■■□□□ Microsoft’s Secure Boot UEFI bootloader signing key expires in September, posing problems for Linux users. https://www.tomshardware.com/tech-industry/cyber-security/microsoft-signing-key-required-for-secure-boot-uefi-bootloader-expires-in-september-which-could-be-problematic-for-linux-users
All posts by John Doe
July 22, 2025 at 05:57PM
■■■■■ Four new Android spyware samples linked to Iran’s intel agency. Persians added snooping capabilities to DCHSpy after Israeli bombs fell. https://www.theregister.com/2025/07/21/muddywaters_android_iran/
July 21, 2025 at 10:07PM
■■■■■ A Novel Technique for SQL Injection in PDO’s Prepared Statements. A Novel Technique for SQL Injection in PDO’s Prepared Statements
July 20, 2025 at 11:16PM
■■■□□ Sophos Intercept X for Windows Vulnerabilities Enable Arbitrary Code Execution. Sophos Intercept X for Windows Vulnerabilities Enable Arbitrary Code Execution
July 20, 2025 at 11:02PM
■■■■□ Windows Server 2025 Golden dMSA Attack Enables Authentication Bypass and Password Generation. Windows Server 2025 Golden dMSA Attack Enables Authentication Bypass and Password Generation
July 20, 2025 at 05:24PM
■■■■□ SharePoint 0-Day RCE Vulnerability Actively Exploited in the Wild to Gain Full Server Access. SharePoint 0-Day RCE Vulnerability Actively Exploited in the Wild to Gain Full Server Access
July 19, 2025 at 10:28PM
■■□□□ The tap trap: Android security vulnerability discovered. https://techxplore.com/news/2025-07-android-vulnerability.html
July 19, 2025 at 10:16PM
🖥🌐📱 Browser-Reviewer: Browser Reviewer is a portable forensic tool for analyzing user activity in Firefox and Chrome-based browsers for Windows platforms. It extracts and displays browsing history, downloads, bookmarks, and autofill data. The tool allows analysts to tag, comment, and export reports in PDF. It requires no installation and can be executed directly from a…
July 19, 2025 at 05:07PM
■■■■■ An unnamed surveillance vendor in Middle East was caught exploiting a new SS7 attack to track people’s phone locations silently. The Good, the Bad, and the Encoding: An SS7 Bypass Attack A surveillance vendor was caught exploiting a new SS7 attack to track people’s phone locations
July 19, 2025 at 12:11PM
■■■■□ Cyber Security NewsVulnerability News Microsoft Entra ID Vulnerability Let Attackers Escalate Privileges to Global Admin Role. Microsoft Entra ID Vulnerability Let Attackers Escalate Privileges to Global Admin Role