IT Security News Daily Summary 2025-07-24

206 posts were published in the last hour

• 21:32 : Coyote malware is first-ever malware abusing Windows UI Automation
• 21:32 : Euro healthcare giant AMEOS Group shuts down IT systems after mystery attack
• 21:3 : CISA Recommends Segmentation & Zero Trust to Combat Interlock Ransomware
• 21:3 : Post-quantum TLS in Python
• 20:5 : IT Security News Hourly Summary 2025-07-24 21h : 28 posts
• 20:2 : How extortionware, cyberextortion and ransomware differ
• 20:2 : Every Mac model that upgrades to MacOS 26 Tahoe (and which aren’t compatible)
• 19:34 : Hive0156 Hackers Targeting Government and Military Organizations to Deploy REMCOS RAT
• 19:34 : AI-Powered Cyber Attacks Utilize ML Algorithms to Deploy Malware and Circumvent Traditional Security
• 19:34 : Buy the Motorola Razr Ultra at $200 off and get a free smartwatch too
• 19:3 : Surge in Phishing Attacks Exploiting Spoofed SharePoint Domains and Sneaky 2FA Tactics
• 19:3 : Secure Microservices in Java: Cloud-Native Design With Zero Trust Architecture
• 19:3 : SharePoint Zero-Day Exploited in the Wild: Patching
• 19:3 : The iOS 26 public beta is out now – How to install (and which iPhones support it)
• 19:3 : GitHub’s AI-powered Spark lets you build apps using natural language – here’s how to access it
• 19:3 : How to install the iPadOS 26 public beta (and which iPad models support it)
• 18:35 : APT28 Hackers Unveil First LLM-Powered Malware, Enhancing Attack Techniques with AI
• 18:35 : The MacOS 26 public beta is here – How to install (and which models support it)
• 18:35 : The iOS 26 public beta is out now – How to install (and which phones support it)
• 18:35 : No login? No problem: Cisco ISE flaw gave root access before fix arrived, say researchers
• 18:35 : Surges in Cyber Activity Accompany Regional Military Operations
• 18:35 : Fire Ant Exploits VMware Flaws to Compromise ESXi Hosts and vCenter Environments
• 18:35 : Critical Mitel Flaw Lets Hackers Bypass Login, Gain Full Access to MiVoice MX-ONE Systems
• 18:35 : AWS Security Incident Response: The customer’s journey to accelerating the incident response lifecycle
• 18:7 : BRB, pausing for a “Sanctuary Moon” marathon
• 18:7 : Social Media Companies Appeal Italy VAT Claim
• 18:7 : Silicon In Focus Podcast: Beyond Automation: Where AI ends and human potential begins
• 18:7 : Figma Seeks Up To $16bn Valuation With NYSE IPO
• 18:7 : US Lawmakers Press Tech Giants Over Cable Security
• 18:7 : X Denies French Bias Allegations
• 18:7 : Top IT Staff Augmentation Companies in USA 2025
• 18:7 : You can get an iPhone 16 Pro from T-Mobile for free – with no trade-in required
• 18:7 : How to clear your iPhone cache (and why you should do it before installing iOS 26 public beta)
• 18:6 : Faster Qi2 wireless charging coming to iPhones and some Android phones
• 18:6 : Phishers Target Aviation Execs to Scam Customers
• 18:6 : SharePoint 0-day Vulnerability Exploited in Wild by All Sorts of Hacker Groups
• 18:6 : TP-Link Network Video Recorder Vulnerability Let Attackers Execute Arbitrary Commands
• 18:6 : So much for watermarks: UnMarker tool nukes AI provenance tags
• 17:33 : You can turn your Google Photos into video clips now – here’s how
• 17:33 : WatchOS 26 public beta is here – here are the features you’ll get
• 17:33 : I finally found a wall charger than can replace my AirTag when I travel – and it works in 150 countries
• 17:33 : Apple’s iOS 26 and iPadOS 26 public betas are here: How to access and why you’ll want to
• 17:33 : Brave browser will block Microsoft Recall from tracking your online activity
• 17:32 : First Known LLM-Powered Malware From APT28 Hackers Integrates AI Capabilities into Attack Methodology
