ISC Stormcast For Monday, July 7th, 2025 https://isc.sans.edu/podcastdetail/9514, (Mon, Jul 7th) SANS Internet Storm Center, InfoCON: green
July 6, 2025

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.  ​Read More


A few interesting and notable ssh/telnet usernames, (Sun, Jul 6th) SANS Internet Storm Center, InfoCON: green
July 6, 2025

Just looked at our telnet/ssh honeypot data, and found some interesting new usernames that attackers attempted to use:  Just looked at our telnet/ssh honeypot data, and found some interesting new …


Taiwan NSB Alerts Public on Data Risks from TikTok, Weibo, and RedNote Over China Ties The Hacker [email protected] (The Hacker News)
July 4, 2025

Taiwan's National Security Bureau (NSB) has warned that China-developed applications like RedNote (aka Xiaohongshu), Weibo, TikTok, WeChat, and Baidu Cloud pose security risks due to excessive data collection and data …


Alert: Exposed JDWP Interfaces Lead to Crypto Mining, Hpingbot Targets SSH for DDoS The Hacker [email protected] (The Hacker News)
July 4, 2025

Threat actors are weaponizing exposed Java Debug Wire Protocol (JDWP) interfaces to obtain code execution capabilities and deploy cryptocurrency miners on compromised hosts. "The attacker used a modified version of XMRig …


NightEagle APT Exploits Microsoft Exchange Flaw to Target China’s Military and Tech Sectors The Hacker [email protected] (The Hacker News)
July 4, 2025

Cybersecurity researchers have shed light on a previously undocumented threat actor called NightEagle (aka APT-Q-95) that has been observed targeting Microsoft Exchange servers as a part of a zero-day exploit …


Your AI Agents Might Be Leaking Data — Watch this Webinar to Learn How to Stop It The Hacker [email protected] (The Hacker News)
July 4, 2025

Generative AI is changing how businesses work, learn, and innovate. But beneath the surface, something dangerous is happening. AI agents and custom GenAI workflows are creating new, hidden ways for …


Critical Sudo Vulnerabilities Let Local Users Gain Root Access on Linux, Impacting Major Distros The Hacker [email protected] (The Hacker News)
July 4, 2025

Cybersecurity researchers have disclosed two security flaws in the Sudo command-line utility for Linux and Unix-like operating systems that could enable local attackers to escalate their privileges to root on …


Google Ordered to Pay $314M for Misusing Android Users’ Cellular Data Without Permission The Hacker [email protected] (The Hacker News)
July 4, 2025

Google has been ordered by a court in the U.S. state of California to pay $314 million over charges that it misused Android device users' cellular data when they were …


Big Tech’s Mixed Response to U.S. Treasury Sanctions Krebs on SecurityBrianKrebs
July 3, 2025

In May 2025, the U.S. government sanctioned a Chinese national for operating a cloud provider linked to the majority of virtual currency investment scam websites reported to the FBI. But …


Massive Android Fraud Operations Uncovered: IconAds, Kaleidoscope, SMS Malware, NFC Scams The Hacker [email protected] (The Hacker News)
July 3, 2025

A mobile ad fraud operation dubbed IconAds that consisted of 352 Android apps has been disrupted, according to a new report from HUMAN. The identified apps were designed to load out-of-context …