IT Security News Daily Summary 2025-08-12

200 posts were published in the last hour

• 21:32 : Muddled Libra’s Strike Teams: Amalgamated Evil
• 21:32 : BlackSuit Ransomware Servers Attacking U.S. Critical Infrastructure Seized by Law Enforcement Seizes
• 21:3 : Reddit blocks the Internet Archive from crawling its data – here’s why
• 21:2 : Russian government hackers said to be behind US federal court filing system hack: Report
• 20:32 : Russian government hackers said to be behind US federal court filing system hack: report
• 20:5 : IT Security News Hourly Summary 2025-08-12 21h : 17 posts
• 20:3 : Microsoft Patch Tuesday for August 2025 — Snort rules and prominent vulnerabilities
• 20:3 : Malvertising campaign leads to PS1Bot, a multi-stage malware framework
• 20:3 : This Bluetooth tracker’s latest feature could save your life – but it costs extra
• 20:3 : Manpower franchise discloses data theft after RansomHub posts alleged stolen data
• 19:33 : Connex Credit Union Data Breach Affects 172,000 Members
• 19:33 : Is your iPhone alarm not going off? 6 potential fixes that worked for me
• 19:33 : Microsoft Teams RCE Vulnerability Let Attackers Read, Write and Delete Messages
• 19:33 : Electronic Arts Blocked 300,000 Attempts Following Battlefield 6 Beta Launch
• 19:32 : Microsoft Releases Windows 11 Cumulative Updates (KB5063878, KB5063875) August 2025 with New Features
• 19:32 : Query the legacy DNSBLs via Korea Telecom? Move to Spamhaus Technology’s free Data Query Service
• 19:4 : Microsoft August 2025 Patch Tuesday, (Tue, Aug 12th)
• 19:4 : Law Enforcement Seizes BlackSuit Ransomware Servers Targeting U.S. Critical Infrastructure
• 19:4 : Is ChatGPT Plus really worth $20 when the free version offers so many premium features?
• 19:4 : The next big TV panel leap was just unveiled by Samsung – and it makes LED look outdated
• 19:3 : I’ve tested the Apple Watch, Oura Ring, and other sleep trackers – 5 tips to get the best results
• 19:3 : Claude can now save you more time by automatically referencing past chats
• 19:3 : Dutch NCSC: Citrix NetScaler zero-day breaches critical orgs
• 19:3 : Researchers Spot XZ Utils Backdoor in Dozens of Docker Hub Images, Fueling Supply Chain Risks
• 18:33 : Microsoft Vulnerabilities Exposed by Check Point Research
• 18:33 : Save $50 on the OnePlus Pad 3 plus get a free gift – here’s the deal
• 18:33 : Linus Torvalds blasts kernel dev for ‘making the world worse’ with ‘garbage’ patches
• 18:33 : These flagship OnePlus earbuds are a great buy at full price – and now they’re on sale
• 18:32 : Your Oura Ring just got a major update for free – especially for women’s health tracking
• 18:32 : Android’s pKVM Becomes First Globally Certified Software to Achieve Prestigious SESIP Level 5 Security Certification
• 18:32 : PoisonSeed Phishing Kit Bypasses MFA to Acquire Credentials from Individuals and Organizations
• 18:32 : Microsoft Patch Tuesday August 2025 Released – 107 Vulnerabilities Fixed Including 36 RCE
• 18:32 : test test
• 18:3 : Microsoft Patch Tuesday August 2025: 107 Vulnerabilities Patched, Including 35 RCE Flaws
• 18:3 : Electronic Arts Blocks 300,000 Cheating Attempts After Battlefield 6 Beta Launch
• 18:3 : Hackers breach and expose a major North Korean spying operation
• 18:3 : AI, Ransomware and the Security Gap for SMBs
• 18:3 : Fortinet SSL VPNs Hit by Global Brute-Force Wave Before Attackers Shift to FortiManager
• 17:5 : IT Security News Hourly Summary 2025-08-12 18h : 19 posts
• 17:4 : PoisonSeed Phishing Kit Bypasses MFA to Steal Credentials from Users and Organizations
• 17:4 : Microsoft’s new update makes your taskbar a productivity hub – here’s how
• 17:4 : OnePlus has an enticing $350 deal for its latest flagship Android phone – free earbuds included
• 17:3 : I tested this new AI podcast tool to see if it can beat NotebookLM – here’s how it did
• 17:3 : 17,000+ VMware ESXi Servers Vulnerable to Critical Integer-Overflow Vulnerability
• 17:3 : How to Solve Alert Fatigue in Your SOC Without Extra Staff or Effort
• 17:3 : WinRAR vulnerability exploited by two different groups
• 17:3 : Major outage at Pennsylvania Attorney General’s Office blamed on ‘cyber incident’
