⚡ Weekly Recap: SharePoint 0-Day, Chrome Exploit, macOS Spyware, NVIDIA Toolkit RCE and More

/in

Even in well-secured environments, attackers are getting in—not with flashy exploits, but by quietly taking advantage of weak settings, outdated encryption, and trusted tools left unprotected.
These attacks don’t depend on zero-days. They work by staying unnoticed—slipping through the cracks in what we monitor and what we assume is safe. What once looked suspicious now blends in, thanks to

The Hacker News – ​Read More

Marketing, Law Firms Say Data Breaches Impact Over 200,000 People

/in

Cierant Corporation and Zumpano Patricios independently disclosed data breaches, each impacting more than 200,000 individuals.

The post Marketing, Law Firms Say Data Breaches Impact Over 200,000 People appeared first on SecurityWeek.

SecurityWeek – ​Read More

New GhostContainer Malware Hits High-Value MS Exchange Servers in Asia

/in

Kaspersky’s SecureList reveals GhostContainer, a new, highly customized backdoor targeting government and high-tech organizations in Asia via Exchange server vulnerabilities. Learn how this APT malware operates and how to stay protected.

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

Warnings issued as hackers actively exploit critical zero-day in Microsoft SharePoint

/in

Microsoft has issued an urgent patch for most SharePoint servers after cybersecurity researchers found threat actors globally exploiting a zero-day vulnerability in the products.

The Record from Recorded Future News – ​Read More

GameForge AI Hackathon 2025: Building the Bridge Between Natural Language and Game Creation

/in

A 72-hour sprint that produced working solutions for one of game development’s hardest problems: making it accessible to non-programmers.

Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – ​Read More

GIGABYTE’s new AI PCs are slim, multitasking powerhouses for professionals

/in

With unique cooling hardware and AI-enhanced performance, GIGABYTE’s laptops combine power and portability.

Latest news – ​Read More

Surveillance Firm Bypasses SS7 Protections to Retrieve User Location

/in

A surveillance company was caught using an SS7 bypass technique to trick wireless carriers into divulging users’ locations.

The post Surveillance Firm Bypasses SS7 Protections to Retrieve User Location appeared first on SecurityWeek.

SecurityWeek – ​Read More

Microsoft Patches ‘ToolShell’ Zero-Days Exploited to Hack SharePoint Servers

/in

Microsoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and CVE-2025-53771.

The post Microsoft Patches ‘ToolShell’ Zero-Days Exploited to Hack SharePoint Servers appeared first on SecurityWeek.

SecurityWeek – ​Read More

750,000 Impacted by Data Breach at The Alcohol & Drug Testing Service

/in

The Alcohol & Drug Testing Service (TADTS) says personal information was stolen in a July 2024 ransomware attack.

The post 750,000 Impacted by Data Breach at The Alcohol & Drug Testing Service appeared first on SecurityWeek.

SecurityWeek – ​Read More