🚨 CISA KEV 1[−]
2 Oct KEVCISA Adds Five Known Exploited Vulnerabilities to CatalogCISA has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2014-6278 GNU Bash OS Command Injection Vulnerability CVE-2015-7755 Juniper ScreenOS Improper Authentication Vulnerability CVE-2017-1…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 15[−]
2 OctTermix Docker Image Leaking SSH Credentials (CVE-2025-59951)A critical vulnerability in the official Termix Docker image puts users at risk of exposing sensitive SSH credentials. The flaw allows anyone with network access to retrieve stored host addresses, usernames, and passwords without logging in. How the Vulnerability Works Termix pro…GBHACKERS.COM
2 OctWestern Digital My Cloud NAS devices vulnerable to unauthenticated RCE (CVE-2025-30247) - Help Net Securitysubmitted by kid to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2025/09/30/western-digital-my-cloud-nas-cve-2025-30247/SH.ITJUST.WORKS
2 OctRed Hat OpenShift AI weakness allows full cluster compromise, warns advisoryRed Hat has updated its OpenShift AI Service after discovering a vulnerability with a CVSS rating of 9.9 that would allow an attacker to take full control of a cluster and any applications running on it. Red Hat OpenShift AI (RHOAI) — called Red Hat OpenShift Data Science until 2…CSOONLINE.COM
2 OctChromium: CVE-2025-11215 Off by one error in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
2 OctChromium: CVE-2025-11216 Inappropriate implementation in StorageThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
2 OctChromium: CVE-2025-11211 Out of bounds read in MediaThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
2 OctChromium: CVE-2025-11209 Inappropriate implementation in OmniboxThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
2 OctChromium: CVE-2025-11205 Heap buffer overflow in WebGPUThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
2 OctChromium: CVE-2025-11213 Inappropriate implementation in OmniboxThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
2 OctChromium: CVE-2025-11210 Side-channel information leakage in TabThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
2 OctChromium: CVE-2025-11207 Side-channel information leakage in StorageThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
2 OctChromium: CVE-2025-11208 Inappropriate implementation in MediaThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
2 OctChromium: CVE-2025-11206 Heap buffer overflow in VideoThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
2 OctChromium: CVE-2025-11219 Use after free in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
2 OctChromium: CVE-2025-11212 Inappropriate implementation in MediaThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202 5) for more information.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 8[−]
2 OctThat innocent PDF is now a Trojan Horse for Gmail attacksEnterprise users know by now that they shouldn’t click on suspicious-looking links or download strange files. But what about innocuous, ever-present PDFs? Researchers at security company Varonis have uncovered a crafty new Gmail phishing attack that not only masquerades as a PDF …CSOONLINE.COM
2 OctDisaster recovery and business continuity: How to create an effective planThe core principles of disaster recovery (DR) and business continuity have remained relatively unchanged for decades: identify risks, conduct a business impact analysis, set recovery time objectives (RTOs), create a backup and restore plan, perform periodic testing. In simpler ti…CSOONLINE.COM
2 OctTOTOLINK X6000R Routers Hit by Three Vulnerabilities Allowing Remote Code ExecutionThree critical security flaws were discovered in firmware version V9.4.0cu.1360_B20241207 of the TOTOLINK X6000R router released on March 28, 2025. These vulnerabilities range from argument injection and command injection to a security bypass that can lead to remote code executio…GBHACKERS.COM
