BleepingComputer.com

"SonicWall urges admins to patch critical RCE flaw in SMA 100 devices."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 24 July 2025, 1318 UTC.

Content and Source:  "BleepingComputer.com."

URL-- https://www.bleepingcomputer.com/

Please check URL or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Latest Articles

• 
   
  Security

  SonicWall urges admins to patch critical RCE flaw in SMA 100 devices

  SonicWall urges customers to patch SMA 100 series appliances against a critical authenticated arbitrary file upload vulnerability that can let attackers gain remote code execution.

  • Sergiu Gatlan
   
  • July 24, 2025
   
  • 07:17 AM
   
  •  0
• 
   
  Deals

  Prep for Microsoft Azure certifications at home for $30 in this course deal

  The 2025 Microsoft Azure Architect & Administrator Exam Certification Prep Bundle gives you the flexibility to learn everything you need to pass Microsoft Azure exams — from the comfort of your home. And lifetime access is on sale for just $29.97.

  • BleepingComputer Deals
   
  • July 24, 2025
   
  • 07:09 AM
   
  •  0
• 
   

  Regain control of SaaS spend and third-party risk 

  See how KarmaCheck made SaaS security pay for itself.

  Every new SaaS account introduces a new source of third party risk and spend. Learn how KarmaCheck gained control of shadow SaaS and GenAI, eliminated wasted spend, and sped up security reviews with what they call a Swiss Army Knife of Utility.

  • Nudge Security Sponsorship
• 
   
  Security, Microsoft

  Microsoft: SharePoint servers also targeted in ransomware attacks

  A China-based hacking group is deploying Warlock ransomware on Microsoft SharePoint servers vulnerable to widespread attacks targeting the recently patched ToolShell zero-day exploit chain.

  • Sergiu Gatlan
   
  • July 24, 2025
   
  • 05:53 AM
   
  •  0
• 
   
  Security, Microsoft

  Brave blocks Windows Recall from screenshotting your browsing activity

  Brave Software says its privacy-focused browser will block Microsoft's Windows Recall from capturing screenshots of Brave windows by default to protect users' privacy.

  • Lawrence Abrams
   
  • July 23, 2025
   
  • 06:42 PM
   
  •  1
• 
   
  Deals

  This Lenovo 100e Chromebook handles drops, video calls, and more

  This Lenovo 100e Chromebook 2nd Gen (2019) delivers a durable, portable, and efficient computer for school, remote work, or everyday use. Priced at just $54.99 (reg. $328.99) in refurbished grade "A" condition, this is a great deal while supplies last.

  • BleepingComputer Deals
   
  • July 23, 2025
   
  • 02:05 PM
   
  •  0
• 
   
  Artificial Intelligence

  Proton launches privacy-respecting encrypted AI assistant Lumo

  Proton has launched a new tool called Lumo, offering a privacy-first AI assistant that does not log user conversations and doesn't use their prompts for training.

  • Bill Toulas
   
  • July 23, 2025
   
  • 01:41 PM
   
  •  1
• 
   
  Security, Legal

  Hackers fooled Cognizant help desk, says Clorox in $380M cyberattack lawsuit

  Clorox is suing IT giant Cognizant for gross negligence, alleging it enabled a massive August 2023 cyberattack by resetting an employee's password for a hacker without first verifying their identity.

  • Bill Toulas
   
  • July 23, 2025
   
  • 01:20 PM
   
  •  0
• 
   
  Artificial Intelligence, Technology

  ChatGPT is rolling out 'personality' toggles to become your assistant

  OpenAI is rolling out a new "personality" feature on the ChatGPT web app. This allows you to choose between multiple personalities, such as "Robot."

  • Mayank Parmar
   
  • July 23, 2025
   
  • 01:07 PM
   
  •  0
• 
   
  Security

  NPM package ‘is’ with 2.8M weekly downloads infected devs with malware

  The popular NPM package 'is' has been compromised in a supply chain attack that injected backdoor malware, giving attackers full access to compromised devices.

