CISA Adds Four Known Exploited Vulnerabilities to Catalog AlertsCISA
July 22, 2025

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-54309 CrushFTP Unprotected Alternate Channel Vulnerability CVE-2025-6558 Google Chromium ANGLE and GPU Improper Input …


CISA Adds Two Known Exploited Vulnerabilities to Catalog AlertsCISA
July 22, 2025

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-49704 Microsoft SharePoint Code Injection Vulnerability CVE-2025-49706 Microsoft SharePoint Improper Authentication Vulnerability These types of …


CISA Releases Nine Industrial Control Systems Advisories AlertsCISA
July 22, 2025

CISA released nine Industrial Control Systems (ICS) advisories on July 22, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-203-01 DuraComm DP-10iN-100-MU ICSA-25-203-02 Lantronix Provisioning …


Joint Advisory Issued on Protecting Against Interlock Ransomware AlertsCISA
July 22, 2025

CISA, in partnership with the Federal Bureau of Investigation (FBI), the Department of Health and Human Services, and the Multi-State Information Sharing and Analysis Center issued a joint Cybersecurity Advisory …


How to Advance from SOC Manager to CISO? The Hacker [email protected] (The Hacker News)
July 22, 2025

Making the move from managing a security operations center (SOC) to being a chief information security officer (CISO) is a significant career leap. Not only do you need a solid …


China-Backed APT41 Cyberattack Surfaces in Africa darkreadingJai Vijayan, Contributing Writer
July 22, 2025

Up to now, the prolific China-sponsored cyber-espionage group has been mostly absent from the region, but a sophisticated and highly targeted attack on an African IT company shows Beijing is …


Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access The Hacker [email protected] (The Hacker News)
July 22, 2025

The recently disclosed critical Microsoft SharePoint vulnerability has been under exploitation as early as July 7, 2025, according to findings from Check Point Research. The cybersecurity company said it observed first …


WinRAR MoTW Propagation Privacy, (Tue, Jul 22nd) SANS Internet Storm Center, InfoCON: green
July 21, 2025

Since WinRAR 7.10, not all Mark-of-The-Web data (stored in the Zone.Identifier Alternate Data Stream) is propagated when you extract a file from an archive.  Since WinRAR 7.10, not all Mark-of-The-Web data …


Wireshark 4.4.8 Released, (Tue, Jul 22nd) SANS Internet Storm Center, InfoCON: green
July 21, 2025

Wireshark release 4.4.8 fixes 9 bugs.  Wireshark release 4.4.8 fixes 9 bugs. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.  ​Read More


ISC Stormcast For Tuesday, July 22nd, 2025 https://isc.sans.edu/podcastdetail/9536, (Tue, Jul 22nd) SANS Internet Storm Center, InfoCON: green
July 21, 2025

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.  ​Read More