Alleged Chinese hacker tied to Silk Typhoon arrested for cyberespionage
https://www.bleepingcomputer.com/news/security/alleged-chinese-hacker-tied-to-silk-typhoon-arrested-for-cyberespionage/
Public exploits released for Citrix Bleed 2 NetScaler flaw, patch now
https://www.bleepingcomputer.com/news/security/public-exploits-released-for-citrixbleed-2-netscaler-flaw-patch-now/
Android malware Anatsa infiltrates Google Play to target US banks
https://www.bleepingcomputer.com/news/security/android-malware-anatsa-infiltrates-google-play-to-target-us-banks/
Office of Public Affairs | Justice Department Announces Arrest of Prolific Chinese State-Sponsored Contract Hacker | United States Department of Justice
https://www.justice.gov/opa/pr/justice-department-announces-arrest-prolific-chinese-state-sponsored-contract-hacker
MalwareBazaar | NetSupport
https://bazaar.abuse.ch/browse/tag/NetSupport/
TrustedSec | CVE-2025-1729 - Privilege Escalation Using…
https://trustedsec.com/blog/cve-2025-1729-privilege-escalation-using-tpqmassistant-exe
APT-C-55(Kimsuky)组织基于VMP强壳的HappyDoor后门攻击分析
https://mp.weixin.qq.com/s/fDan8ihUQEAF5Kf_6fXATQ
Injecting code into PPL processes without vulnerable drivers on Windows 11 - Slowerzs' blog
https://www.linkedin.com/in/coolnalu
Malicious Pull Request Targets 6,000+ Developers via Vulnerable Ethcode VS Code Extension
https://thehackernews.com/2025/07/malicious-pull-request-infects-6000.html
Microsoft July 2025 Patch Tuesday fixes one zero-day, 137 flaws
https://www.bleepingcomputer.com/news/microsoft/microsoft-july-2025-patch-tuesday-fixes-one-zero-day-137-flaws/
Malicious Chrome extensions with 1.7M installs found on Web Store
https://www.bleepingcomputer.com/news/security/malicious-extensions-with-17m-installs-found-on-chrome-web-store/
Samsung announces major security enhancements coming to One UI 8
https://www.bleepingcomputer.com/news/security/samsung-announces-major-security-enhancements-coming-to-one-ui-8/
RondoDox Botnet Exploits Flaws in TBK DVRs and Four-Faith Routers to Launch DDoS Attacks
https://thehackernews.com/2025/07/rondodox-botnet-exploits-flaws-in-tbk.html
Invisible Prompt Injection Playground · Joseph Thacker
https://josephthacker.com/invisible_prompt_injection
Researchers Uncover Batavia Windows Spyware Stealing Documents from Russian Firms
https://thehackernews.com/2025/07/researchers-uncover-batavia-windows.html
Deconstructing RACF in z/OS and uncovering security issues | Securelist
https://securelist.com/zos-mainframe-pentesting-resource-access-control-facility/116873/
Workshop: Introduction to Cloud Security with Beau Bullock - Antisyphon Training
https://www.antisyphontraining.com/course/workshop-introduction-to-cloud-security-with-beau-bullock/
Threat Intelligence - ANY.RUN
https://intelligence.any.run/analysis/lookup?utm_content=linktoti&utm_term=080725#%7B%2522query%2522:%2522threatName:%255C%2522%5Ephishing$%255C%2522%2522,%2522dateRange%2522:180%7D
.Shellcode injection using MessageBox - Ghosts in the shell
https://ghostline.neocities.org/MessageBoxInjection/
New Android TapTrap attack fools users with invisible UI trick
https://www.bleepingcomputer.com/news/security/new-android-taptrap-attack-fools-users-with-invisible-ui-trick/
BaitTrap: Over 17,000 Fake News Websites Caught Fueling Investment Fraud Globally
https://thehackernews.com/2025/07/baittrap-over-17000-fake-news-websites.html