2 OctThreatsDay Bulletin: CarPlay Exploit, BYOVD Tactics, SQL C2 Attacks, iCloud Backdoor Demand & MoreFrom unpatched cars to hijacked clouds, this week’s Threatsday headlines remind us of one thing — no corner of technology is safe. Attackers are scanning firewalls for critical flaws, bending vulnerable SQL servers into powerful command centers, and even finding ways to poison Ch…THEHACKERNEWS.COM
2 OctGoogle Mandiant Probes New Oracle Extortion Wave Possibly Linked to Cl0p RansomwareGoogle Mandiant and Google Threat Intelligence Group (GTIG) have disclosed that they are tracking a new cluster of activity possibly linked to a financially motivated threat actor known as Cl0p. The malicious activity involves sending extortion emails to executives at various org…THEHACKERNEWS.COM
2 OctNeue Phishing-Variante greift Gmail-Nutzer ansrcset="https://b2b-contenthub.com/wp-content/uploads/2025/10/shutterstock_2423047525.jpg?quality=50&strip=all 7008w, https://b2b-contenthub.com/wp-content/uploads/2025/10/shutterstock_2423047525.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
2 OctCISA Releases Two Industrial Control Systems AdvisoriesCISA released two Industrial Control Systems (ICS) advisories on October 2, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-275-01 Raise3D Pro2 Series 3D Printers ICSA-25-275-02 Hitachi Energy…CISA.GOV
2 OctDrayTek warns of remote code execution bug in Vigor routersNetworking hardware maker DrayTek released an advisory to warn about a security vulnerability in several Vigor router models that could allow remote, unauthenticated actors to execute perform arbitrary code. [...]BLEEPINGCOMPUTER.COM
📋 SECURITY BULLETINS 1[−]
2 OctChrome Security Update Addressing 21 VulnerabilitiesThe Chrome team has released Chrome 141.0.7390.54/55 to the stable channel for Windows, Mac, and Linux, rolling out over the coming days and weeks. This update delivers critical security fixes, including 21 distinct vulnerabilities that span high, medium, and low severi…GBHACKERS.COM
📢 SECURITY ADVISORIES 11[−]
2 OctIntel- und AMD-Chips physisch angreifbarChips von Intel und AMD sind laut Forschern anfällig für physische Cyberattacken. IM Imagery – shutterstock.com Mit „ Battering RAM “ und „ Wiretrap “ haben Forscher zwei mögliche Angriffsvektoren auf Chips von Intel und AMD entdeckt, wie sie etwa in Servern von Rechenzentren und…CSOONLINE.COM
2 OctOneleet raises $33M to shake up the world of security complianceFounder Bryan Onel says too many companies are doing the bare minimum to meet their security compliance obligations, and raised $33 million to help his customers get both compliant and secure.TECHCRUNCH.COM
2 Oct18% of Attacks Aimed at EU Targeted OT, Says Cybersecurity AgencyENISA has published its 2025 Threat Landscape report, highlighting some of the attacks aimed at OT systems. The post 18% of Attacks Aimed at EU Targeted OT, Says Cybersecurity Agency appeared first on SecurityWeek .SECURITYWEEK.COM
2 OctYour Service Desk is the New Attack Vector—Here's How to Defend It.Service desks are prime targets. A practical, NIST-aligned workflow for help desk user verification that stops social engineering without slowing support. Learn how role- & points-based verification workflows stop attackers cold. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 11[−]
2 OctGoogle Drive Desktop Gets AI-Powered Ransomware Detection to Block CyberattacksGoogle has unveiled a groundbreaking AI-powered ransomware detection system for its Drive desktop application, representing a significant advancement in cybersecurity protection for organizations worldwide. This innovative feature automatically halts file synchronization when mal…GBHACKERS.COM
2 Oct1.5 Million Impacted by Allianz Life Data BreachIn July, hackers stole files containing names, addresses, dates of birth, and Social Security numbers from a cloud-based CRM. The post 1.5 Million Impacted by Allianz Life Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
2 OctCybercriminals Claim Theft of Data From Oracle E-Business Suite CustomersThe attackers are claiming to be affiliated with the notorious Cl0p ransomware group and links have been found to FIN11. The post Cybercriminals Claim Theft of Data From Oracle E-Business Suite Customers appeared first on SecurityWeek .SECURITYWEEK.COM