• 17:32 : How Tech Democratization Is Helping SMBs Tackle 2025’s Toughest Challenges
• 17:5 : IT Security News Hourly Summary 2025-07-24 18h : 15 posts
• 17:4 : Replit AI Agent Deletes Sensitive Data Despite Explicit Instructions
• 17:4 : Microsoft fixes SharePoint zero-day exploits used in cyberattacks and ransomware – how to patch them
• 17:4 : My cat Norbert gives this automatic wet food feeder two paws up, and it’s on sale
• 17:4 : 1 in 3 Americans ask ChatGPT to help them find a new job, study finds
• 17:4 : Why I recommend this Asus laptop over the MacBook Pro to creators and professionals
• 17:4 : A Premium Luggage Service’s Web Bugs Exposed the Travel Plans of Every User—Including Diplomats
• 17:4 : One small qubit, one giant leap for quantum computing
• 17:3 : Microsoft: SharePoint attacks now officially include ransomware infections
• 16:33 : T‑Mobile’s Starlink service is now available to anyone on any carrier – how to sign up
• 16:33 : Hacker slips malicious ‘wiping’ command into Amazon’s Q AI coding assistant – and devs are worried
• 16:33 : These XR glasses gave me a 200-inch screen to work with – and now I might ditch my monitors
• 16:33 : The best reading tablets of 2025 for poolside reading and more
• 16:33 : You can buy Lenovo’s ‘rollable’ laptop now – not cheap, but packed with killer specs
• 16:33 : A Premium Luggage Service’s Web Bugs Exposed the Travel Plans of Every User—Including Diplomats
• 16:33 : Here’s How Everyday Tech Is Being Weaponized to Deploy Trojan
• 16:33 : CastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix Phishing
• 16:5 : Everything you need for college: Tech gadgets to make school easier
• 16:4 : NoName057(16)’s Hackers Attacked 3,700 Unique Devices Over Last Thirteen Months
• 16:4 : Threat Actors Weaponizing .hwp Files to Deliver RokRAT Malware
• 16:4 : Coyote malware abuses Microsoft’s UI Automation to hunt banking creds
• 16:4 : Cognizant Agents Gave Hackers Passwords, Clorox Says in Lawsuit
• 16:4 : Storm-2603 spotted deploying ransomware on exploited SharePoint servers
• 16:4 : Malware Campaign Masquerades as Dating Apps to Steal Data
• 15:36 : Meta Ray-Bans vs. Oakley: I tested both smart glasses, there’s a clear winner
• 15:36 : Xreal wants you to dump your Meta Ray-Bans with this trade-in deal – here’s how it works
• 15:36 : Mitsubishi Electric CNC Series
• 15:36 : Network Thermostat X-Series WiFi Thermostats
• 15:36 : Honeywell Experion PKS
• 15:36 : Cybercrime forum Leak Zone publicly exposed its users’ IP addresses
• 15:36 : The EFF is 35, but the battle to defend internet freedom is far from over
• 15:36 : Sophos and SonicWall Patch Critical RCE Flaws Affecting Firewalls and SMA 100 Devices
• 15:3 : Elephant APT Group Exploits VLC Player and Encrypted Shellcode in Attacks on Defense Sector
• 15:3 : I powered my home for two weeks with this portable power station (and it’s $500 off)
• 15:3 : AI slop and fake reports are exhausting some security bug bounties
• 15:3 : FBI Exposes The Com’s Criminal Activities and Involvement of Minors
• 14:36 : Wordfence Intelligence Weekly WordPress Vulnerability Report (July 14, 2025 to July 20, 2025)
• 14:36 : Bloomberg Comdb2 null pointer dereference and denial-of-service vulnerabilities
• 14:36 : Active Exploitation of Microsoft SharePoint Vulnerabilities: Threat Brief (Updated July 24)
• 14:35 : Back to Business: Lumma Stealer Returns with Stealthier Methods
• 14:35 : Proactive Security and Insights for SharePoint Attacks (CVE-2025-53770 and CVE-2025-53771)
• 14:35 : Threat Actors Using .hwp Files to Distribute RokRAT Malware and Evade Detection Mechanisms
• 14:35 : This soundbar delivers audio above its price point, and it’s not by Sonos or JBL
• 14:35 : Microsoft SharePoint Zero-Day Disrupts Servers Worldwide
