Infosec bits for 2025 week 29

Zoya Vilakazi | July 18, 2025, 2:44 p.m.

Cybersecurity News:

SA govt elevates cyber security to counter-intelligence priority [Admire Moyo, ITWeb]

Why we must go beyond tooling and CVEs to illuminate security blind spots [Tod Beardsley, Help Net Security]

Vulnerabilities and Patches:

Oracle Critical Security Update – 309 Vulnerabilities with 145 Remotely Exploitable Patched [Guru Baran, Cyber Security News]

Max severity Cisco ISE bug allows pre-auth command execution, patch now [Bill Toulas, Bleeping Computer]

Hackers Leverage Microsoft Teams to Spread Matanbuchus 3.0 Malware to Targeted Firms [Ravie Lakshmanan, The Hacker News]

Hackers Inject Malware Into Gravity Forms WordPress Plugin [Ionut Arghire, SecurityWeek]

Chrome Update Patches Fifth Zero-Day of 2025 [Ionut Arghire, SecurityWeek]

Patch immediately: CVE-2025-25257 PoC enables remote code execution on Fortinet FortiWeb [Pierluigi Paganini, Security Affairs]

Malware:

BADBOX 2.0 Found Preinstalled on Android IoT Devices Worldwide [Waqas, Hack Read]

Attackers Hide JavaScript in SVG Images to Lure Users to Malicious Sites [Deeba Ahmed, Hack Read]

Interlock ransomware adopts new FileFix attack to push malware [Bill Toulas, Bleeping Computer]

Google Gemini AI Bug Allows Invisible, Malicious Prompts [Elizabeth Montalbano, Dark Reading]