137 Security Blogs

Last Updated: 13 Jul 25 08:46 UTC

Blog List | Github | OPML

2025-07-13

Troy Hunt
Weekly Update 460


2025-07-12

Project Black
Google Pixel Root Guide

Binarly
Type Inference for Decompiled Code: From Hidden Semantics to Structured Insights


2025-07-11

Schneier on Security
Squid Dominated the Oceans in the Late Cretaceous

Schneier on Security
Tradecraft in the Information Age

SentinelOne
The Good, the Bad and the Ugly in Cybersecurity – Week 28

watchTowr Labs
Pre-Auth SQL Injection to RCE - Fortinet FortiWeb Fabric Connector (CVE-2025-25257)

Moonlock
New North Korean malware targets crypto startups via fake Zoom invites

Moonlock
Atomic macOS stealer now has a backdoor allowing it to linger

Amazon Security
Spring 2025 SOC 1/2/3 reports are now available with 184 services in scope

Auth0
Beyond the Single Login: How Federation Powers Multi-Org Success

Datadog HQ
Elevate web security and mitigate third-party risk with Reflectiz in the Datadog Marketplace

Dark Reading
Pay2Key Ransomware Gang Resurfaces With Incentives to Attack US, Israel

Dark Reading
350M Cars, 1B Devices Exposed to 1-Click Bluetooth RCE

Dark Reading
As Cyber-Insurance Premiums Drop, Coverage Is Key to Resilience

Dark Reading
Factoring Cybersecurity Into Finance's Digital Strategy

Dark Reading
Customer, Employee Data Exposed in Nippon Steel Breach

Ars Technica Security
New Windows 11 build adds self-healing “quick machine recovery” feature

ReversingLabs
The true cost of CVEs: Why you need to shift beyond vulnerabilities

ReversingLabs
Fully autonomous development is coming: Is your AppSec ready?

Searchlight Cyber
Hunters International Shuts Down and Offers Free Decryptors

Mend
What Is Application Security Posture Management (ASPM)?

Palo Alto Networks
Setting the Standard for Zero Trust Platforms


2025-07-10

Schneier on Security
Using Signal Groups for Activism

Fastly
Why Simplicity Is Good for Security

SentinelOne
macOS.ZuRu Resurfaces | Modified Khepri C2 Hides Inside Doctored Termius App

Microsoft Security
​​Forrester names Microsoft a Leader in the 2025 Zero Trust Platforms Wave™ report

Github Security Blog
Modeling CORS frameworks with CodeQL to find security vulnerabilities

Star Labs
Fooling the Sandbox: A Chrome-atic Escape

Offensive Security
CVE-2025-27636 – Remote Code Execution in Apache Camel via Case-Sensitive Header Filtering Bypass

Amazon Security
Establishing a European trust service provider for the AWS European Sovereign Cloud

Malwarebytes
Deepfake criminals impersonate Marco Rubio to uncover government secrets

Malwarebytes
McDonald’s AI bot spills data on job applicants

Binarly
Stop the Leak: Scanning Containers for Exposed Secrets

Binarly
Clevo Boot Guard Keys Leaked in Update Package

Binarly
Binarly Tracking Updates for CVE-2024-56161 – A ‘High Risk’ Microcode Flaw in AMD CPU’s

Binarly
From Trust to Trouble: The Supply Chain Implications of a Broken DBX

Binarly
LogoFAIL Exploited to Deploy Bootkitty, the first UEFI bootkit for Linux

Binarly
Repeatable Failures: Test Keys Used to Sign Production Software…Again?