• 14:35 : Introducing OSS Rebuild: Open Source, Rebuilt to Last
• 14:35 : Compromised Amazon Q extension told AI to delete everything – and it shipped
• 14:5 : Cybercrime Forum XSS Returns on Mirror and Dark Web 1 Day After Seizure
• 14:5 : NoName057(16) Hackers Target 3,700 Unique Devices Over the Last 13 Months
• 14:5 : Proactive Security for MSPs: 4 Steps to Reduce Risk and Improve Margins
• 14:5 : 7 ways Linux can lower your tech costs – and extend the life of your devices
• 14:5 : EcoFlow’s new DC-only portable power stations could replace my current setup
• 14:5 : Google Photos is using AI to turn your photos into videos and remix them – try it for free
• 14:5 : New AI-Powered Wi-Fi Biometrics WhoFi Tracks Humans Behind Walls with 95.5% Accuracy
• 14:5 : Splunk Details on How to Detect, Mitigate and Respond to CitrixBleed 2 Attack
• 14:5 : Age verification: Child protection or privacy risk?
• 14:5 : IT Security News Hourly Summary 2025-07-24 15h : 9 posts
• 14:5 : HeroDevs Raises $125 Million to Secure Deprecated OSS
• 14:5 : Zimperium Warns of Rising Mobile Threats Over Public WiFi During Summer Travel
• 14:4 : Ransomware Deployed in Compromised SharePoint Servers
• 13:33 : UNC3944 Exploits VMware vSphere to Deploy Ransomware and Steal Data from Organizations
• 13:33 : Why Data Privacy Without Context Will No Longer Work in 2026
• 13:33 : The 7 Best Encryption Software Choices in 2025
• 13:33 : SonicWall fixed critical flaw in SMA 100 devices exploited in Overstep malware attacks
• 13:33 : Top 5 reasons why leading security companies are sending their teams to VB2025
• 13:33 : Introducing the smarter, more sophisticated Malwarebytes Trusted Advisor, your cybersecurity personal assistant
• 13:33 : iPhone vs Android: iPhone users more reckless, less protected online
• 13:4 : Splunk Guide to Detect, Mitigate, and Respond to the CitrixBleed 2 Vulnerability
• 13:4 : I finally found a thermal camera that works on iPhone and Android
• 13:4 : Amazon just released the first full-color Kindle for the youngest readers
• 13:4 : GRC Firm Vanta Raises $150 Million at $4.15 Billion Valuation
• 13:3 : New York Seeking Public Opinion on Water Systems Cyber Regulations
• 12:36 : Brave Browser Blocks Microsoft Recall from Tracking Online Activity
• 12:36 : An explanation of risk management for businesses
• 12:36 : DSPM & AI Are Booming: $17.87B and $4.8T Markets by 2033
• 12:36 : UK and Romania Crack Down on ATM Fraudster Network
• 12:4 : Chinese Hackers Attacking Windows Systems in Targeted Campaign to Deploy Ghost RAT and PhantomNet Malwares
• 12:4 : Metasploit Module Released For Actively Exploited SharePoint 0-Day Vulnerabilities
• 12:4 : Clorox Sues Cognizant for $380 Million Over 2023 Hack
• 12:4 : Core Cryptographic Technique Compromised Putting Blockchain Security at Risk
• 12:4 : Intel 471 Guided Threat Hunts enables teams to measure hunt success metrics
• 12:3 : CISO New York 2025 brings together top cybersecurity leaders
• 12:3 : China-Based APTs Deploy Fake Dalai Lama Apps to Spy on Tibetan Community
• 12:3 : Pentests once a year? Nope. It’s time to build an offensive SOC
• 12:3 : Watch This Webinar to Uncover Hidden Flaws in Login, AI, and Digital Trust — and Fix Them
• 11:34 : Stealth backdoor found in WordPress mu-Plugins folder
• 11:34 : How Solid Protocol Restores Digital Agency
• 11:34 : AI-generated image watermarks can be easily removed, say researchers
• 11:34 : Eau no! Dior tells customers their data was swiped in cyber snafu
• 11:34 : High-Value NPM Developers Compromised in New Phishing Campaign
• 11:5 : IT Security News Hourly Summary 2025-07-24 12h : 7 posts
• 11:3 : Researchers Exploit Cursor Background Agents to Take Over Amazon EC2 Instance
• 11:3 : Surfshark vs. CyberGhost: Which VPN should you get?