2 OctRed Hat confirms security incident after hackers claim GitHub breachAn extortion group calling itself the Crimson Collective claims to have breached Red Hat's private GitHub repositories, stealing nearly 570GB of compressed data across 28,000 internal projects. [...]BLEEPINGCOMPUTER.COM
2 Oct766,000 Impacted by Data Breach at Dealership Software Provider MotilityThe hackers stole names, contact details, Social Security numbers, and driver’s license numbers in an August 19 ransomware attack. The post 766,000 Impacted by Data Breach at Dealership Software Provider Motility appeared first on SecurityWeek .SECURITYWEEK.COM
2 OctHow to protect yourself from "voting" phishing scams, and avoid losing your WhatsApp account | Kaspersky official blogWe examine a new wave of phishing attacks targeting WhatsApp users, and explain how to avoid getting hacked.KASPERSKY.COM
2 Oct1.2 Million Impacted by WestJet Data BreachThe Canadian airline fell victim to a cyberattack in June and has completed the analysis of stolen information. The post 1.2 Million Impacted by WestJet Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
2 OctChina Requires 1-Hour Cybersecurity-Incident Reportssubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/cybersecurity-operations/china-one-hour-reporting-rule-major-cyber-incidentsSH.ITJUST.WORKS
2 OctHour-Long Email Phishing Breach Affects PHI of 150,000submitted by kid to cybersecurity 1 points | 0 comments https://www.bankinfosecurity.in/hour-long-email-phishing-breach-affects-phi-150000-a-29603SH.ITJUST.WORKS
2 OctHackers are sending extortion emails to executives after claiming Oracle apps’ data breachGoogle says hackers associated with the Clop ransomware gang are emailing executives at multiple organizations claiming to have stolen their personal information from a suite of Oracle E-Business apps.TECHCRUNCH.COM
2 OctRed Hat confirms security incident after hackers breach GitLab instanceAn extortion group calling itself the Crimson Collective claims to have breached Red Hat's private GitLab repositories, stealing nearly 570GB of compressed data across 28,000 internal projects. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 17[−]
2 OctISC Stormcast For Thursday, October 2nd, 2025 https://isc.sans.edu/podcastdetail/9638, (Thu, Oct 2nd)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
2 OctMicrosoft Outlook Bug on Windows Devices Results in Repeated Email CrashesMicrosoft is currently investigating a significant bug affecting classic Outlook for Windows that prevents users from accessing their email accounts. The issue manifests as a persistent error message stating “Cannot start Microsoft Outlook. Cannot open the Outlook window. T…GBHACKERS.COM
2 OctSplunk Enterprise Flaws Allow Attackers to Run Unauthorized JavaScript CodeSplunk released security advisories addressing multiple vulnerabilities affecting various versions of Splunk Enterprise and Splunk Cloud Platform. The flaws range from cross-site scripting (XSS) vulnerabilities to access control bypasses, with CVSS scores ranging from 4.6 to 7.5.…GBHACKERS.COM
2 OctZania Raises $18 Million for AI-Powered GRC PlatformThe company plans to triple its engineering and go‑to‑market teams and to accelerate its agentic AI platform. The post Zania Raises $18 Million for AI-Powered GRC Platform appeared first on SecurityWeek .SECURITYWEEK.COM
2 OctWireTap Attack Breaks Intel SGX SecurityThe attack uses a passive interposer to control the SGX enclave and extract the DCAP attestation key, breaking the mechanism. The post WireTap Attack Breaks Intel SGX Security appeared first on SecurityWeek .SECURITYWEEK.COM
2 OctWhy KB4-CON EMEA 2025 Should Be Your Must-Attend Cybersecurity Conference This OctoberAs cyber threats continue to evolve at breakneck speed, staying ahead of the curve isn't just important, it's essential.KNOWBE4.COM
2 OctUS Auto Insurance Platform ClaimPix Leaked 10.7TB of Records Onlinesubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/us-auto-insurance-claimpix-leaked-10tb-records/SH.ITJUST.WORKS
