(TLP:CLEAR) Supplemental Cyber Highlights – July 31, 2025
Created: Thursday, July 31, 2025 - 14:56
Categories: Cybersecurity, OT-ICS Security, Security Preparedness
The following posts are useful for general awareness of current cyber threats, vulnerabilities, guidance, and other cyber-related news or updates. These resources have been curated by the WaterISAC analyst team as items of broad relevance and benefit that do not need supplemental analysis at this time.
Critical Infrastructure Resilience
- Honeywell Experion PKS Flaws Allow Manipulation of Industrial Processes | SecurityWeek
- Chinese Firms Linked to Silk Typhoon Filed 15+ Patents for Cyber Espionage Tools | The Hacker News
- CISA is facing a tight CIRCIA deadline. Here’s how Sean Plankey can attempt to meet it | CyberScoop
- Critical Flaws in Niagara Framework Threaten Smart Buildings and Industrial Systems Worldwide | The Hacker News
IT Vulnerability Security Updates
- SonicWall Urges Patch After 3 Major VPN Vulnerabilities Disclosed | Hack Read
- Hackers exploit SAP NetWeaver bug to deploy Linux Auto-Color malware | Bleeping Computer
- Apple Updates Everything: July 2025 | SANS Technology Institute
- Lenovo Firmware Vulnerabilities Allow Persistent Implant Deployment | SecurityWeek
- Organizations Warned of Exploited PaperCut Flaw | SecurityWeek
IT Malware, Threats & Risks
- China-linked group Fire Ant exploits VMware and F5 flaws since early 2025 | Security Affairs
- Unauthorized Admin User Created via Disguised WordPress Plugin | Sucuri
- GOLD BLADE remote DLL sideloading attack deploys RedLoader | Sophos
Ransomware
- The State of Ransomware – Q2 2025 | CheckPoint
- Scattered Spider Activity Drops Following Arrests, but Others Adopting Group’s Tactics | SecurityWeek
- Tangled in the web: Scattered Spider’s tactics changing to snare more victims | CSO Online
- Ransomware will thrive until we change our strategy | Help Net Security
Cyber Resilience, General Awareness, & AI
- Senate Committee Advances Trump Nominee to Lead CISA | SecurityWeek
- Why stolen credentials remain cybercriminals’ tool of choice | Help Net Security
- ChatGPT, GenAI Tools Open to ‘Man in the Prompt’ Browser Attack | Dark Reading
- How attackers are still phishing “phishing-resistant” authentication | Bleeping Computer