ICYMI: 2025-08-05
Latest Headlines
ClickFix Malware Campaign Exploits CAPTCHAs to Spread Cross-Platform Infections
Google’s August Patch Fixes Two Qualcomm Vulnerabilities Exploited in the Wild
Cursor AI Code Editor Vulnerability Enables RCE via Malicious MCP File Swaps Post Approval
Misconfigurations Are Not Vulnerabilities: The Costly Confusion Behind Security Risks
How Top CISOs Save Their SOCs from Alert Chaos to Never Miss Real Incidents
15,000 Fake TikTok Shop Domains Deliver Malware, Steal Crypto via AI-Driven Scam Campaign
SonicWall Investigating Potential SSL VPN Zero-Day After 20+ Targeted Attacks Reported
Microsoft’s Project Ire Autonomously Reverse Engineers Software to Find Malware
Black Hat USA 2025 – Summary of Vendor Announcements (Part 1)
Vibe Coding: When Everyone’s a Developer, Who Secures the Code?
Android’s August 2025 Update Patches Exploited Qualcomm Vulnerability
Microsoft Offers $5 Million at Zero Day Quest Hacking Contest
SonicWall Hunts for Zero-Day Amid Surge in Firewall Exploitation
The Network-Security Compliance Checklist: 25 Controls, Mapped And Audit-Ready
New MCPoison Attack Leverages Cursor IDE MCP Validation to Execute Arbitrary System Commands
How Certificate Mismanagement Opens The Door For Phishing And MITM Attacks
New Streamlit Vulnerability Allows Hackers to Launch Cloud Account Takeover Attacks
Cloudflare Accuses Perplexity AI For Evading Firewalls and Crawling Websites by Changing User Agent
APT36 Hackers Attacking Indian Government Entities to Steal Login Credentials
North Korean Hackers Weaponizing NPM Packages to Steal Cryptocurrency and Sensitive Data
Cisco Hacked – Attackers Stole Profile Details of Users Registered on Cisco.com
Kimsuky APT Hackers Weaponizing LNK Files to Deploy Reflective Malware Bypassing Windows Defender
Pandora confirms data breach amid ongoing Salesforce data theft attacks
PBS confirms data breach after employee info leaked on Discord servers
Adobe issues emergency fixes for AEM Forms zero-days after PoCs released
The Heat Wasn’t Just Outside: Cyber Attacks Spiked in Summer 2025
Cisco discloses data breach impacting Cisco.com user accounts
SonicWall urges admins to disable SSLVPN amid rising attacks
Android gets patches for Qualcomm flaws exploited in attacks
– MTZ