• 17:2 : Dow’s 125-year legacy: Innovating with AI to secure a long future
• 16:34 : Claude Sonnet’s memory gets a big boost with 1M tokens of context
• 16:34 : Installed iOS 18.6 on your iPhone? Change these 11 settings for the best experience
• 16:34 : At last, a Windows laptop that I wouldn’t mind setting aside my MacBook Pro for
• 16:34 : Waze vs. Google Maps: I compared two of the best navigation apps, and here’s the clear winner
• 16:34 : I found a Google Maps alternative that won’t track you or drain your battery – and it’s free
• 16:33 : Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share
• 16:33 : AVEVA PI Integrator
• 16:33 : Santesoft Sante PACS Server
• 16:33 : Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, iSTAR Edge G2
• 16:33 : CISA Releases Seven Industrial Control Systems Advisories
• 16:32 : Cybercrime Groups ShinyHunters, Scattered Spider Join Forces in Extortion Attacks on Businesses
• 16:32 : Hacker Alleges Russian Government Role in Kaseya Cyber-Attack
• 16:5 : ShinyHunters Claims BreachForums Seized by Law Enforcement, Now a Honeypot
• 16:5 : Claude can now process entire software projects in single request, Anthropic says
• 16:5 : This new Arch Linux tool takes the hassle out of keeping packages up to date – here’s how
• 16:5 : SonicWall VPN Cyberattack Linked to Known Access Control Vulnerability
• 16:4 : The latest from Black Hat USA 2025
• 16:4 : ShinyHunters Unveils That BreachForums Taken by Law Enforcement Agencies, Now It Is a Honeypot
• 16:4 : 7000+ Citrix NetScaler Devices Still Vulnerable to CVE-2025-5777 and CVE-2025-6543
• 16:4 : Ivanti Connect Secure, Policy Secure and ZTA Vulnerabilities Let Attackers Trigger DoS Attack
• 16:4 : Hackers Attacking Fortinet SSL VPN Under Attack From 780 unique IPs
• 16:4 : Critical Zoom Clients for Windows Vulnerability Lets Attackers Escalate Privileges
• 16:3 : ANOTHER WinRAR 0-Day: Don’t Patch Now — Uninstall It!
• 16:3 : From Vibes to Ventures: How AI-First Startups Like Giggles Are Redefining the Rules of Entrepreneurship
• 16:3 : Cybercriminals Escalate Client-Side Attacks Targeting Mobile Browsers
• 16:3 : Experts decoded encryption keys used by DarkBit ransomware gang
• 16:3 : GPT-5 Safeguards Bypassed Using Storytelling-Driven Jailbreak
• 15:34 : Russian-Linked Curly COMrades Deploy MucorAgent Malware in Europe
• 15:34 : I’m a Linux expert, and here are 6 commands I can’t live without
• 15:34 : The Inevitable AI Breach? Predicting Data Theft Through Shared Vulnerabilities
• 15:33 : Scam hunter scammed by tax office impersonators
• 15:33 : BlackSuit ransomware crew loses servers, domains, and $1m in global shakedown
• 15:33 : Inside the Dark Web’s Access Economy: How Hackers Sell the Keys to Enterprise Networks
• 15:33 : And Now, LLMs Don’t Need Human Intervention to Plan and Executive Large, Complex Attacks
• 15:4 : Ivanti Connect Secure, Policy Secure, and ZTA Flaws Allow Attackers to Launch DoS Attacks
• 15:4 : Fortinet SSL VPN Targeted by Hackers from 780 Unique IP Addresses
• 15:4 : The world’s first Micro RGB TV has arrived – and it makes LED models look outdated
• 15:4 : A New Security Threat to Public Clouds From Old Vulnerabilities
• 15:3 : Netscaler vulnerability was exploited as zero-day for nearly two months (CVE-2025-6543)
• 15:3 : 29,000 Servers Remain Unpatched Against Microsoft Exchange Flaw
• 14:33 : 2025-08-11: XLoader (Formbook) infection
• 14:32 : Why I ditched Google Authenticator for Proton’s new 2FA app – and how to set it up
• 14:32 : A New Security Threat to Public Clouds from Old Vulnerabilities
• 14:32 : Home Office Phishing Scam Targets UK Immigration Sponsors
• 14:5 : IT Security News Hourly Summary 2025-08-12 15h : 13 posts
• 14:4 : Windows has a secret backup tool – here’s how to use it
• 14:4 : I wore the best headphones from Sony, Bose, Apple, and Sonos: Here’s how the AirPods Max wins
• 14:4 : This USB-C accessory unlocked thermal imaging powers on my Android and iPhone
• 14:3 : Trend Micro improves SIEM performance with agentic AI
• 14:3 : Prove Unified Authentication simplifies identity verification
