Daily CyberSecurity •

MoonPay CEO Falls Victim to Crypto Scam: Imposter Steve Witkoff Dupes Executive for $250K

Crypto Scam, Executive Fraud business email compromise scam

Cybercriminals

MoonPay CEO Falls Victim to Crypto Scam: Imposter Steve Witkoff Dupes Executive for $250K

July 14, 2025

GMX Hacked for $40M, Hacker Returns Funds for $5M Bounty After On-Chain Appeal

GMX Exploit, Crypto Bounty Ubiquiti vulnerability - OilRig TTPs

Cybercriminals

GMX Hacked for $40M, Hacker Returns Funds for $5M Bounty After On-Chain Appeal

July 14, 2025

Red Bull Job Scam Exposed: Phishing Campaign Spoofs Brands, Uses “Slow Kill” Tactics to Steal Credentials

phishing-3390518_1280

Cybercriminals

Red Bull Job Scam Exposed: Phishing Campaign Spoofs Brands, Uses “Slow Kill” Tactics to Steal Credentials

July 14, 2025

Google Uncovers Massive Phishing Scam Exploiting Booking.com Users

layout

Cybercriminals

Google Uncovers Massive Phishing Scam Exploiting Booking.com Users

July 14, 2025

Interlock RAT Gets PHP Makeover: New Variant Uses Steganography & ClickFix for Stealthy Infiltration

Malware

Interlock RAT Gets PHP Makeover: New Variant Uses Steganography & ClickFix for Stealthy Infiltration

July 14, 2025

SLOW#TEMPEST: Advanced Obfuscation Evades Static Analysis With CFG & Indirect Calls

SLOW#TEMPEST, Malware Obfuscation

Malware

SLOW#TEMPEST: Advanced Obfuscation Evades Static Analysis With CFG & Indirect Calls

July 14, 2025

WordPress Supply Chain Attack: Gravity Forms Plugin Backdoored Through Official Downloads

WordPress Supply Chain, Plugin Backdoor

Malware

WordPress Supply Chain Attack: Gravity Forms Plugin Backdoored Through Official Downloads

July 14, 2025

Fake Free VPN & Minecraft Mod Repositories Deliver Lumma Stealer

GitHub Malware, Supply Chain Attack

Malware

Fake Free VPN & Minecraft Mod Repositories Deliver Lumma Stealer

July 14, 2025

Rockerbox Data Leak Exposes 245,949 Records: SSNs, Driver’s Licenses, Military IDs Leaked from Unsecured Cloud

Data Breach, Cloud Misconfiguration

Data Leak

Rockerbox Data Leak Exposes 245,949 Records: SSNs, Driver’s Licenses, Military IDs Leaked from Unsecured Cloud

July 9, 2025

Android Privacy Alert: Google Gemini AI Now Accesses WhatsApp, Texts & Calls by Default

Google Gemini, Android Privacy Google Veo 3, AI Video Generation Google AI video, generative AI

Android Privacy Alert: Google Gemini AI Now Accesses WhatsApp, Texts & Calls by Default

July 9, 2025

State Secrets for Sale: China’s “Hack-for-Hire” Ecosystem Exposed in Massive VenusTech & Salt Typhoon Leaks

china-data

State Secrets for Sale: China’s “Hack-for-Hire” Ecosystem Exposed in Massive VenusTech & Salt Typhoon Leaks

July 7, 2025

Taiwan Warns Public: Popular Chinese Apps (TikTok, WeChat, Rednote) Pose National Security Risk Via Data Transfer to China

Chinese Apps, Taiwan Security Warning

Data Leak

Taiwan Warns Public: Popular Chinese Apps (TikTok, WeChat, Rednote) Pose National Security Risk Via Data Transfer to China

July 7, 2025

Zoom Unveils Custom AI Companion: Agent-Like AI Boosts Productivity Across 16 Business Apps Zoom AI, Custom AI Companion