  • Bill Toulas
   
  • July 23, 2025
   
  • 11:57 AM
   
  •  0
• 
   
  Security

  US nuclear weapons agency hacked in Microsoft SharePoint attacks

  Unknown threat actors have breached the National Nuclear Security Administration's network in attacks exploiting a recently patched Microsoft SharePoint zero-day vulnerability chain.

  • Sergiu Gatlan
   
  • July 23, 2025
   
  • 11:14 AM
   
  •  5
• 
   
  Artificial Intelligence, Technology

  OpenAI confirms ChatGPT's new study feature, helps with exams

  OpenAI is testing a new 'Study together' feature, and today, a new announcement within the ChatGPT web app confirms it.

  • Mayank Parmar
   
  • July 23, 2025
   
  • 10:08 AM
   
  •  0
• 
   
  Security

  How to harden your Active Directory against Kerberoasting

  Kerberoasting gives attackers offline paths to crack service account password, without triggering alerts. Learn from Specops Software how to protect your Active Directory with stronger SPN password policies and reduced attack surfaces.

  • Specops Software
   
  • July 23, 2025
   
  • 10:02 AM
   
  •  0
• 
   
  Artificial Intelligence, Technology

  OpenAI prepares Sora 2 to take on Google's Veo 3

  OpenAI has had enough of Google's Veo 3 dominating generative AI videos and is now working on Sora 2, the successor to Sora.

  • Mayank Parmar
   
  • July 23, 2025
   
  • 09:44 AM
   
  •  0
• 
   
  Security, Legal

  Ukraine arrests suspected admin of XSS Russian hacking forum

  The suspected administrator of the Russian-speaking hacking forum XSS.is was arrested by the Ukrainian authorities yesterday at the request of the Paris public prosecutor's office.

  • Bill Toulas
   
  • July 23, 2025
   
  • 09:41 AM
   
  •  0
• 
   
  Security

  CISA warns of hackers exploiting SysAid vulnerabilities in attacks

  CISA has warned that attackers are actively exploiting two security vulnerabilities in the SysAid IT service management (ITSM) software to hijack administrator accounts.

  • Sergiu Gatlan
   
  • July 23, 2025
   
  • 09:30 AM
   
  •  0
• 
   
  Security

  npm 'accidentally' removes Stylus package, breaks builds and pipelines

  npm has taken down all versions of the Stylus library and replaced them with a "security holding" page, breaking pipelines and builds worldwide that rely on the package.

  • Ax Sharma
   
  • July 23, 2025
   
  • 09:21 AM
   
  •  0
• 
   
  Technology

  Operator of Jetflicks illegal streaming service gets 7 years in prison

  The ringleader of the Jetflicks illegal paid streaming operation, a massive service with tens of thousands of subscribers, was sentenced to seven years in prison.

  • Sergiu Gatlan
   
  • July 23, 2025
   
  • 07:13 AM
   
  •  0
• 
   
  Deals

  Prep for the rigorous CISSP certification in this 8-course deal

  If you're ready to build serious credentials without spending thousands on schooling, this CISSP security and risk management training bundle is a solid way to start. For $29.97, you'll get lifetime access to eight courses covering all eight CISSP domains.

  • BleepingComputer Deals
   
  • July 23, 2025
   
  • 07:12 AM
   
  •  0
• 
   
  Microsoft

  Microsoft fixes bug behind incorrect Windows Firewall errors

  Microsoft has resolved a known issue that triggers invalid Windows Firewall errors after rebooting Windows 11 24H2 systems with the June 2025 preview update installed.

  • Sergiu Gatlan
   
  • July 23, 2025
   
  • 06:24 AM
   
  •  0
• 
   
  Security

  Lumma infostealer malware returns after law enforcement disruption

  The Lumma infostealer malware operation is gradually resuming activities following a massive law enforcement operation in May, which resulted in the seizure of 2,300 domains and parts of its infrastructure.

  • Bill Toulas
   
  • July 22, 2025
   
  • 05:34 PM
   
  •  0

• 1
 
• 2
 
• 3
 
• 4
 
• 5
 

View More