ICYMI: 2025-07-11
Latest Headlines
Fortinet Releases Patch for Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257)
PerfektBlue Bluetooth Vulnerabilities Expose Millions of Vehicles to Remote Code Execution
Critical Wing FTP Server Vulnerability (CVE-2025-47812) Actively Being Exploited in the Wild
Iranian-Backed Pay2Key Ransomware Resurfaces with 80% Profit Share for Cybercriminals
CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises
Metadata Shows the FBI’s ‘Raw’ Jeffrey Epstein Prison Video Was Likely Modified
In Other News: Microsoft Finds AMD CPU Flaws, ZuRu macOS Malware Evolves, DoNot APT Targets Govs
Cyberstarts Launches $300M Liquidity Fund to Help Startups Retain Top Talent
EU Unveils AI Code of Practice to Help Businesses Comply With Bloc’s Rules
McDonald’s Chatbot Recruitment Platform Exposed 64 Million Job Applications
TikTok Faces Fresh European Privacy Investigation Over China Data Transfers
Iranian APTs Hackers Actively Attacking Transportation and Manufacturing Sectors
CISA Releases 13 New Industrial Control Systems Surrounding Vulnerabilities and Exploits
Arkana Ransomware Claimed to Have Stolen 2.2 Million Customer Records
IT Giant Ingram Micro Restores Operations Following Ransomware Attack
Fortinet FortiWeb Fabric Connector Vulnerability Exploited to Execute Remote Code
New eSIM Hack Lets Attackers Clone Profiles and Hijack Phone Identities
Critical D-Link 0-click Vulnerability Allows Remote Attackers to Crash the Server
Russian Basketball Player Arrested over Alleged Ransomware Attack Claims
AMD Warns of Transient Scheduler Attacks Affecting Wide Range of Chipsets
Apache HTTP Server 2.4.64 Released With Patch for 8 Vulnerabilities
‘123456’ password exposed chats for 64 million McDonald’s job applicants
Exploits for pre-auth Fortinet FortiWeb RCE flaw released, patch now
WordPress Gravity Forms developer hacked to push backdoored plugins
NVIDIA shares guidance to defend GDDR6 GPUs against Rowhammer attacks
The zero-day that could’ve compromised every Cursor and Windsurf user
CISA tags Citrix Bleed 2 as exploited, gives agencies a day to patch
– MTZ