketplace_veriftoolsnet/"> <img alt="Feds Seize Fake IDs Marketplace VerifTools.Net, Operators Relaunch with VerifTools.com" src="https://external-preview.redd.it/lroiFcS_Sff5I-He2f269gQK89I-Um0xBIdINnxnppU.png?width=640&amp;crop=smart&amp;auto=webp&amp;s=274b32b39ba6c6e7f094f7b9025b77fa855b83a2" title="Feds Seize Fake IDs Marketplace VerifTools.Net, Operators Relaunch with VerifTools.com" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/jamessonnycrockett"> /u/jamessonnycrockett </a> <br /> <span><a href="https://hackread.com/feds-seize-veriftools-net-relaunch-veriftools-com/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n501lg/feds_seize_fake_ids_marketplace_veriftoolsnet/">[comments]</a></span> </td></tr></table>">Feds Seize Fake IDs Marketplace VerifTools.Net, Operators Relaunch with VerifTools.com</a><br>2025-08-30 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n408tk/hackers_exploit_crushftp_zeroday_to_take_over/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n408tk/hackers_exploit_crushftp_zeroday_to_take_over/"> <img alt="Hackers Exploit CrushFTP Zero-Day to Take Over Servers - Patch NOW!" src="https://external-preview.redd.it/2GeoOOG9ujXRUu1HngJ5cFJRkCRXsIaef3iVR8qo1p0.jpeg?width=640&amp;crop=smart&amp;auto=webp&amp;s=07ac51a4158ba90686d9189e52a7d01f4438be26" title="Hackers Exploit CrushFTP Zero-Day to Take Over Servers - Patch NOW!" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/jamessonnycrockett"> /u/jamessonnycrockett </a> <br /> <span><a href="https://hackread.com/hackers-exploit-crushftp-zero-day-take-over-servers/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n408tk/hackers_exploit_crushftp_zeroday_to_take_over/">[comments]</a></span> </td></tr></table>">Hackers Exploit CrushFTP Zero-Day to Take Over Servers - Patch NOW!</a><br>2025-08-30 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n44vyf/attackers_abuse_velociraptor_forensic_tool_to/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://thehackernews.com/2025/08/attackers-abuse-velociraptor-forensic.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n44vyf/attackers_abuse_velociraptor_forensic_tool_to/">[comments]</a></span>">Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling</a><br>2025-08-30 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3xkmv/whatsapp_issues_emergency_update_for_zeroclick/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://thehackernews.com/2025/08/whatsapp-issues-emergency-update-for.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n3xkmv/whatsapp_issues_emergency_update_for_zeroclick/">[comments]</a></span>">WhatsApp Issues Emergency Update for Zero-Click Exploit Targeting iOS and macOS Devices</a><br>2025-08-30 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3zmhk/lab_dookhtegan_hacking_group_disrupts/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3zmhk/lab_dookhtegan_hacking_group_disrupts/"> <img alt="Lab Dookhtegan hacking group disrupts communications on dozens of Iranian ships" src="https://external-preview.redd.it/AM5M3oBUKzWhhdIM3aBMn8vi9ESiElxHrO3CADyu18M.png?width=640&amp;crop=smart&amp;auto=webp&amp;s=dcad6341b10ddfe6d74956940eb531835b2c22ce" title="Lab Dookhtegan hacking group disrupts communications on dozens of Iranian ships" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://securityaffairs.com/181737/hacking/lab-dookhtegan-disrupts-comms-iranian-ships.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n3zmhk/lab_dookhtegan_hacking_group_disrupts/">[comments]</a></span> </td></tr></table>">Lab Dookhtegan hacking group disrupts communications on dozens of Iranian ships</a><br>2025-08-29 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3mgy3/new_zeroclick_exploit_allegedly_used_to_hack/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3mgy3/new_zeroclick_exploit_allegedly_used_to_hack/"> <img alt="New zero-click exploit allegedly used to hack WhatsApp users" src="https://external-preview.redd.it/NTlXoeNNCmk8dEth5mZ3IYjel6rFsDbEk8HpHh2rORc.jpeg?width=320&amp;crop=smart&amp;auto=webp&amp;s=98d5e4ca636e5756030747cac964b27046eb0655" title="New zero-click exploit allegedly used to hack WhatsApp users" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://securityaffairs.com/181714/intelligence/new-zero-click-exploit-allegedly-used-to-hack-whatsapp-users.