IT Security News Daily Summary 2025-08-28

210 posts were published in the last hour

• 21:36 : Microsoft Will Start Delivering Windows Quality Updates During Setup Soon
• 21:36 : Salt Typhoon Cyber Spies Breached 80+ Nations, FBI Warns
• 20:35 : Securing the AI “Before Times”
• 20:35 : Check Point Named Leader in Gartner 2025 Magic Quadrant for Hybrid Mesh Firewalls
• 20:35 : Hackers Abuse Microsoft Teams to Gain Remote Access on Windows With PowerShell-based Malware
• 20:35 : South Korea Arrests Suspected Chinese Hacker Stolen Tens of Millions of Dollars from Victims
• 20:35 : Innovator Spotlight: ManageEngine
• 20:35 : Not in my browser! Vivaldi capo doubles down on generative AI ban
• 20:35 : DHS says it needs $100M worth of counter-drone tech to protect America
• 20:8 : IT Security News Hourly Summary 2025-08-28 21h : 12 posts
• 19:35 : CISA Adds Citrix and Git Flaws to KEV Catalogue Amid Active Exploitation
• 19:35 : Why I recommend this $700 Lenovo laptop to both college students and working professionals
• 19:35 : I found a smart air purifier that doubles as a pet bed (and my cat loves it)
• 19:35 : I left my home with a robot vacuum on auto-pilot for 10 days – here are the results
• 19:35 : I asked Google Finance’s AI chatbot what stocks to buy – and its answer surprised me
• 19:35 : FBI, Dutch cops seize fake ID marketplace that sold identity docs for $9
• 19:35 : How MCP in SaaS Security Helps You Outrun SaaS and AI Risks
• 19:7 : AI-Powered Ransomware: PromptLock
• 19:7 : How does China keep stealing our stuff, wonders DoD group responsible for keeping foreign agents out
• 18:38 : These 3 tablet charging habits are slowly killing your device – here’s what to do instead
• 18:38 : This Qi2 battery pack from Anker just made wireless charging essential for me
• 18:10 : Link up, lift up, level up
• 18:9 : How SafeLine WAF Turns Hackers’ Scanners into Trash
• 18:9 : Best Costco Labor Day deals 2025: 15+ sales up to $1,700 off
• 18:9 : Best Labor Day phone deals 2025: Save up to $300 on Samsung, Google, and more
• 18:9 : T-Mobile will give you 4 free iPhone 16 phones right now – here’s how to get yours
• 18:9 : How I lock and hide apps in a secret folder on my iPhone – and why
• 18:9 : You can now talk finance with Google’s newest AI chatbot – here’s how
• 18:9 : Researchers Find VS Code Flaw Allowing Attackers to Republish Deleted Extensions Under Same Names
• 17:37 : Affiliates Flock to ‘Soulless’ Scam Gambling Machine
• 17:23 : State of Nevada Faces IT Outage Amid Cyberattack, Offices Suspended
• 17:23 : Cisco IMC Virtual Keyboard Vulnerability Allows Attackers to Redirect Users to Malicious Websites
• 17:23 : Cisco UCS Manager Software Flaw Allows Attackers to Inject Malicious Commands
• 17:23 : DJI’s ultralight wireless Mic 3 captures great audio – even in tricky situations
• 17:23 : The 13+ best Labor Day deals live now: Save on Apple, Samsung and more
• 17:23 : Your Samsung phone has a secret Wi-Fi menu that’s incredibly useful – how to access it
• 17:23 : This Qi2 MagSafe battery pack is the best one I’ve tested so far – and it’s super slim
• 17:23 : OpenAI gives its voice agent superpowers to developers – look for more apps soon
• 17:23 : What is network security? Definition and best practices
• 17:23 : CISA Releases Nine Industrial Control Systems Advisories
• 17:23 : GE Vernova CIMPLICITY
• 17:23 : Delta Electronics CNCSoft-G2