Binarly
PKfail Two Months Later: Reflecting on the Impact

Binarly
How an Old Bug in Lighttpd Gained New Life in AMI BMC, Including Lenovo and Intel products

Auth0
MCP vs A2A: A Guide to AI Agent Communication Protocols

Auth0
From Vibe to Verification: Securing the Future of AI in Software Development

Cloudflare
Quicksilver v2: evolution of a globally distributed key-value store (Part 1)

Pwner Blog
FortiWeb Pre-Auth RCE (CVE-2025-25257)

Datadog HQ
Datadog named Leader in 2025 Gartner® Magic Quadrant™ for Observability Platforms

Talos Intelligence
Patch, track, repeat

Talos Intelligence
Asus and Adobe vulnerabilities

Dark Reading
Digital Fingerprints Test Privacy Concerns in 2025

Dark Reading
eSIM Bug in Millions of Phones Enables Spying, Takeover

Dark Reading
Ingram Micro Up and Running After Ransomware Attack

Dark Reading
Agentic AI's Risky MCP Backbone Opens Brand-New Attack Vectors

Dark Reading
4 Arrested in UK Over M&S, Co-op, Harrods Hacks

Dark Reading
SIM Swap Fraud Is Surging — and That's a Good Thing

Dark Reading
North American APT Uses Exchange Zero-Day to Attack China

Teleport Blog
Why We Believe in In-Person Onboarding at Teleport

Ars Technica Security
Pro basketball player and 4 youths arrested in connection to ransomware crimes

ReversingLabs
Vibe coding is seductive — but also a risk that requires security controls

Krebs on Security
UK Arrests Four in ‘Scattered Spider’ Ransom Group

TrustedSec
Azure's Front Door WAF WTF: IP Restriction Bypass


2025-07-09

Schneier on Security
Yet Another Strava Privacy Leak

Troy Hunt
Welcoming Push Security to Have I Been Pwned's Partner Program

Microsoft Security
Microsoft expands Zero Trust workshop to cover network, SecOps, and more

Malwarebytes
Millions of people spied on by malicious browser extensions in Chrome and Edge

Atredis Partners
Uncovering Privilege Escalation Bugs in Lenovo Vantage

Datadog HQ
Troubleshoot root causes with GitHub commit and ownership data in Error Tracking

Datadog HQ
Monitor your LiteLLM AI proxy with Datadog

Datadog HQ
Understanding data lineage

Datadog HQ
Reduce your mean time to repair with the Datadog mobile app

Bishop Fox Security
You’re Pen Testing AI Wrong: Why Prompt Engineering Isn’t Enough

Dark Reading
Browser Exploits Wane as Users Become the Attack Surface

Dark Reading
An NVIDIA Container Bug & Chance to Harden Kubernetes

Dark Reading
New AI Malware PoC Reliably Evades Microsoft Defender

Dark Reading
AirMDR Tackles Security Burdens for SMBs With AI

Dark Reading
Rubio Impersonator Signals Growing Security Threat From Deepfakes

Dark Reading
Know Your Enemy: Understanding Dark Market Dynamics

Dark Reading
SatanLock Next in Line for Ransomware Group Shutdowns

Dark Reading
South Korean Government Imposes Penalties on SK Telecom for Breach

Ars Technica Security
Browser extensions turn nearly 1 million browsers into website-scraping bots

Ars Technica Security
Critical CitrixBleed 2 vulnerability has been under active exploit for weeks

Eclypsium
BTS #54 - CVE-2024-54085: The First of Its Kind

ReversingLabs
Announcing RL Spectra Analyze Version 9.5

Searchlight Cyber
Three Reasons Why Traditional Attack Surface Management Now Isn’t Enough

Krebs on Security
Microsoft Patch Tuesday, July 2025 Edition

Palo Alto Networks
Palo Alto Networks Commitment to Europe


2025-07-08

Fastly
Tailoring Automated DDoS Protection

Troy Hunt
Weekly Update 459

Microsoft Security
Enhancing Microsoft 365 security by eliminating high-privilege access

Kevin Beaumont
CitrixBleed 2 exploitation started mid-June — how to spot it

NVISO Labs
Detection Engineering: Practicing Detection-as-Code – Introduction – Part 1

Amazon Security
Spring 2025 PCI DSS compliance package available now

Malwarebytes
No thanks: Google lets its Gemini AI access your apps, including messages [updated]