Zoom AI, Custom AI Companion

Zoom Unveils Custom AI Companion: Agent-Like AI Boosts Productivity Across 16 Business Apps

Ddos July 14, 2025

CVE-2025-7503 (CVSS 10): Hidden Backdoor in Popular IP Camera Grants Hackers Root Access IP Camera, Critical Vulnerability

IP Camera, Critical Vulnerability

CVE-2025-7503 (CVSS 10): Hidden Backdoor in Popular IP Camera Grants Hackers Root Access

Ddos July 14, 2025

Elon Musk’s AI Empire Boosted: SpaceX Invests $2B in xAI to Accelerate Grok Development & Tesla Integration Grok AI, xAI Investment

Grok AI, xAI Investment

Elon Musk’s AI Empire Boosted: SpaceX Invests $2B in xAI to Accelerate Grok Development & Tesla Integration

Ddos July 14, 2025

CVE-2025-25257 (CVSS 9.6): Pre-Auth SQLi in Fortinet FortiWeb Opens Door to RCE, PoC Published CVE-2025-25257 PoC FortiWeb, SQL Injection

CVE-2025-25257 PoC FortiWeb, SQL Injection

CVE-2025-25257 (CVSS 9.6): Pre-Auth SQLi in Fortinet FortiWeb Opens Door to RCE, PoC Published

Ddos July 14, 2025

RenderShock: New Zero-Click Attack Explores Hidden Vulnerabilities in OS & Enterprise Environments rend

rend

RenderShock: New Zero-Click Attack Explores Hidden Vulnerabilities in OS & Enterprise Environments

Ddos July 14, 2025

SMM Vulnerabilities in Gigabyte UEFI Firmware Expose Systems to Stealthy Attacks Gigabyte UEFI, Critical Vulnerabilities

Gigabyte UEFI, Critical Vulnerabilities

SMM Vulnerabilities in Gigabyte UEFI Firmware Expose Systems to Stealthy Attacks

Ddos July 14, 2025

CVE-2025-30023: Critical RCE Vulnerability Discovered in Axis Video Management Software Axis Communications, Remote Code Execution

Axis Communications, Remote Code Execution

CVE-2025-30023: Critical RCE Vulnerability Discovered in Axis Video Management Software

Ddos July 14, 2025

Darktrace Exposes “Fake Startup” Malware Campaign: Lures Crypto Users with AI/Web3 Apps to Steal Wallets startup

startup

Darktrace Exposes “Fake Startup” Malware Campaign: Lures Crypto Users with AI/Web3 Apps to Steal Wallets

Ddos July 14, 2025

1Password Free Family Plan: How to Keep Getting 1 Year of Free Premium Access 1Password Free, Family Plan

1Password Free, Family Plan

1Password Free Family Plan: How to Keep Getting 1 Year of Free Premium Access

Ddos July 13, 2025

Meta Acquires PlayAI: Voice AI Startup Joins Superintelligence Push, Boosting Conversational Tech Meta AI, PlayAI Acquisition Proactive Chatbots Meta AI, Photo Privacy

Meta AI, PlayAI Acquisition Proactive Chatbots Meta AI, Photo Privacy

Meta Acquires PlayAI: Voice AI Startup Joins Superintelligence Push, Boosting Conversational Tech

Ddos July 13, 2025

Rockwell Arena Simulation Flaw: Remote Code Execution Via Malicious DOE Files Rockwell Automation, RCE Vulnerability CVE-2025-24479 and CVE-2025-24480 - CVE-2025-0477

Rockwell Automation, RCE Vulnerability CVE-2025-24479 and CVE-2025-24480 - CVE-2025-0477

Rockwell Arena Simulation Flaw: Remote Code Execution Via Malicious DOE Files

Ddos July 12, 2025

Meta Defies EU: No More Changes to “Pay-or-Consent” Model Despite Looming Billions in Daily Fines Meta EU Fine, DMA Compliance Meta AI, PlayAI Acquisition bypass AI security Meta AI EU Data Privacy

