Dell confirms breach of test lab platform by World Leaks extortion group
https://www.bleepingcomputer.com/news/security/dell-confirms-breach-of-test-lab-platform-by-world-leaks-extortion-group/
SharePoint Under Siege: ToolShell Mass Exploitation (CVE-2025-53770)
https://research.eye.security/sharepoint-under-siege/
GitHub - soltanali0/CVE-2025-53770-Exploit: SharePoint WebPart Injection Exploit Tool
https://github.com/soltanali0/CVE-2025-53770-Exploit
ExpressVPN bug leaked user IPs in Remote Desktop sessions
https://www.bleepingcomputer.com/news/security/expressvpn-bug-leaked-user-ips-in-remote-desktop-sessions/
Dior begins sending data breach notifications to U.S. customers
https://www.bleepingcomputer.com/news/security/dior-begins-sending-data-breach-notifications-to-us-customers/
GitHub - zarkones/BloodfangC2: Modern PIC implant for Windows (64 & 32 bit)
https://github.com/zarkones/BloodfangC2
Hard-Coded Credentials Found in HPE Instant On Devices Allow Admin Access
https://thehackernews.com/2025/07/hard-coded-credentials-found-in-hpe.html
Sharepoint "0day" payload · GitHub
https://gist.github.com/gboddin/6374c04f84b58cef050f5f4ecf43d501
Veeam Recovery Orchestrator users locked out after MFA rollout
https://www.bleepingcomputer.com/news/technology/veeam-recovery-orchestrator-users-locked-out-after-mfa-rollout/
Sharepoint pwned · GitHub
https://gist.github.com/gboddin/bf6ff340022a1e5f02450125409e5277
Surveillance Firm Bypasses SS7 Protections to Retrieve User Location - SecurityWeek
https://www.securityweek.com/surveillance-firm-bypasses-ss7-protections-to-retrieve-user-location/
Over 1,000 CrushFTP servers exposed to ongoing hijack attacks
https://www.bleepingcomputer.com/news/security/over-1-000-crushftp-servers-exposed-to-ongoing-hijack-attacks/
Customer guidance for SharePoint vulnerability CVE-2025-53770 | MSRC Blog | Microsoft Security Response Center
https://msrc.microsoft.com/blog/2025/07/customer-guidance-for-sharepoint-vulnerability-cve-2025-53770/
PoisonSeed Hackers Bypass FIDO Keys Using QR Phishing and Cross-Device Sign-In Abuse
https://thehackernews.com/2025/07/poisonseed-hackers-bypass-fido-keys.html
Russia’s Most Secretive FSB’s Spy Network Unmasked by Souvenir Badges Sold Online — UNITED24 Media
https://united24media.com/latest-news/russias-most-secretive-fsbs-spy-network-unmasked-by-souvenir-badges-sold-online-10033
ToolShell Exploit: Unauthenticated SharePoint RCE (CVE-2025-53770)
https://censys.com/advisory/cve-2025-53770
China-Linked Hackers Launch Targeted Espionage Campaign on African IT Infrastructure
https://thehackernews.com/2025/07/china-linked-hackers-launch-targeted.html
Decoding Secrets Through Symbols: How Military Insignia Revealed Russia's Hidden SIGINT Network - CheckFirst
https://checkfirst.network/decoding-secrets-through-symbols-how-military-insignia-revealed-russias-hidden-sigint-network/
Microsoft releases emergency patches for SharePoint RCE flaws exploited in attacks
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-emergency-patches-for-sharepoint-rce-flaws-exploited-in-attacks/
3,500 Websites Hijacked to Secretly Mine Crypto Using Stealth JavaScript and WebSocket Tactics
https://thehackernews.com/2025/07/3500-websites-hijacked-to-secretly-mine.html
403 Forbidden
https://techcommunity.microsoft.com/blog/exchange/important-update-to-the-get-federationinformation-cmdlet-in-exchange-online/4410095
Ring denies breach after users report suspicious logins
https://www.bleepingcomputer.com/news/security/ring-denies-breach-after-users-report-suspicious-logins/
Modular PIC C2 Agents
https://rastamouse.me/modular-pic-c2-agents/
Iran-Linked DCHSpy Android Malware Masquerades as VPN Apps to Spy on Dissidents
https://thehackernews.com/2025/07/iran-linked-dchspy-android-malware.html
A Novel Technique for SQL Injection in PDO’s Prepared Statements › Searchlight Cyber
https://slcyber.io/assetnote-security-research-center/a-novel-technique-for-sql-injection-in-pdos-prepared-statements/
FortiWeb Pre-Auth RCE (CVE-2025-25257)
https://pwner.gg/blog/2025-07-10-fortiweb-fabric-rce