Malwarebytes
Ransomware negotiator investigated over criminal gang kickbacks

White Knight Labs
Understanding Type Confusion in Kernel Driver

Auth0
June 2025 in Auth0: Security, Control, and New Integrations

Auth0
Unlock Enterprise Readiness: How to Edit Existing Connections with Self-Service SSO in your SaaS App

Cloudflare
How TimescaleDB helped us scale analytics and reporting

Compass Security Blog
xvulnhuntr

Trail of Bits
Investigate your dependencies with Deptective

Talos Intelligence
Microsoft Patch Tuesday for July 2025 — Snort rules and prominent vulnerabilities

Dark Reading
Unlock Security Operations Success With Data Analysis

Dark Reading
AI Trust Score Ranks LLM Security

Dark Reading
Microsoft Patches 137 CVEs in July, but No Zero-Days

Dark Reading
Malicious Open Source Packages Spike 188% YoY

Dark Reading
Suspected Hacker Linked to Silk Typhoon Arrested in Milan

Dark Reading
Hackers 'Shellter' Various Stealers in Red-Team Tool to Evade Detection

Dark Reading
4 Critical Steps in Advance of 47-Day SSL/TLS Certificates

Dark Reading
TAG-140 Targets Indian Government Via 'ClickFix-Style' Lure

Flatt Security Research
Why XSS Persists in This Frameworks Era?

Claroty
CVE-2025-44958

Claroty
CVE-2025-6243

Claroty
CVE-2025-44955

Claroty
CVE-2025-44963

Claroty
CVE-2025-44961

Claroty
CVE-2025-44960

Claroty
CVE-2025-44954

Claroty
CVE-2025-44962

Claroty
CVE-2025-44957

Eclypsium
BTS #53 - Exploring the Evolution of Zero Trust

Searchlight Cyber Research
Abusing Windows, .NET quirks, and Unicode Normalization to exploit DNN (DotNetNuke)

ReversingLabs
Devs: Vet Your VS Code Plugins with Spectra Assure Community

ReversingLabs
Malicious pull request infects VS Code extension

Google Security Blog
Advancing Protection in Chrome on Android

Mend
What is Software Composition Analysis (SCA)?

Palo Alto Networks
Modernizing Cybersecurity for State and Local Government

Sabotage Sec Blog
Love for Microsoft Component Object Model, RPC and AMSI attack surface

Zero Day Initiative
The July 2025 Security Update Review

TrustedSec
CVE-2025-1729 - Privilege Escalation Using TPQMAssistant.exe


2025-07-07

Schneier on Security
Hiding Prompt Injections in Academic Papers

Fastly
Free Egress and Operations with Object Storage Changes Everything for Image Optimization

Project Black
Password Policy GPO

Microsoft Security
Learn how to build an AI-powered, unified SOC in new Microsoft e-book

Amazon Security
2025 CyberVadis report now available for due diligence on third-party suppliers

Malwarebytes
Free certificates for IP addresses: security problem or solution?

Malwarebytes
Gamers hacked playing Call of Duty: WWII—PC version temporarily taken offline

Malwarebytes
A week in security (June 30 – July 6)

The Citizen Lab
A Match Made in the Heavens: The Surveillance State and the “New Space” Economy

Cloudflare
Introducing simple and secure egress policies by hostname in Cloudflare’s SASE platform

Dark Reading
Checking for Fraud: Texas Community Bank Nips Check Fraud in the Bud

Dark Reading
Bert Blitzes Linux & Windows Systems

Dark Reading
DPRK macOS 'NimDoor' Malware Targets Web3, Crypto Platforms

Dark Reading
Ransomware Attack Triggers Widespread Outage at Ingram Micro

Dark Reading
'Hunters International' RaaS Group Closes Its Doors

Dark Reading
Chrome Store Features Extension Poisoned With Sophisticated Spyware

Ars Technica Security
Unless users take action, Android will let Gemini access third-party apps

Ars Technica Security
“No honor among thieves”: M&S hacking group starts turf war

Eclypsium
An Auditor's Guide to Evaluating Firmware Security