July, 2025 - Security Ticks

Ether Machine to launch $1.5B institutional ETH yield fund

Ether Machine to launch $1.5B institutional ETH yield fund 2025-07-21 at 15:42 By Cointelegraph by Zoltan Vardai The company plans to launch “one of the largest onchain ETH positions of any public entity” by generating ETH-denominated returns through staking and DeFi participation. This article is an excerpt from Cointelegraph.com News View Original Source React to […]

React to this headline:

Ether Machine to launch $1.5B institutional ETH yield fund Read More »

Four new Android spyware samples linked to Iran’s intel agency

Uncategorized / SecurityTicks

Four new Android spyware samples linked to Iran’s intel agency 2025-07-21 at 15:42 By Jessica Lyons Persians added snooping capabilities to DCHSpy after Israeli bombs fell Four new samples of Android spyware linked to the Iranian Ministry of Intelligence and Security (MOIS) that collects WhatsApp data, records audio and video, and hunts for files by

React to this headline:

Four new Android spyware samples linked to Iran’s intel agency Read More »

Composer for worst Tomb Raider games jailed over COVID-19 loan fraud

Uncategorized / SecurityTicks

Composer for worst Tomb Raider games jailed over COVID-19 loan fraud 2025-07-21 at 15:42 By Richard Currie Peter Connelly inflated turnover and claimed second payment when only entitled to one Sad news for the three people who fondly remember the soundtracks to turn-of-the-millennium Tomb Raider – their composer, Peter Connelly, has been sentenced to 16

React to this headline:

Composer for worst Tomb Raider games jailed over COVID-19 loan fraud Read More »

Critical CrushFTP vulnerability exploited. Have you been targeted? (CVE-2025-54309)

CrushFTP, Don't miss, enterprise, exploit, file-sharing, Hot stuff, News, Rapid7, Shadowserver, SMBs, vulnerability / SecurityTicks

Critical CrushFTP vulnerability exploited. Have you been targeted? (CVE-2025-54309) 2025-07-21 at 15:42 By Zeljka Zorz Unknown attackers have exploited a vulnerability (CVE-2025‑54309) in the CrushFTP enterprise file-transfer server solution to gain administrative access to vulnerable deployments. It’s currently unclear what the attackers are using this access for, but data theft looks most likely. According to

React to this headline:

Critical CrushFTP vulnerability exploited. Have you been targeted? (CVE-2025-54309) Read More »

Marketing, Law Firms Say Data Breaches Impact Over 200,000 People

Cierant, data breach, Data Breaches, healthcare, Ransomware, Zumpano Patricios / SecurityTicks

Marketing, Law Firms Say Data Breaches Impact Over 200,000 People 2025-07-21 at 15:01 By Eduard Kovacs Cierant Corporation and Zumpano Patricios independently disclosed data breaches, each impacting more than 200,000 individuals. The post Marketing, Law Firms Say Data Breaches Impact Over 200,000 People appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Marketing, Law Firms Say Data Breaches Impact Over 200,000 People Read More »

⚡ Weekly Recap: SharePoint 0-Day, Chrome Exploit, macOS Spyware, NVIDIA Toolkit RCE and More

Uncategorized / SecurityTicks

⚡ Weekly Recap: SharePoint 0-Day, Chrome Exploit, macOS Spyware, NVIDIA Toolkit RCE and More 2025-07-21 at 15:01 By Even in well-secured environments, attackers are getting in—not with flashy exploits, but by quietly taking advantage of weak settings, outdated encryption, and trusted tools left unprotected. These attacks don’t depend on zero-days. They work by staying unnoticed—slipping

React to this headline:

⚡ Weekly Recap: SharePoint 0-Day, Chrome Exploit, macOS Spyware, NVIDIA Toolkit RCE and More Read More »