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n3mgy3/new_zeroclick_exploit_allegedly_used_to_hack/">[comments]</a></span> </td></tr></table>">New zero-click exploit allegedly used to hack WhatsApp users</a><br>2025-08-29 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3hpal/8_malicious_npm_packages_stole_chrome_user_data/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3hpal/8_malicious_npm_packages_stole_chrome_user_data/"> <img alt="8 Malicious NPM Packages Stole Chrome User Data on Windows" src="https://external-preview.redd.it/s3BRnRBQYqkid2ruygN-pWN5BgpakN15IioBiRqY0fI.jpeg?width=640&amp;crop=smart&amp;auto=webp&amp;s=ffca6e97e2818fbaa3c0227e5e66012e158371bd" title="8 Malicious NPM Packages Stole Chrome User Data on Windows" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/jamessonnycrockett"> /u/jamessonnycrockett </a> <br /> <span><a href="https://hackread.com/malicious-npm-packages-stole-chrome-user-data-windows/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n3hpal/8_malicious_npm_packages_stole_chrome_user_data/">[comments]</a></span> </td></tr></table>">8 Malicious NPM Packages Stole Chrome User Data on Windows</a><br>2025-08-29 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3f0h6/dexter_resurrection_finale_leaks_online_in/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3f0h6/dexter_resurrection_finale_leaks_online_in/"> <img alt="Dexter: Resurrection Finale Leaks Online in Russian Dub" src="https://external-preview.redd.it/nCHgez6ynkN9OBGAY4K9neYgt6dF-PBXSX6fQzp2MjE.jpeg?width=640&amp;crop=smart&amp;auto=webp&amp;s=718e3ae03220b83394bc51147e2526591bb3ce02" title="Dexter: Resurrection Finale Leaks Online in Russian Dub" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/jamessonnycrockett"> /u/jamessonnycrockett </a> <br /> <span><a href="https://hackread.com/dexter-resurrection-finale-leaks-online-in-russian-dub/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n3f0h6/dexter_resurrection_finale_leaks_online_in/">[comments]</a></span> </td></tr></table>">Dexter: Resurrection Finale Leaks Online in Russian Dub</a><br>2025-08-29 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3a7yo/transunion_data_breach_44_million_us_consumers/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3a7yo/transunion_data_breach_44_million_us_consumers/"> <img alt="TransUnion Data Breach: 4.4 Million US Consumers’ Data Stolen" src="https://external-preview.redd.it/jl2JZnnRzP8WLTQKiNpu8NNZqBxWjkmNF1_tSj7Pmjg.jpeg?width=640&amp;crop=smart&amp;auto=webp&amp;s=442e240241cdc12c097ef5039687555d10e8f7ce" title="TransUnion Data Breach: 4.4 Million US Consumers’ Data Stolen" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/jamessonnycrockett"> /u/jamessonnycrockett </a> <br /> <span><a href="https://hackread.com/transunion-data-breach-4mil-us-consumer-data-stolen/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n3a7yo/transunion_data_breach_44_million_us_consumers/">[comments]</a></span> </td></tr></table>">TransUnion Data Breach: 4.4 Million US Consumers’ Data Stolen</a><br>2025-08-29 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3mhg7/researchers_warn_of_sitecore_exploit_chain/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://thehackernews.com/2025/08/researchers-warn-of-sitecore-exploit.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n3mhg7/researchers_warn_of_sitecore_exploit_chain/">[comments]</a></span>">Researchers Warn of Sitecore Exploit Chain Linking Cache Poisoning and Remote Code Execution</a><br>2025-08-29 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3ceir/fake_facebook_ads_install_brokewell_spyware_to/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3ceir/fake_facebook_ads_install_brokewell_spyware_to/"> <img alt="Fake Facebook Ads Install Brokewell Spyware to Android Users" src="https://external-preview.redd.it/-4wxk1-HYgSZeOSqcFmhK1t71DBDhkCV6cziKr7Au-E.jpeg?width=640&amp;crop=smart&amp;auto=webp&amp;s=76cbbf6b16e62c5a359b1b6796b7f0909f01a5bf" title="Fake Facebook Ads Install Brokewell Spyware to Android Users" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/jamessonnycrockett"> /u/jamessonnycrockett </a> <br /> <span><a href="https://hackread.com/fake-facebook-ads-brokewell-spyware-android-users/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n3ceir/fake_facebook_ads_install_brokewell_spyware_to/">[comments]</a></span> </td></tr></table>">Fake Facebook Ads Install Brokewell Spyware to Android Users</a><br>2025-08-29 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3co1h/abandoned_sogou_zhuyin_update_server_hijacked/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://thehackernews.com/2025/08/abandoned-sogou-zhuyin-update-server.