ICYMI: 2025-08-21
Latest Headlines
Pre-Auth Exploit Chains Found in Commvault Could Enable Remote Code Execution Attacks
Cybercriminals Deploy CORNFLAKE.V3 Backdoor via ClickFix Tactic and Fake CAPTCHA Pages
Weak Passwords and Compromised Accounts: Key Findings from the Blue Report 2025
Hackers Using New QuirkyLoader Malware to Spread Agent Tesla, AsyncRAT and Snake Keylogger
Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft
Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks
Telecom Firm Colt Confirms Data Breach as Ransomware Group Auctions Files
Threat Actors Gaining Access to Victims’ Machines and Monetizing Access to Their Bandwidth
Hackers Weaponize QR Codes Embedded with Malicious Links to Steal Sensitive Information
Threat Actors Abuse AI Website Creation App to Deliver Malware
Warlock Ransomware Exploiting SharePoint Vulnerabilities to Gain Access and Steal Credentials
Internet Archive Abused for Hosting Stealthy JScript Loader Malware
Mozilla High Severity Vulnerabilities Enables Remote Code Execution
APT MuddyWater Attacking CFOs Leveraging OpenSSH, Enables RDP, and Scheduled Task
New QUIC-LEAK Vulnerability Let Attackers Exhaust Server Memory and Trigger DoS Attack
Threat Actors Weaponize PDF Editor With New Torjan to Turn Device Into Proxy
Kali Vagrant Rebuilt Released – Pre-configured DebOS VMs via Command Line
Dev gets 4 years for creating kill switch on ex-employer’s systems
Colt confirms customer data stolen as Warlock ransomware auctions files
Microsoft asks customers for feedback on reported SSD failures
FBI warns of Russian hackers exploiting 7-year-old Cisco flaw
Scattered Spider hacker gets sentenced to 10 years in prison
Orange Belgium discloses data breach impacting 850,000 customers
– MTZ