Geek Feed - Latest IT News & Tech Trends 🚀💻

Max severity Cisco ISE bug allows pre-auth command execution, patch now

July 18, 2025July 18, 2025 geekfeed0Tagged cisco, CVE-2025-20337, Identity Services Engine, rce, Remote Code Execution, vulnerability

A critical vulnerability (CVE-2025-20337) in Cisco’s Identity Services Engine (ISE) could be exploited to let an unauthenticated attacker store malicious files, execute arbitrary code, or gain root privileges on vulnerable devices. The security issue received the maximum severity rating, 10 out of 10, and is caused by insufficient user-supplied input validation checks. It was discovered by Kentaro Kawane, a researcher […]

3 mins read

Co-op confirms data of 6.5 million members stolen in cyberattack

July 18, 2025July 18, 2025 geekfeed0Tagged Co-op, Cyberattack, data breach, Personal Information, Scattered Spider, uk, United Kingdom

UK retailer Co-op has confirmed that personal data of 6.5 million members was stolen in the massive cyberattack in April that shut down systems and caused food shortages in its grocery stores. Co-op (short for the Co-operative Group) is one of the United Kingdom’s largest consumer co-operatives, operating food stores, funeral services, insurance, and legal […]

3 mins read

U.S. Army soldier pleads guilty to extorting 10 tech, telecom firms

July 18, 2025July 18, 2025 geekfeed0Tagged Customer Data, Data Theft, Department of Justice, Extortion, hacking, Legal, Telecommunications, U.S., U.S. Army soldier, united states

A 21-year old former U.S. Army soldier pleaded guilty to charges of hacking and extorting at least ten telecommunications and technology companies in the country. Cameron John Wagenius was arrested in Texas on December 20, 2024 and indicted in the Western District of Washington on two counts of unlawful transfer of confidential phone records. In February […]

2 mins read

Louis Vuitton says regional data breaches tied to same cyberattack

July 18, 2025July 18, 2025 geekfeed0Tagged Cyberattack, data breach, Fashion, Louis Vuitton, LVMH

Luxury fashion giant Louis Vuitton confirmed that breaches impacting customers in the UK, South Korea, and Turkey stem from the same security incident, which is believed to be linked to the ShinyHunters extortion group. Since last week, the retailer has been notifying customers that their info was exposed in a data breach, first in South […]

3 mins read

Cloudflare says 1.1.1.1 outage not caused by attack or BGP hijack

July 18, 2025July 18, 2025 geekfeed0Tagged 1.1.1.1, cloudflare, DNS, Internet, Misconfiguration, Outage

To quash speculation of a cyberattack or BGP hijack incident causing the recent 1.1.1.1 Resolver service outage, Cloudflare explains in a post mortem that the incident was caused by an internal misconfiguration. The outage occurred on July 14 and impacted most users of the service all over the world, rendering internet services unavailable in many […]

2 mins read

SonicWall SMA devices hacked with OVERSTEP rootkit tied to ransomware

July 17, 2025July 17, 2025 geekfeed0Tagged Backdoor, Overstep, Rootkit, SMA, SonicWall, SSL, vpn

A threat actor has been deploying a previously unseen malware called OVERSTEP that modifies the boot process of fully-patched but no longer supported SonicWall Secure Mobile Access appliances. The backdoor is a user-mode rootkit that allows hackers to hide malicious components, maintain persistent access on the device, and steal sensitive credentials. Researchers at Google Threat […]

5 mins read

New Fortinet FortiWeb hacks likely linked to public RCE exploits

July 17, 2025July 17, 2025 geekfeed0Tagged Actively Exploited, CVE-2025-25257, FortiWeb, rce, Remote Code Execution, vulnerability, Web Shell

Multiple Fortinet FortiWeb instances recently infected with web shells are believed to have been compromised using public exploits for a recently patched remote code execution (RCE) flaw tracked as CVE-2025-25257. News of the exploitation activity comes from threat monitoring platform The Shadowserver Foundation, which observed 85 infections on July 14 and 77 on the next […]

2 mins read

Europol disrupts pro-Russian NoName057(16) DDoS hacktivist group

July 17, 2025July 17, 2025 geekfeed0Tagged ddos, DDOSIA, Hacktivism, NoName057(16), Operation Eastwood, russia, Ukraine

An international law enforcement operation dubbed “Operation Eastwood” has targeted the infrastructure and members of the pro-Russian hacktivist group NoName057(16), responsible for distributed denial-of-service (DDoS) attacks across Europe, Israel, and Ukraine. Operation Eastwood was led by Europol and Eurojust with support from 12 countries. It took place on July 15, 2025, and targeted the systems and […]

3 mins read

Tech News

Grok 4 benchmark results: Tops math, ranks second in coding

July 17, 2025July 17, 2025 geekfeed0Tagged ai, Artificial Intelligence, Benchmark, elon musk, grok, Grok 4

Grok 4 is a huge leap from Grok 3, but how good is it compared to other models in the market, such as Gemini 2.5 Pro? We now have answers, thanks to new independent benchmarks. LMArena.ai, which is an open platform for crowdsourced AI benchmarking, has published the results of Grok 4. We’re talking about Grok […]

1 min read

Google fixes actively exploited sandbox escape zero day in Chrome

July 17, 2025July 17, 2025 geekfeed0Tagged Actively Exploited, Browser, CVE-2025-6558, google, google chrome, Sandbox Escape, vulnerability

Google has released a security update for Chrome to address half a dozen vulnerabilities, one of them actively exploited by attackers to escape the browser’s sandbox protection. The vulnerability is identified as CVE-2025-6558 and received a high-severity rating of 8.8. It was discovered by researchers at Google’s Threat Analysis Group (TAG) on June 23. The security issue is […]

3 mins read