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n3co1h/abandoned_sogou_zhuyin_update_server_hijacked/">[comments]</a></span>">Abandoned Sogou Zhuyin Update Server Hijacked, Weaponized in Taiwan Espionage Campaign</a><br>2025-08-29 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n3cn4f/amazon_disrupts_apt29_watering_hole_campaign/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://thehackernews.com/2025/08/amazon-disrupts-apt29-watering-hole.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n3cn4f/amazon_disrupts_apt29_watering_hole_campaign/">[comments]</a></span>">Amazon Disrupts APT29 Watering Hole Campaign Abusing Microsoft Device Code Authentication</a><br>2025-08-29 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n35m17/tamperedchef_malware_disguised_as_fake_pdf/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://thehackernews.com/2025/08/tamperedchef-malware-disguised-as-fake.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n35m17/tamperedchef_malware_disguised_as_fake_pdf/">[comments]</a></span>">TamperedChef Malware Disguised as Fake PDF Editors Steals Credentials and Cookies</a><br>2025-08-29 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n35lc8/feds_seize_64m_veriftools_fakeid_marketplace_but/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://thehackernews.com/2025/08/feds-seize-64m-veriftools-fake-id.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n35lc8/feds_seize_64m_veriftools_fakeid_marketplace_but/">[comments]</a></span>">Feds Seize $6.4M VerifTools Fake-ID Marketplace, but Operators Relaunch on New Domain</a><br>2025-08-28 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2ee4g/transunion_suffers_data_breach_impacting_over_44/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2ee4g/transunion_suffers_data_breach_impacting_over_44/"> <img alt="TransUnion suffers data breach impacting over 4.4 million people" src="https://external-preview.redd.it/Pf4i7jU8j_63GuprJJwxUvGkfXUulx-D0F2GeC_gBrU.jpeg?width=640&amp;crop=smart&amp;auto=webp&amp;s=334b6aac46958039bc225e4e594e4aaa0d77f2c2" title="TransUnion suffers data breach impacting over 4.4 million people" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://www.bleepingcomputer.com/news/security/transunion-suffers-data-breach-impacting-over-44-million-people/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n2ee4g/transunion_suffers_data_breach_impacting_over_44/">[comments]</a></span> </td></tr></table>">TransUnion suffers data breach impacting over 4.4 million people</a><br>2025-08-28 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2lppt/cisa_adds_citrix_and_git_flaws_to_kev_catalogue/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2lppt/cisa_adds_citrix_and_git_flaws_to_kev_catalogue/"> <img alt="CISA Adds Citrix and Git Flaws to KEV Catalogue Amid Active Exploitation" src="https://external-preview.redd.it/Zrm61FUSGROXSRXb44NhrzKQfeic37ZpHjbpDI3O2Xw.jpeg?width=640&amp;crop=smart&amp;auto=webp&amp;s=613a38b5f08b18427d68522ce53cdfd5f695b15f" title="CISA Adds Citrix and Git Flaws to KEV Catalogue Amid Active Exploitation" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/jamessonnycrockett"> /u/jamessonnycrockett </a> <br /> <span><a href="https://hackread.com/cisa-citrix-git-flaw-kev-catalog-amid-active-exploitation/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n2lppt/cisa_adds_citrix_and_git_flaws_to_kev_catalogue/">[comments]</a></span> </td></tr></table>">CISA Adds Citrix and Git Flaws to KEV Catalogue Amid Active Exploitation</a><br>2025-08-28 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2ff7l/thousands_of_developer_credentials_stolen_in/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2ff7l/thousands_of_developer_credentials_stolen_in/"> <img alt="Thousands of Developer Credentials Stolen in macOS “s1ngularity” Attack" src="https://external-preview.redd.it/Zw8zdhuN0J1G8bH8humUtGbML7_F3vp0sQ49SYfZvGY.jpeg?width=640&amp;crop=smart&amp;auto=webp&amp;s=c2efc79b1c34723b578516f0b9c070a6d0411cb7" title="Thousands of Developer Credentials Stolen in macOS “s1ngularity” Attack" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/jamessonnycrockett"> /u/jamessonnycrockett </a> <br /> <span><a href="https://hackread.com/developer-credentials-stolen-macos-s1ngularity-attack/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n2ff7l/thousands_of_developer_credentials_stolen_in/">[comments]</a></span> </td></tr></table>">Thousands of Developer Credentials Stolen in macOS “s1ngularity” Attack</a><br>2025-08-28 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2car9/uk_us_and_allies_blame_three_chinese_tech_firms/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2car9/uk_us_and_allies_blame_three_chinese_tech_firms/"> <img alt="UK, US and Allies Blame Three Chinese Tech Firms