This posting is here to collect cyber security news in July 2025.
I post links to security vulnerability news to comments of this article.
You are also free to post related links to comments.
This posting is here to collect cyber security news in July 2025.
I post links to security vulnerability news to comments of this article.
You are also free to post related links to comments.
64 Comments
Tomi Engdahl says:
Fortinet FortiWeb Flaw Exploited in the Wild After PoC Publication
Dozens of FortiWeb instances have been hacked after PoC targeting a recent critical vulnerability was shared publicly.
https://www.securityweek.com/fortinet-fortiweb-flaw-exploited-in-the-wild-after-poc-publication/
Tomi Engdahl says:
Fraud: A Growth Industry Powered by Gen-AI
With generative AI enabling fraud-as-a-service at scale, legacy defenses are crumbling. The next wave of cybercrime is faster, smarter, and terrifyingly synthetic.
https://www.securityweek.com/fraud-a-growth-industry-powered-by-gen-ai/
Tomi Engdahl says:
Google Warns 2 Billion Gmail Users As AI Summaries Hacked
https://www.forbes.com/sites/zakdoffman/2025/07/14/googles-gmail-warning-if-you-see-this-youre-being-hacked/
Google warns Gmail users to beware of “a new wave of threats” that exploit AI upgrades to attack users. This includes “indirect prompt injections,” with “hidden malicious instructions within external data sources,” visible to your AI tools but not to you.
Now one of these hacks has been confirmed in a new report, dropping one such attack into the public domain and leaving Gmail’s 2 billion users are at risk. Google’s fast-paced Gmail AI upgrades have opened new attack surfaces, and just as with other deployments, it is proving alarmingly easy to trick AI into hacking users.
Tomi Engdahl says:
They Can Steal Your Passwords Just From Fan Noise
https://m.youtube.com/watch?v=kDMfDN7iuQY
Tomi Engdahl says:
https://www.bleepingcomputer.com/news/security/cloudflare-says-1111-outage-not-caused-by-attack-or-bgp-hijack/
Tomi Engdahl says:
https://www.mtvuutiset.fi/artikkeli/jopa-16-miljardia-tunnusta-vuodettu-nettiin-ihmiset-eivat-tunnu-valittavan/9189894
Tomi Engdahl says:
Andy Greenberg / Wired:
Researchers: at least 750 US hospitals faced disruptions on the day of last year’s big CrowdStrike outage, and 200+ had outages related to patient care services — Of those, more than 200 appear to have had outages of services related to patient care following CrowdStrike’s disastrous crash, researchers have revealed.
At Least 750 US Hospitals Faced Disruptions During Last Year’s CrowdStrike Outage, Study Finds
Of those, more than 200 appear to have had outages of services related to patient care following CrowdStrike’s disastrous crash, researchers have revealed.
https://www.wired.com/story/at-least-750-us-hospitals-faced-disruptions-during-last-years-crowdstrike-outage-study-finds/
Tomi Engdahl says:
Financial Times:
X says France’s criminal probe over algorithmic “manipulation” and “fraudulent” data extraction is “distorting French law in order to serve a political agenda”
https://www.ft.com/content/21818d23-71d7-45a4-ae8c-e7940f5d9e00
Tomi Engdahl says:
Microsoftin palvelussa vakava maailmanlaajuinen haavoittuvuus: ”Kiristyshaittaohjelmahyökkääjien unelma”
Anna Helakallio21.7.202509:45Tietoturva
Microsoft julkaisi haavoittuvuuden korjaavan päivityksen sunnuntaina.
https://www.tivi.fi/uutiset/a/64795eb1-4741-4415-8311-b9d4dc5b32ca
Tomi Engdahl says:
A surveillance vendor was caught exploiting a new SS7 attack to track people’s phone locations
https://techcrunch.com/2025/07/18/a-surveillance-vendor-was-caught-exploiting-a-new-ss7-attack-to-track-peoples-phone-locations/
Security researchers say they have caught a surveillance company in the Middle East exploiting a new attack capable of tricking phone operators into disclosing a cell subscriber’s location.