• 17:23 : Schneider Electric Saitel DR & Saitel DP Remote Terminal Unit
• 17:22 : Mitsubishi Electric MELSEC iQ-F Series CPU Module
• 17:22 : MathWorks Confirms Cyberattack, User Personal Information Stolen
• 17:22 : BadSuccessor Post-Patch: Leveraging dMSAs for Credential Acquisition and Lateral Movement in Active Directory
• 17:22 : Hackers Abuse Microsoft Teams to Gain Remote Access With PowerShell-based Malware
• 17:22 : 16 billion credentials exposed: why your business needs a password manager now
• 17:6 : IT Security News Hourly Summary 2025-08-28 18h : 24 posts
• 16:17 : Wordfence Intelligence Weekly WordPress Vulnerability Report (August 18, 2025 to August 24, 2025)
• 16:17 : Threat Actors Exploit Velociraptor Incident Response Tool for Remote Access
• 16:17 : Your Windows PC just got a big Bluetooth audio upgrade from Microsoft – hear the difference
• 16:17 : 3 smart ways business leaders can build successful AI strategies – before it’s too late
• 16:17 : How AI agents can eliminate waste in your business – and why that’s smarter than cutting costs
• 16:17 : Hackers Attempted to Misuse Claude AI to Launch Cyber Attacks
• 16:17 : Farmers Insurance Cyber Attack – 1.1 Million Customers Data Exposed in Salesforce Attack
• 16:16 : Cisco Nexus 3000 and 9000 Series Vulnerability Let Attackers Trigger DoS Attack
• 16:16 : Nevada IT Systems Hit by Cyberattack – State Office Closed for Two Days
• 16:16 : Threat Actors Abuse Velociraptor Incident Response Tool to Gain Remote Access
• 16:16 : Halo Security Enhances Platform with Custom Dashboards and Reports
• 16:16 : Data Portability and Sovereign Clouds: Building Resilience in a Globalized Landscape
• 15:44 : Thousands of Developer Credentials Stolen in macOS “s1ngularity” Attack
• 15:44 : Electronics Manufacturer Data I/O Suffers Ransomware Breach
• 15:44 : Cry and Authenticate How AI is Changing Security
• 15:43 : Miss your landline? Verizon’s new Family Line lets 5 phones share one number
• 15:43 : The 16 best Walmart Labor Day deals 2025: Sales on Apple, Samsung, LG, and more
• 15:43 : 7 ways to use Copilot in classic Outlook – and why I ultimately turned it off
• 15:43 : These $250 XR glasses turned my Nintendo Switch into a 200-inch full-screen experience
• 15:43 : Cyber Security Simulation Training Mistakes That CISOs Must Avoid
• 15:43 : Why Enterprises Need Preemptive Cybersecurity to Combat Modern Phishing
• 15:20 : Increasing Searches for ZIP Files, (Thu, Aug 28th)
• 15:20 : Anthropic Blocks Hackers Attempting to Exploit Claude AI for Cyber Attacks
• 15:20 : Finally, a pair of earbuds that stay put when I run (and they’re only $40)
• 15:20 : My favorite bone conduction headphones just got 3 major upgrades – and they’ve spoiled me
• 15:20 : My Apple Watch still beats Oura Ring – except for one killer feature I wish Apple would steal
• 15:19 : How Gemini’s ‘on-premise’ upgrade could help your enterprise and advance sovereign AI
• 15:19 : 200 Swedish municipalities impacted by a major cyberattack on IT provider
• 15:19 : Cisco IMC Virtual Keyboard Video Monitor Let Attacker Direct User to Malicious Website
• 15:19 : UTG-Q-1000 Group Weaponizing Subsidy Schemes to Exfiltrate Sensitive Data
• 15:19 : With Ransomware Attacks Surging, Eliminate Silos and Tap Genai to Strengthen Threat Intelligence
• 15:19 : Microsoft wants to automatically save your Word docs to the cloud
• 15:19 : SK Telecom walloped with $97M fine after schoolkid security blunders let attackers run riot