• 14:3 : New ‘Curly COMrades’ APT Using NGEN COM Hijacking in Georgia, Moldova Attacks
• 13:34 : Women’s health tracking features take center stage with this Oura update
• 13:34 : New data shows AI agents invading the workplace, with mixed results
• 13:34 : Apple’s improved Siri voice assistant may finally have a release date – and I’m ready to ditch Gemini for it
• 13:34 : I found the 5 best laptop sales – just in time for back to school
• 13:34 : I fell in love with a $2,000 mirrorless camera that puts design and simplicity over everything else
• 13:34 : Portable, Encrypted Storage That Keeps Your Work Protected
• 13:34 : North Korean Kimsuky Hackers Data Breach – Insiders Published the Data Online
• 13:34 : SAP Security Patch Day – 15 Vulnerabilities Patched including 3 Critical Injection Vulnerabilities
• 13:33 : That “Amazon Safety Recall” message may well be a scam
• 13:33 : 1Kosmos Raises $57 Million for Identity Verification and Authentication Platform
• 13:33 : Quantum Broadens Distribution Reach in Asia-Pacific Region
• 13:33 : Pandora Admits Customer Data Compromised in Security Breach
• 13:33 : Google Confirms Data Breach in Salesforce System Linked to Known Hacking Group
• 13:33 : Rubrik Agent Rewind enables organizations to undo mistakes made by agentic AI
• 13:33 : Cybercriminals Exploit Low-Cost Initial Access Broker Market
• 13:4 : From Discovery to Testing: Akamai and Snyk Deliver Seamless API Security
• 13:4 : The Impact of Cloud computing in 2025
• 13:3 : 7,000 Citrix NetScaler Devices Still Vulnerable to CVE-2025-5777 and CVE-2025-6543
• 13:3 : WinRAR zero-day was exploited by two threat actors (CVE-2025-8088)
• 13:3 : MITRE: Russian APT28’s LameHug, a Pilot for Future AI Cyber-Attacks
• 12:33 : Interlock Ransomware Group Leaks 43GB of Data in City of St. Paul Cyberattack
• 12:33 : AOL pulls the plug on dial-up after 30+ years – feeling old yet?
• 12:33 : Data Brokers Are Hiding Their Opt-Out Pages From Google Search
• 12:32 : The Ultimate Battle: Enterprise Browsers vs. Secure Browser Extensions
• 12:32 : Oh, great.Three notorious cybercrime gangs appear to be collaborating
• 12:32 : CodeSecCon Is Today: Where Software Security’s Next Chapter Unfolds (Virtual Event)
• 12:32 : Three Ways to Ensure Regulatory and Legislative Compliance with non-Oracle Java
• 12:32 : What are the Biggest Cybersecurity Nightmares Your Business Might Face in 2025?
• 12:4 : SOCRadar Launches Agentic Threat Intelligence Platform
• 12:4 : Hyundai: Want cyber-secure car locks? That’ll be £49, please
• 12:3 : APT groups are getting personal, and CISOs should be concerned
• 12:3 : Financial Services Could Be Next in Line for ShinyHunters
• 11:33 : Scattered Spider’s New Telegram Channel Names Targeted Organizations
• 11:32 : SAP Patches Critical S/4HANA Vulnerability
• 11:5 : IT Security News Hourly Summary 2025-08-12 12h : 14 posts
• 11:3 : Critical Vulnerability in Carmaker Portal Let Hackers Unlock the Car Remotely
• 10:5 : New Ransomware Charon Uses Earth Baxia APT Techniques to Target Enterprises
• 10:4 : New Ransomware Charon Uses Earth Baxia APT Techniques To Target Enterprises
• 10:4 : Over 29,000 Unpatched Microsoft Exchange Servers Leaving Networks at Risk
• 10:4 : SAP Security Patch Day Fixes 15 Flaws, Including 3 Injection Vulnerabilities
• 10:4 : Royal Enfield Reportedly Targeted in Ransomware Attack, Hackers Claim Data Encryption
• 10:4 : I tested the best video editing laptops in 2025: Here’s what I recommend for your next project
• 10:4 : Researchers cracked the encryption used by DarkBit ransomware
• 10:4 : How to detect Open Bullet 2 bots running in Puppeteer mode
• 10:3 : Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors
• 9:32 : The best iPad keyboard cases of 2025: Expert tested and reviewed
• 9:32 : DarkBit Hackers Attacking VMware ESXi Servers to Deploy Ransomware and Encrypt VMDK Files
• 9:32 : Scattered Spider With New Telegram Channel List Organizations It Attacked
• 9:32 : Wikipedia Lost Legal Battle Against The UK’s Online Safety ACT Regulations
• 9:32 : Apache bRPC Vulnerability Allows Attackers to Crash the Service via Network