for Global Cyberattacks" src="https://external-preview.redd.it/ZYYcErzBJibRa0d2SXyKW7k_OUvJvO8unYBAs0RiLgE.jpg?width=640&amp;crop=smart&amp;auto=webp&amp;s=dc30d59037ac954a1bfa4da9b2fbf7f0cc1b4070" title="UK, US and Allies Blame Three Chinese Tech Firms for Global Cyberattacks" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/jamessonnycrockett"> /u/jamessonnycrockett </a> <br /> <span><a href="https://hackread.com/uk-us-blame-3-chinese-tech-firms-global-cyberattacks/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n2car9/uk_us_and_allies_blame_three_chinese_tech_firms/">[comments]</a></span> </td></tr></table>">UK, US and Allies Blame Three Chinese Tech Firms for Global Cyberattacks</a><br>2025-08-28 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2efki/malicious_nx_packages_in_s1ngularity_attack/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://thehackernews.com/2025/08/malicious-nx-packages-in-s1ngularity.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n2efki/malicious_nx_packages_in_s1ngularity_attack/">[comments]</a></span>">Malicious Nx Packages in ‘s1ngularity’ Attack Leaked 2,349 GitHub, Cloud, and AI Credentials</a><br>2025-08-28 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2iqrr/200_swedish_municipalities_impacted_by_a_major/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2iqrr/200_swedish_municipalities_impacted_by_a_major/"> <img alt="200 Swedish municipalities impacted by a major cyberattack on IT provider" src="https://external-preview.redd.it/2M44dWkNLP_lD8lHrF1sitaH5qzD8hk1oJbnKbieo8o.jpeg?width=640&amp;crop=smart&amp;auto=webp&amp;s=492f036a6a3075cfdc802fd10f18ab09c4e79d1b" title="200 Swedish municipalities impacted by a major cyberattack on IT provider" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://securityaffairs.com/181668/security/200-swedish-municipalities-impacted-by-a-major-cyberattack-on-it-provider.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n2iqrr/200_swedish_municipalities_impacted_by_a_major/">[comments]</a></span> </td></tr></table>">200 Swedish municipalities impacted by a major cyberattack on IT provider</a><br>2025-08-28 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2iqfk/salt_typhoon_exploits_cisco_ivanti_palo_alto/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://thehackernews.com/2025/08/salt-typhoon-exploits-cisco-ivanti-palo.html">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n2iqfk/salt_typhoon_exploits_cisco_ivanti_palo_alto/">[comments]</a></span>">Salt Typhoon Exploits Cisco, Ivanti, Palo Alto Flaws to Breach 600 Organizations Worldwide</a><br>2025-08-28 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2ipa0/matlab_dev_says_ransomware_gang_stole_data_of/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2ipa0/matlab_dev_says_ransomware_gang_stole_data_of/"> <img alt="MATLAB dev says ransomware gang stole data of 10,000 people" src="https://external-preview.redd.it/hrf_IM8CdWrTwjvqd0uLKOKR7d6GmbUCxvbRFuFZAEA.jpeg?width=640&amp;crop=smart&amp;auto=webp&amp;s=eefa8621fa79f7da44bacb1503f953d34d99d4c5" title="MATLAB dev says ransomware gang stole data of 10,000 people" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://www.bleepingcomputer.com/news/security/matlab-dev-says-ransomware-gang-stole-data-of-over-10-000-people/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n2ipa0/matlab_dev_says_ransomware_gang_stole_data_of/">[comments]</a></span> </td></tr></table>">MATLAB dev says ransomware gang stole data of 10,000 people</a><br>2025-08-28 - <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2ioln/passwordstate_dev_urges_users_to_patch_auth/" title="<table> <tr><td> <a href="https://www.reddit.com/r/InfoSecNews/comments/1n2ioln/passwordstate_dev_urges_users_to_patch_auth/"> <img alt="Passwordstate dev urges users to patch auth bypass vulnerability" src="https://external-preview.redd.it/YgoWO5R6QgAOhe4534XpZcriikLYAXKvp7o0ueAJVIw.jpeg?width=640&amp;crop=smart&amp;auto=webp&amp;s=4cae720211340dbea47ac4fa6e97a1c522bb91b8" title="Passwordstate dev urges users to patch auth bypass vulnerability" /> </a> </td><td> &#32; submitted by &#32; <a href="https://www.reddit.com/user/quellaman"> /u/quellaman </a> <br /> <span><a href="https://www.bleepingcomputer.com/news/security/passwordstate-dev-urges-users-to-patch-auth-bypass-vulnerability-as-soon-as-possible/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/InfoSecNews/comments/1n2ioln/passwordstate_dev_urges_users_to_patch_auth/">[comments]</a></span> </td></tr></table>">Passwordstate dev urges users to patch auth bypass vulnerability</a><br><h2>
</h2>