The attack relies on bypassing security protections that carriers have put in place to protect intruders from accessing SS7, or Signaling System 7, a private set of protocols used by the global phone carriers to route subscribers’ calls and text messages around the world.
Tomi Engdahl says:
Google sues 25 alleged BadBox 2.0 botnet operators, all of whom are in China
Ads giant complains of damage to its reputation and finances … and crime, too
https://www.theregister.com/2025/07/17/google_sues_25_unnamed_chinese/
Google has filed a lawsuit against 25 unnamed individuals in China it accuses of breaking into more than 10 million devices worldwide and using them to build a botnet, called BadBox 2.0, and then to carry out other cybercrimes and fraud.
“As of April 2025, BadBox 2.0 is comprised of more than ten million infected AOSP-based TV streaming boxes, tablets, projectors, and after-sale car infotainment systems,” according to the lawsuit [PDF]. “In fact, BadBox 2.0 is the largest botnet of infected [connected TVs] CTVs ever uncovered and expands beyond CTVs to include additional devices such as tablets, digital projectors, and others.”
Tomi Engdahl says:
Intel CPUs are crashing again during summer heatwaves, Firefox dev warns
The lesson: if you haven’t applied the firmware patch that solves the problem, do it now.
https://www.pcworld.com/article/2851951/intel-cpus-are-crashing-again-during-summer-heatwaves-firefox-dev-warns.html
Tomi Engdahl says:
Washington Post:
Researchers say hackers linked to the Chinese government were behind at least some of the recent widespread attacks using the SharePoint RCE vulnerability — Researchers say Chinese and other criminal hackers have exploited a security flaw in SharePoint software widely used by governments and businesses — and may come back.
https://www.washingtonpost.com/technology/2025/07/21/china-hackers-microsoft-sharepoint/?pwapi_token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJyZWFzb24iOiJnaWZ0IiwibmJmIjoxNzUzMDcwNDAwLCJpc3MiOiJzdWJzY3JpcHRpb25zIiwiZXhwIjoxNzU0NDUyNzk5LCJpYXQiOjE3NTMwNzA0MDAsImp0aSI6ImUwMTZjMjg5LWNlYTQtNDA5OC05NzM5LTgxZmQxZjZjN2YzZCIsInVybCI6Imh0dHBzOi8vd3d3Lndhc2hpbmd0b25wb3N0LmNvbS90ZWNobm9sb2d5LzIwMjUvMDcvMjEvY2hpbmEtaGFja2Vycy1taWNyb3NvZnQtc2hhcmVwb2ludC8ifQ.YSflkjRm1ObpQkdFfVkQ2IxmEvDzitVtxfB0-Gf53fM
Tomi Engdahl says:
Alan Suderman / Associated Press:
Critics say tokenization, led by Robinhood, could undermine securities law and investor protections that have made the US financial system the envy of the world
The risks and rewards of tokenization as crypto heavyweights push for it
https://apnews.com/article/crypto-robinhood-openai-tokenization-sec-bfd41220717fe9b6ebcd0305005e0018
As cryptocurrencies become more intertwined with the traditional financial system, industry heavyweights are racing for a long-sought goal of turning real-world assets into digital tokens.
“Tokenization is going to open the door to a massive trading revolution,” said Vlad Tenev, the CEO of the trading platform Robinhood at a recent James Bond-themed tokenization launch event in the south of France.
Advocates say tokenization is the next leap forward in crypto and can help break down walls that have advantaged the wealthy and make trading cheaper, more transparent and more accessible for everyday investors.
But critics say tokenization threatens to undermine a century’s worth of securities law and investor protections that have made the U.S. financial system the envy of the world. And Robinhood’s push into tokenizing shares of private companies quickly faced pushback from one of the world’s most popular startups.