• 11:3 : Storm-2603 Exploits SharePoint Flaws to Deploy Warlock Ransomware on Unpatched Systems
• 10:36 : National Nuclear Security Administration Systems Breached in SharePoint Cyberattack
• 10:36 : SonicWall SMA 100 Vulnerabilities Let Attackers Execute Arbitrary JavaScript Code
• 10:36 : GitLab Security Update – Patch for Multiple Vulnerabilities in Community and Enterprise Edition
• 10:36 : Not pretty, not Windows-only: npm phishing attack laces popular packages with malware
• 10:36 : SonicWall Patches Critical SMA 100 Vulnerability, Warns of Recent Malware Attack
• 10:36 : The “S” in Vibe Coding Stands for Security
• 10:36 : Sonicwall fixes critical flaw in SMA appliances, urges customers to check for compromise (CVE-2025-40599)
• 10:3 : Unmasking the new Chaos RaaS group attacks
• 10:3 : AI-Driven Wi-Fi Biometrics WhoFi Tracks Humans Behind Walls with 95.5% Accuracy
• 10:3 : The best Apple Watch Ultra bands of 2025: Expert tested
• 9:34 : Chinese Hackers Launch Targeted Campaign to Infect Windows Systems with Ghost RAT and PhantomNet Malware
• 9:34 : These are the 5 weirdest wellness gadgets I never skip using – and how they work
• 9:34 : The best mechanical keyboards of 2025: I handpicked the top models available
• 9:34 : From Tech Podcasts to Policy: Trump’s New AI Plan Leans Heavily on Silicon Valley Industry Ideas
• 9:4 : Google Introduces OSS Rebuild to Boost Security in Open-Source Package Ecosystems
• 9:4 : The best music headphones of 2025: Expert tested and reviewed
• 9:4 : Stealthy Backdoor in WordPress Plugins Gives Attackers Persistent Access to Websites
• 9:4 : AWS Client VPN for Windows Vulnerability Let Attackers Escalate Privileges
• 9:4 : Google Launches OSS Rebuild to Strengthen Security of The Open-Source Package Ecosystems
• 9:4 : ToolShell Attacks Hit 400+ SharePoint Servers, US Government Victims Named
• 8:32 : I’m never toting ice after testing this portable smart cooler – here’s why
• 8:32 : Your TV’s USB port is seriously underutilized: 5 features you’re not taking advantage of
• 8:5 : TP-Link Network Video Recorder Vulnerability Enables Arbitrary Command Execution
• 8:5 : Metasploit Module Released to Exploit SharePoint 0-Day Vulnerabilities
• 8:5 : I recommend this Asus laptop to creative pros and office workers alike (and it’s $300 off)
• 8:5 : These secret Netflix codes saved me from canceling my subscription – here’s why
• 8:5 : Every iPhone owner should use MagSafe – I can’t live without these 7 favorite accessories
• 8:5 : I’ve tested dozens of tablets and this is the first Android model to truly replace my iPad Pro
• 8:5 : IT Security News Hourly Summary 2025-07-24 09h : 7 posts
• 8:5 : The Bullseye on Banks: Why Financial Services Remain a Prime Target for Cyberattacks
• 8:4 : UNC3944 Attacking VMware vSphere and Enabling SSH on ESXi Hosts to Reset ‘root’ Passwords
• 8:4 : CISA warns of Google Chromium 0-Day Input Validation Vulnerability Exploited in Attacks
• 8:4 : Operation CargoTalon Attacking Russian Aerospace & Defense to Deploy EAGLET Implant