• 15:19 : Cyberattack on New York Business Council Exposes Thousands to Risk
• 15:19 : Salt Typhoon Exploits Cisco, Ivanti, Palo Alto Flaws to Breach 600 Organizations Worldwide
• 15:19 : Fake IT Support Attacks Hit Microsoft Teams
• 14:37 : Farmers Insurance Breach Exposes Data of 1.1 Million Customers via Salesforce Compromise
• 14:37 : Weaponized ScreenConnect RMM Tool Deceives Users into Installing Xworm RAT
• 14:37 : Google Identifies ‘Widespread Data Theft’ Impacting Salesforce-Salesloft Drift Users
• 14:37 : New York Attorney General Sues Zelle Parent Over Fraud Failures, Raising Stakes for Real-Time Payment Security
• 14:18 : UK and US Blame Three Chinese Tech Firms for Global Cyberattacks
• 14:18 : ShadowSilk Targets Penetration-Testing Tools and Public Exploits to Breach Organizations
• 14:18 : Lazarus Group Targets Windows 11 with ClickFix Tactics and Fake Job Offers
• 14:17 : How Healthy Is Your Data in the Age of AI? An In-Depth Checklist to Assess Data Accuracy, Governance, and AI Readiness
• 14:17 : Cyber Attacks Surge Against Education Sector Ahead of Back-to-School Season
• 14:17 : 7 ways to use Copilot in classic Outlook – and why I disabled it
• 14:17 : 9 iPhone 17 Air rumors I’m tracking – and why Apple’s ultra-thin model is set to kill the Plus
• 14:17 : AppSuite PDF Editor Backdoor: A Detailed Technical Analysis
• 14:17 : TransUnion discloses a data breach impacting over 4.4 million customers
• 14:17 : New Research Highlights Emulating Tactics of Scattered Spider in Realistic Scenarios
• 14:17 : New TamperedChef Attack With Weaponized PDF Editor Steals Sensitive Data and Login Credentials
• 14:17 : FreePBX Servers Hacked in 0-Day Attack – Admins are Urged to Disable Internet Access
• 14:17 : Thousands of Citrix NetScaler boxes still sitting ducks despite patches
• 14:17 : TransUnion admits 4.5M affected after third-party support app breached
• 14:17 : China’s Salt Typhoon Hacked Critical Infrastructure Globally for Years
• 14:17 : Webinar: Why Top Teams Are Prioritizing Code-to-Cloud Mapping in Our 2025 AppSec
• 14:17 : Netherlands Confirms China’s Salt Typhoon Targeted Small Dutch Telcos
• 14:5 : IT Security News Hourly Summary 2025-08-28 15h : 12 posts
• 13:6 : FreePBX Servers Hit by 0-Day Exploit, Disable Internet Access Advised
• 13:6 : You Can’t Protect What You Can’t See
• 13:6 : Ransomware crooks knock Swedish municipalities offline for measly sum of $168K
• 13:6 : Breaking the Passkey Promise: SquareX Discloses Major Passkey Vulnerability at DEF CON 33
• 13:6 : Orange Belgium Hit by Cyberattack Affecting 850,000 Customers
• 13:5 : Hackers Disclose Why They Targeted North Korean Government Hackers
• 13:5 : Malicious VS Code Extensions Exploit Name Reuse Loophole
• 12:45 : Google Big Sleep AI Tool Finds Critical Chrome Vulnerability
• 12:45 : U.S. Treasury Sanctions North Korean IT Worker Network Funding Weapons Programs
• 12:45 : How I cut my monthly cloud storage bill in half – with 5 tough decisions
• 12:45 : TransUnion says hackers stole 4.4 million customers’ personal information
• 12:45 : NSA, NCSC, and allies detailed TTPs associated with Chinese APT actors targeting critical infrastructure Orgs
• 12:45 : Cloudflare Launches MCP Server Portals – A Unified Gateway to All MCP Servers
• 12:45 : “No place in our networks”: FCC hangs up on thousands of voice operators in robocall war