Assessing the Role of AI in Zero Trust

Uncategorized / SecurityTicks

Assessing the Role of AI in Zero Trust 2025-07-21 at 15:01 By By 2025, Zero Trust has evolved from a conceptual framework into an essential pillar of modern security. No longer merely theoretical, it’s now a requirement that organizations must adopt. A robust, defensible architecture built on Zero Trust principles does more than satisfy baseline

React to this headline:

Assessing the Role of AI in Zero Trust Read More »

Ethereum mirrors stocks as ETH price chart hints at ‘final surge’ to $8K

Uncategorized / SecurityTicks

Ethereum mirrors stocks as ETH price chart hints at ‘final surge’ to $8K 2025-07-21 at 14:07 By Cointelegraph by Yashu Gola Ether’s current structure mirrors the Dow Jones’s 1980 bull run, with technical patterns reinforcing the ETH price rally outlook. This article is an excerpt from Cointelegraph.com News View Original Source React to this headline:

React to this headline:

Ethereum mirrors stocks as ETH price chart hints at ‘final surge’ to $8K Read More »

Microsoft patches under-attack SharePoint 2019 and SE

Uncategorized / SecurityTicks

Microsoft patches under-attack SharePoint 2019 and SE 2025-07-21 at 13:24 By Richard Speed But an emergency fix for SharePoint Server 2016 is still MIA Microsoft is releasing out-of-band security updates for SharePoint Server 2019 and SharePoint Server Subscription Edition, following a warning that vulnerable versions were now under attack.… This article is an excerpt from

React to this headline:

Microsoft patches under-attack SharePoint 2019 and SE Read More »

ToolShell: Critical SharePoint Zero-Day Patched After Exploitation in the Wild

Uncategorized / SecurityTicks

ToolShell: Critical SharePoint Zero-Day Patched After Exploitation in the Wild 2025-07-21 at 13:02 By Threat Hunter Team Symantec products already block CVE-2025-53770 exploit attempts. This article is an excerpt from Broadcom Software Blogs View Original Source React to this headline:

React to this headline:

ToolShell: Critical SharePoint Zero-Day Patched After Exploitation in the Wild Read More »

Blockchain compliance tools can slash TradFi costs — Chainlink co-founder

Uncategorized / SecurityTicks

Blockchain compliance tools can slash TradFi costs — Chainlink co-founder 2025-07-21 at 13:02 By Cointelegraph by Zoltan Vardai Institutional investors will increasingly adopt blockchain-based compliance solutions and tokenized RWAs, Chainlink’s co-founder Sergey Nazarov told Cointelegraph. This article is an excerpt from Cointelegraph.com News View Original Source React to this headline:

React to this headline:

Blockchain compliance tools can slash TradFi costs — Chainlink co-founder Read More »

Surveillance Firm Bypasses SS7 Protections to Retrieve User Location

location, Mobile & Wireless, mobile security, SS7, surveillance, tracking / SecurityTicks

Surveillance Firm Bypasses SS7 Protections to Retrieve User Location 2025-07-21 at 13:02 By Ionut Arghire A surveillance company was caught using an SS7 bypass technique to trick wireless carriers into divulging users’ locations. The post Surveillance Firm Bypasses SS7 Protections to Retrieve User Location appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Surveillance Firm Bypasses SS7 Protections to Retrieve User Location Read More »

SEC explores Ethereum token standard for compliant securities

Uncategorized / SecurityTicks

SEC explores Ethereum token standard for compliant securities 2025-07-21 at 12:51 By Cointelegraph by Ezra Reguerra ERC-3643 Association president Dennis O’Connell told Cointelegraph the SEC showed “a noticeable shift in tone” and openness to blockchain standards. This article is an excerpt from Cointelegraph.com News View Original Source React to this headline:

React to this headline:

SEC explores Ethereum token standard for compliant securities Read More »

Selling your digital soul to use Bluesky’s DMs isn’t just a bad idea, it’s the law