• 8:4 : New ACRStealer Abuses Google Docs and Steam for C2 Server Via DDR Technique
• 8:4 : Active Campaign Exploits Cloud Flaws for Cryptomining
• 7:33 : Stop buying cheap multitools – here’s the one I recommend instead
• 7:33 : This HP OmniBook finally sold me on the 2-in-1 laptop design (and it’s on sale for $400 off)
• 7:33 : Are portable wind generators a viable alternative for solar power? My verdict after testing one at home
• 7:33 : U.S. CISA adds CrushFTP, Google Chromium, and SysAid flaws to its Known Exploited Vulnerabilities catalog
• 7:33 : Europol Arrests XSS Forum Admin in Kyiv After 12-Year Run Operating Cybercrime Marketplace
• 7:32 : Goodbye toha, AI deletes live data, Adobe apps advisory activated
• 7:2 : I tested Samsung’s Galaxy Watch 8, and it kickstarted my motivation to get running again
• 6:33 : GitLab Publishes Security Update Addressing Several Vulnerabilities in Community and Enterprise Edition
• 6:33 : AWS Client VPN for Windows Vulnerability Could Allow Privilege Escalation
• 6:33 : Weidmueller Industrial Routers Exposed to Remote Code Execution Flaws
• 6:33 : How the EU Is Fighting Back Against Deepfakes
• 6:33 : Threat Actor Mimo Attacking Magento CMS to Steal Card Details and Bandwidth Monetization
• 6:33 : Hackers Deploy Stealth Backdoor in WordPress Mu-Plugins to Maintain Admin Access
• 6:2 : SonicWall SMA 100 Vulnerabilities Allow Remote Execution of Arbitrary JavaScript
• 5:32 : Key Operator of World’s Largest XSS Dark Web Platform Detained
• 5:32 : CISA Alerts on Google Chromium Input Validation Flaw Actively Exploited
• 5:32 : Autoswagger: Open-source tool to expose hidden API authorization flaws
• 5:5 : IT Security News Hourly Summary 2025-07-24 06h : 1 posts
• 5:3 : Legal Battle Over Meta’s AI Training Likely to Reach Europe’s Top Court
• 5:3 : Your app is under attack every 3 minutes
• 5:2 : Why outsourcing cybersecurity is rising in the Adriatic region
• 4:32 : Most data breaches have unknown causes as transparency continues to fall
• 3:32 : New Tool: ficheck.py, (Thu, Jul 24th)
• 2:32 : 2025-07-23: Ten days of scans and probes and web traffic hitting my web server
• 2:2 : ISC Stormcast For Thursday, July 24th, 2025 https://isc.sans.edu/podcastdetail/9540, (Thu, Jul 24th)
• 23:32 : Weaponized LNK File Disguised as Credit Card Security Email Steals User Data
• 23:5 : IT Security News Hourly Summary 2025-07-24 00h : 4 posts
• 23:2 : SecurityPal combines AI and experts in Nepal to speed enterprise security questionnaires by 87X or more
• 22:55 : IT Security News Daily Summary 2025-07-23
• 22:32 : Microsoft Put Older Versions of SharePoint on Life Support. Hackers Are Taking Advantage
• 22:32 : U.S. CISA urges FCEB agencies to fix two Microsoft SharePoint flaws immediately and added them to its Known Exploited Vulnerabilities catalog
• 22:32 : Imperva Customers Protected Against Critical “ToolShell” Zero‑Day in Microsoft SharePoint
• 22:2 : AI’s not the only hot tech trend – check out the year’s other 11, according to McKinsey