• 12:45 : Euro banks block billions in rogue PayPal direct debits after fraud glitch
• 12:45 : CrowdStrike to Acquire Onum to Fuel Falcon Next-Gen SIEM With Real-Time Telemetry
• 12:45 : Agentic AI coding assistant helped attacker breach, extort 17 distinct organizations
• 12:45 : Hidden Vulnerabilities of Project Management Tools & How FluentPro Backup Secures Them
• 12:45 : Nevada Confirms Ransomware Attack, State Data Stolen
• 11:42 : The Role of Enterprise Email Security in Modern Cybersecurity Strategies
• 11:42 : CISA Publish Hunting and Mitigation Guide to Defend Networks from Chinese State-Sponsored Actors
• 11:42 : NX Build Tool Hacked with Malware That Checks for Claude or Gemini to Find Wallets and Secrets
• 11:42 : CrowdStrike Set to Acquire Onum in $290 Million Deal to Enhance Falcon Next-Gen SIEM
• 11:41 : Claude AI chatbot abused to launch “cybercrime spree”
• 11:41 : Law firm email blunder exposes Church of England abuse victim details
• 11:41 : Webinar Today: Ransomware Defense That Meets Evolving Compliance Mandates
• 11:41 : The API Security Reality Check: Key Takeaways from Q2 2025 API ThreatStats Report
• 11:11 : TAOTH Campaign Exploits End-of-Support Software to Target Traditional Chinese Users and Dissidents
• 11:11 : First AI-Powered Ransomware “PromptLock” Uses OpenAI gpt-oss-20b for Encryption
• 11:11 : New Research Explores Emulating Scattered Spider Tactics in Real-World Scenarios
• 11:11 : Cisco Nexus 3000 & 9000 Vulnerability Enables DoS Attacks
• 11:11 : The best GaN chargers of 2025: Expert tested
• 11:11 : Two subscription-free smart rings were just banned in the US – here’s why
• 11:11 : The UK May Be Dropping Its Backdoor Mandate
• 11:11 : Hackers Target Popular Nx Build System in First AI-Weaponized Supply Chain Attack
• 11:11 : Malicious Nx Packages in ‘s1ngularity’ Attack Leaked 2,349 GitHub, Cloud, and AI Credentials
• 10:10 : Integrating Code Insight into Reverse Engineering Workflows
• 10:10 : Microsoft Unveils Storm-0501’s Cloud-Based Ransomware Deployment Tactics
• 10:10 : BadSuccessor After Patch: Using dMSAs for Credential Theft and Lateral Movement in AD
• 10:10 : The best Samsung tablets of 2025: Expert tested and reviewed
• 10:10 : The best iPad stylus of 2025: We took notes with the top picks
• 10:10 : I compared a standard Wi-Fi router with a mesh setup – here’s which one I recommend
• 10:9 : U.S. Treasury Sanctions DPRK IT-Worker Scheme, Exposing $600K Crypto Transfers and $1M+ Profits
• 10:9 : Chinese Tech Firms Linked to Salt Typhoon Espionage Campaigns
• 9:37 : The best Raspberry Pi alternatives of 2025: Expert recommended
• 9:37 : Anthropic’s Claude Chrome browser extension rolls out – how to get early access
• 9:8 : Best data removal services 2025: Delete yourself from the internet
• 9:8 : Why this Suunto sports watch quickly became one of my favorites for fitness and travel
• 9:7 : A foldable iPhone in 2025? Probably not, but these 5 rumors bring the hype
• 9:7 : UNC6395 targets Salesloft in Drift OAuth token theft campaign
• 9:7 : Kea DHCP Server Vulnerability Let Remote Attacker With a Single Crafted Packet
• 9:7 : TAG-144 Actors Attacking Government Entities With New Tactics, Techniques, and Procedures
• 9:7 : Crypto Companies Freeze $47m in Romance Baiting Funds
• 8:33 : How to disable ACR on your TV – and why it makes such a big difference
• 8:33 : Can We Really Eliminate Human Error in Cybersecurity?