Uncategorized / SecurityTicks

Selling your digital soul to use Bluesky’s DMs isn’t just a bad idea, it’s the law 2025-07-21 at 12:51 By Rupert Goodwins Getting carded is one thing. A full strip search? Welcome to Britain Opinion On June 10, social network Bluesky announced that in 15 days it would introduce age verification for UK users, to

React to this headline:

Selling your digital soul to use Bluesky’s DMs isn’t just a bad idea, it’s the law Read More »

750,000 Impacted by Data Breach at The Alcohol & Drug Testing Service

data breach, Data Breaches, Ransomware, TADTS / SecurityTicks

750,000 Impacted by Data Breach at The Alcohol & Drug Testing Service 2025-07-21 at 12:50 By Ionut Arghire The Alcohol & Drug Testing Service (TADTS) says personal information was stolen in a July 2024 ransomware attack. The post 750,000 Impacted by Data Breach at The Alcohol & Drug Testing Service appeared first on SecurityWeek. This

React to this headline:

750,000 Impacted by Data Breach at The Alcohol & Drug Testing Service Read More »

Microsoft Patches ‘ToolShell’ Zero-Days Exploited to Hack SharePoint Servers

exploited, SharePoint, ToolShell, Vulnerabilities, Zero-Day / SecurityTicks

Microsoft Patches ‘ToolShell’ Zero-Days Exploited to Hack SharePoint Servers 2025-07-21 at 12:50 By Eduard Kovacs Microsoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and CVE-2025-53771. The post Microsoft Patches ‘ToolShell’ Zero-Days Exploited to Hack SharePoint Servers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Microsoft Patches ‘ToolShell’ Zero-Days Exploited to Hack SharePoint Servers Read More »

Exploited CrushFTP Zero-Day Provides Admin Access to Servers

CrushFTP, exploited, Vulnerabilities, Zero-Day / SecurityTicks

Exploited CrushFTP Zero-Day Provides Admin Access to Servers 2025-07-21 at 10:46 By Ionut Arghire Hackers are exploiting a zero-day vulnerability in CrushFTP to gain administrative privileges on vulnerable servers via HTTPS. The post Exploited CrushFTP Zero-Day Provides Admin Access to Servers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Exploited CrushFTP Zero-Day Provides Admin Access to Servers Read More »

PoisonSeed Hackers Bypass FIDO Keys Using QR Phishing and Cross-Device Sign-In Abuse

Uncategorized / SecurityTicks

PoisonSeed Hackers Bypass FIDO Keys Using QR Phishing and Cross-Device Sign-In Abuse 2025-07-21 at 10:46 By Cybersecurity researchers have disclosed a novel attack technique that allows threat actors to bypass Fast IDentity Online (FIDO) key protections by deceiving users into approving authentication requests from spoofed company login portals. The activity, observed by Expel as part

React to this headline:

PoisonSeed Hackers Bypass FIDO Keys Using QR Phishing and Cross-Device Sign-In Abuse Read More »

Ethereum’s Fusaka upgrade set for November, Glamsterdam planning next

Uncategorized / SecurityTicks

Ethereum’s Fusaka upgrade set for November, Glamsterdam planning next 2025-07-21 at 09:54 By Cointelegraph by Tarang Khaitan Fusaka hard fork’s next devnet will go live on Wednesday. The first public testnet is scheduled to launch in late September. This article is an excerpt from Cointelegraph.com News View Original Source React to this headline:

React to this headline:

Ethereum’s Fusaka upgrade set for November, Glamsterdam planning next Read More »

US bank lobby challenges crypto firms’ bids for bank licences

Uncategorized / SecurityTicks

US bank lobby challenges crypto firms’ bids for bank licences 2025-07-21 at 09:54 By Cointelegraph by Jesse Coghlan US banking and credit union groups asked the OCC to delay deciding on bank license applications from crypto firms, arguing there are “significant policy and process concerns.” This article is an excerpt from Cointelegraph.com News View Original

React to this headline:

US bank lobby challenges crypto firms’ bids for bank licences Read More »

July 2025