Meta EU Fine, DMA Compliance Meta AI, PlayAI Acquisition bypass AI security Meta AI EU Data Privacy

Meta Defies EU: No More Changes to “Pay-or-Consent” Model Despite Looming Billions in Daily Fines

Ddos July 12, 2025

Samsung Unveils Thinnest Galaxy Z Fold7/Flip7 Yet at Unpacked 2025; Tri-Fold Teased for Year-End Samsung Foldables, Galaxy Unpacked 2025 Samsung AI, Perplexity AI Samsung data breach Q990D firmware US tariffs

Samsung Foldables, Galaxy Unpacked 2025 Samsung AI, Perplexity AI Samsung data breach Q990D firmware US tariffs

Samsung Unveils Thinnest Galaxy Z Fold7/Flip7 Yet at Unpacked 2025; Tri-Fold Teased for Year-End

Ddos July 12, 2025

Apple, Mastercard, Visa Win Dismissal in US Antitrust Lawsuit Over Payments Apple Pay, Antitrust Lawsuit Creates Online Shop Data Breach

Apple Pay, Antitrust Lawsuit Creates Online Shop Data Breach

Apple, Mastercard, Visa Win Dismissal in US Antitrust Lawsuit Over Payments

Ddos July 12, 2025

Russian Basketball Player Arrested in France on US Warrant for Alleged Ransomware Negotiation Ransomware Negotiator, Cybercrime Arrest

Ransomware Negotiator, Cybercrime Arrest

Russian Basketball Player Arrested in France on US Warrant for Alleged Ransomware Negotiation

Ddos July 12, 2025

Windows 11 24H2 Standardizes Scripting: JScript9Legacy Engine Now Default for Enhanced Security

Windows 11, JScript9Legacy Windows Activation, TSforge Windows 11 Update, Firewall Error Windows 11 25H2, Annual Update Windows Resiliency Initiative, Kernel Security Windows 11 Upgrade, ESU Program Windows 11 Recall, Data Export Windows 11 Easy Anti-Cheat Windows 11 Update, Cumulative Update Windows Update, ACPI.sys Windows Updates, Enterprise Software Windows 11 Start Data Encryption Standard Printing Problems Windows 11 updates Estimated installation time Smart App Control, Windows 11 security

Windows 11 24H2 Standardizes Scripting: JScript9Legacy Engine Now Default for Enhanced Security

Ddos July 12, 2025

Gemini App Unleashes Veo 3: Transform Photos into Videos Now Gemini App, Image-to-Video

Gemini App, Image-to-Video

Gemini App Unleashes Veo 3: Transform Photos into Videos Now

Ddos July 11, 2025

Ubuntu 24.10 Reaches End of Life Today: Upgrade to Stay Secure! Ubuntu 24.10, End of Life Ubuntu 23.10 Translation

Ubuntu 24.10, End of Life Ubuntu 23.10 Translation

Ubuntu 24.10 Reaches End of Life Today: Upgrade to Stay Secure!

Ddos July 11, 2025

Windows 11’s Black Screen of Death (BSOD) Rolls Out: Faster Reboots & Enterprise Recovery Windows 11 BSOD, Black Screen of Death

Windows 11 BSOD, Black Screen of Death

Windows 11’s Black Screen of Death (BSOD) Rolls Out: Faster Reboots & Enterprise Recovery

Ddos July 11, 2025

Android Canary: Google’s New Path to Early Access Features Android Canary, Developer Program Android Updates, EU Regulation Android 16 Google Android Terminal Cloud Compilation Android, Google I/O

Android Canary, Developer Program Android Updates, EU Regulation Android 16 Google Android Terminal Cloud Compilation Android, Google I/O

Android Canary: Google’s New Path to Early Access Features

Ddos July 11, 2025