• 8:33 : Ransomware Actor Deletes Data and Backups Post-Exfiltration on Azure
• 8:7 : New TamperedChef Attack Uses Weaponized PDF Editor to Steal Sensitive Data and Login Credentials
• 8:7 : New Research and PoC Reveal Security Risks in LLM-Based Coding
• 8:7 : I unlocked 15GB more Gmail storage for free – without deleting a single email or file
• 8:7 : I used these 11 hidden Fire TV remote shortcuts to unlock new features and menus
• 8:7 : I did not expect these Sony headphones to set such a high bar for immersive audio
• 8:7 : 7 rules to follow for the best home security camera footage (and places to avoid setup)
• 8:7 : Microsoft Unveils Storm-0501’s Advanced Cloud Ransomware Attack Tactics
• 8:7 : If you thought China’s Salt Typhoon was booted off critical networks, think again
• 8:6 : Why Traditional Zero-Trust Breaks Down with Agentic Identities
• 8:5 : IT Security News Hourly Summary 2025-08-28 09h : 2 posts
• 7:37 : CISA Issues Alert on Citrix NetScaler 0-Day RCE Exploited in the Wild
• 7:37 : CISA Releases Guide to Hunt and Mitigate Chinese State-Sponsored Threats
• 7:37 : Cycuity Radix-ST identifies security weaknesses earlier in chip design
• 7:36 : Salt Typhoon expands, AI-powered ransomware, Anthropic warns of vibe-hacking
• 7:7 : This Bluetooth tracker earned my trust over AirTags (and it works on Android, too)
• 7:7 : The Biggest Technology Risk to Organizations is Failing to Plan for Cybersecurity Chaos
• 6:35 : New Malware Attack Exploiting TASPEN’s Legacy to Target Indonesian Senior Citizens
• 6:35 : CISA Warns of Citrix Netscaler 0-day RCE Vulnerability Exploited in Attacks
• 6:4 : Microsoft Teams Flaw Prevents Users From Accessing Embedded Office Files
• 6:4 : Where security, DevOps, and data science finally meet on AI strategy
• 6:4 : ScamAgent shows how AI could power the next wave of scam calls
• 5:35 : Over 28,000 Citrix Servers at Risk from Active 0-Day RCE Exploit
• 5:35 : Underground Ransomware Gang With New Tactics Against Organizations Worldwide
• 5:35 : NSA, FBI, Others Say Chinese Tech Firms are Aiding Salt Typhoon Attacks
• 5:6 : Google goes live with on-premise Gemini AI
• 5:6 : Maritime cybersecurity is the iceberg no one sees coming
• 5:5 : IT Security News Hourly Summary 2025-08-28 06h : 5 posts
• 4:33 : Caltech breakthrough makes quantum memory last 30 times longer
• 4:33 : Can AI make threat intelligence easier? One platform thinks so
• 4:3 : How CISOs are balancing risk, pressure and board expectations
• 3:36 : Don’t let “back to school” become “back to (cyber)bullying”
• 3:35 : 28,000+ Citrix Instances Exposed to Active 0-Day RCE Vulnerability Exploited in the Wild
• 3:35 : Microsoft Teams Issue Blocks Users From Opening Embedded Office Documents
• 3:35 : The Rise of the “Shadow AI Economy”: Employees Outpace Companies in AI Adoption
• 2:32 : ISC Stormcast For Thursday, August 28th, 2025 https://isc.sans.edu/podcastdetail/9590, (Thu, Aug 28th)
• 2:32 : Some teachers are using AI to grade their students, Anthropic finds – why that matters
• 2:32 : I switched to the Google Pixel 10 from an iPhone 16, and it was surprisingly delightful
• 2:32 : A week later with Google Pixel 10 Pro: These upgrades are convincing me to leave Samsung
• 2:5 : IT Security News Hourly Summary 2025-08-28 03h : 5 posts
• 0:5 : CISA and Partners Providing Real-Time Incident Response to Cyber Attack on State of Nevada
• 0:5 : ChatGPT hates LA Chargers fans
• 0:5 : KnowBe4 Report Reveals Global Financial Sector Faces Unprecedented Cyber Threat Surge
• 0:5 : Keeper Security Launches KeeperAI
• 0:5 : Ziplining into the Minds of US Supply Chains
• 23:5 : I still prefer Apple Watch over Oura Ring for 3 key reasons – but there is one big drawback
• 22:37 : First AI-Powered Ransomware PromptLock Targets Windows, Linux and macOS
• 22:37 : Chinese Hacker Suspect Arrested in South Korea Over Major Financial Cyberattack