• 9:32 : Reddit to Block Internet Archive as AI Companies Have Scraped Data From Wayback Machine
• 9:3 : Researchers Detail Script-Masking Tactics That Bypass Defenses
• 9:3 : Forging a Secure Digital Future
• 9:3 : The White House could end UK’s decade-long fight to bust encryption
• 9:3 : OT Networks Targeted in Widespread Exploitation of Erlang/OTP Vulnerability
• 9:3 : Hackers Raid Dutch Lab, Stealing Data on 500,000 Patients
• 8:32 : Record $250K Bug Bounty Awarded for Discovering Critical Chrome RCE Flaw
• 8:32 : Update WinRAR tools now: RomCom and others exploiting zero-day vulnerability
• 8:32 : WinRAR zero-day exploited in espionage attacks against high-value targets
• 8:5 : IT Security News Hourly Summary 2025-08-12 09h : 7 posts
• 8:4 : NCSC: Citrix NetScaler Flaw (CVE-2025-6543) is Being Actively Exploited to Breach Organizations
• 8:3 : North Korean Kimsuky Hackers Suffer Data Breach as Insiders Leak Information Online
• 8:3 : The Matter 1.4.2 update has the smart home upgrades you didn’t know you needed
• 8:3 : From Risk to ROI: How Security Maturity Drives Business Value
• 8:3 : AI-Driven Vulnerability Management as a Solution for New Era
• 7:32 : North Korean crypto theft, Microsoft rolls out back up, four charged in global scheme
• 7:2 : Poisoned telemetry can turn AIOps into AI Oops, researchers show
• 6:33 : DarkBit Hackers Target VMware ESXi Servers to Deploy Ransomware and Encrypt VMDK Files
• 6:33 : Critical Vulnerability in Carmaker Portal Allows Hackers to Unlock Cars Remotely
• 6:33 : NCSC Warns of Citrix Netscaler Vulnerability CVE-2025-6543 Exploited to Breach Orgs
• 6:32 : Researchers Details Masking Malicious Scripts and Bypass Defense Mechanisms
• 6:32 : Smart Bus Systems Vulnerability Let Hackers Remotely Track and Control Vehicles
• 6:32 : DarkBit Hackers Attacking VMware ESXi Servers to Deploy Ransomware and Encrypts VMDK Files
• 6:2 : Reddit Blocks Internet Archive Amid AI Data Scraping Concerns
• 5:32 : Apache bRPC Vulnerability Lets Attackers Crash Services Remotely via Network
• 5:32 : EntraGoat: Vulnerable Microsoft Entra ID infrastructure to simulate identity security misconfigurations
• 5:32 : What makes a security program mature and how to get there faster
• 5:5 : IT Security News Hourly Summary 2025-08-12 06h : 3 posts
• 5:3 : New WinRAR Zero-Day Flaw Exploited by Russian-Linked Hackers
• 4:32 : Hackers Using ClickFix Technique to Attack Windows Machine and Execute Powershell Commands
• 4:32 : Cybersecurity jobs available right now: August 12, 2025
• 4:32 : Why DNS threats should be on every CISO’s radar in 2025
• 3:32 : Erlang/OTP SSH RCE Vulnerability Exploited in the Wild to Attack Across OT Networks
• 3:32 : Hackers Behind $100 Million Romance Scams and Other Frauds Extradited to US
• 3:32 : Linux Legitimate System Behaviours Weaponized to Harvest Secrets from Shared Environments
• 3:2 : Don’t fall for AI-powered disinformation attacks online – here’s how to stay sharp
• 2:32 : New State Privacy Laws Going into Effect in 2025: What You Need to Know
• 2:3 : ISC Stormcast For Tuesday, August 12th, 2025 https://isc.sans.edu/podcastdetail/9566, (Tue, Aug 12th)
• 2:3 : I went hands-on with ChatGPT Codex and the vibe was not good – here’s what happened
• 2:2 : Is Instagram Map showing your location? How to check and turn it off
• 2:2 : Why AI chatbots make bad teachers – and how teachers can exploit that weakness
• 23:32 : UAC‑0099 Tactics, Techniques, Procedures and Attack Methods Unveiled
• 23:3 : Stay Ahead of Cyber Threats in Secret Management
• 23:2 : Empower Teams with Effective IAM Strategies
• 23:2 : Scaling Secrets Security for Large Enterprises
• 22:55 : IT Security News Daily Summary 2025-08-11
• 22:33 : Hacker Reveals New Authentication Bypass in Active Directory and Entra ID Environments
• 22:32 : CastleLoader Malware Infected Over 400+ Devices Using Cloudflare-Themed ClickFix Phishing Attack
• 22:32 : Silent Watcher Attacking Windows Systems and Exfiltrate Data Using Discord Webhook
• 22:32 : Meta’s New Feature Transforms Instagram to a New Real-Time Location Broadcaster
• 22:2 : How DataDome Blocked 214M+ Malicious Requests With Server-Side Behavioral Detection