Infosec bits for 2025 week 31

Anele Siwela | Aug. 1, 2025, 4:08 p.m.

Cybersecurity News:

Microsoft to Disable External Workbook Links to Blocked File Types By Default [Florence Nightingale, Cyber Securitynews]

CISA Announces Release of Thorium for Malware Analysis [CISA, CISA]

More firewalls won’t hold back growing cyber attacks [Tracy Burrows, IT Web]

SIEMs: Dying a Slow Death or Poised for AI Rebirth? [Rob Wright, Dark Reading]

ToxicPanda Android Banking Malware Infected 4500+ Devices to Steal Banking Credentials [Tushar Subhra Dutta, Cyber Securitynews]

Microsoft Copilot Rooted to Gain Unauthorized Root Access to its Backend System [Guru Baran, Cyber Securitynews]

Cyberattacks:

Credential theft surges in South Africa — NEC XON issues critical cybersecurity warning [Partner, Business Tech]

South Africa under attack [Daniel Puchert, MybroadBand]

SA earns top spot as target for cyber attacks [Jimmy Moyaha, Money Web]

Vulnerabilities & Patches:

Microsoft Windows Zero-Day Patched [Microsoft Security, Microsoft]

Cisco Router Vulnerability [Cisco Advisory, Cisco]

Apple patches security flaw exploited in Chrome zero-day attacks [Sergiu Gatlan, Bleeping Computer]

New Scattered Spider Tactics Target VMware vSphere Environments [Alessandro Mascellino, Infosecurity Magazin.]

Severe Chrome browser attack vector fixed in latest Apple OS updates [Malcolm Owen, Apple Insider]