2 OctMore .well-known Scans, (Thu, Oct 2nd)I have been writing about the ".well-known" directory a few times before. Recently, about attackers hiding webshells &#;x26;#;x5b;1&#;x26;#;x5d;, and before that, about the purpose of the directory and why you should set up …ISC.SANS.EDU
2 OctSouth Korea raises cyber threat level after huge data centre fire sparks hacking fears | South Korea | The Guardiansubmitted by kid to cybersecurity 1 points | 0 comments https://www.theguardian.com/world/2025/sep/30/south-korea-raises-cyber-threat-level-after-huge-data-centre-fire-sparks-hacking-fearsSH.ITJUST.WORKS
2 OctRed Hat repos raided, claims cybercrew, files stolen • The Registersubmitted by kid to cybersecurity 1 points | 0 comments https://www.theregister.com/2025/10/02/cybercrims_claim_raid_on_28000/SH.ITJUST.WORKS
2 OctConfucius Hackers Hit Pakistan With New WooperStealer and Anondoor MalwareThe threat actor known as Confucius has been attributed to a new phishing campaign that has targeted Pakistan with malware families like WooperStealer and Anondoor. "Over the past decade, Confucius has repeatedly targeted government agencies, military organizations, defense contr…THEHACKERNEWS.COM
2 OctStop Shoddy Academic "Research"When someone cites one of my works, I get a notice from Research Gate. Today I got one, from an article from the "IEEE Open Journal of the Communications Society." It cited my first book, which is 21 years old. The PDF was available. I noticed the artic…TAOSECURITY.BLOGSPOT.COM
2 OctDaniel Miessler on the AI Attack/Defense BalanceHis conclusion : Context wins Basically whoever can see the most about the target, and can hold that picture in their mind the best, will be best at finding the vulnerabilities the fastest and taking advantage of them. Or, as the defender, applying patches or mitigations the fast…SCHNEIER.COM
2 OctMicrosoft named a Leader in the IDC MarketScape for XDRMicrosoft has been named a Leader in IDC’s inaugural category for Worldwide Extended Detection and Response (XDR) Software for 2025, recognized for its deep integration, intelligent automation, and unified security operations solutions. The post Microsoft named a Leader in the ID…MICROSOFT.COM
2 OctNew $50 Battering RAM Attack Breaks Intel and AMD Cloud Security Protectionssubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/10/50-battering-ram-attack-breaks-intel.htmlSH.ITJUST.WORKS
2 OctOracle customers being bombarded with emails claiming widespread data theft | CyberScoopsubmitted by kid to cybersecurity 1 points | 0 comments https://cyberscoop.com/clop-claims-oracle-customers-data-theft/SH.ITJUST.WORKS
2 OctAI: The new trigger word. Or is it Robots? - PSW #894In addition to some fun news, we get a Mary Ann Davidson as a surprise guest. We even get a great quote from her of "You're never going to have enough cybersecurity people to defend what was never built to be defensible.". Visit https://www.securityweekly.com/psw for all the late…YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 5[−]
2 OctWarning: Beware of Android Spyware Disguised as Signal Encryption Plugin and ToTok ProCybersecurity researchers have discovered two Android spyware campaigns dubbed ProSpy and ToSpy that impersonate apps like Signal and ToTok to target users in the United Arab Emirates (U.A.E.). Slovak cybersecurity company ESET said the malicious apps are distributed via fake web…THEHACKERNEWS.COM
2 OctAndroid spyware campaigns impersonate Signal and ToTok messengersTwo new spyware campaigns that researchers call ProSpy and ToSpy lured Android users with fake upgrades or plugins for the Signal and ToTok messaging apps to steal sensitive data. [...]BLEEPINGCOMPUTER.COM
2 OctAutomating Pentest Delivery: 7 Key Workflows for Maximum ImpactPenetration testing is critical to uncovering real-world security weaknesses. With the shift into continuous testing and validation, it is time we automate the delivery of these results. The way results are delivered hasn’t kept up with today’s fast-moving threat landscape. Too o…THEHACKERNEWS.COM
2 OctAlert: Malicious PyPI Package soopsocks Infects 2,653 Systems Before TakedownCybersecurity researchers have flagged a malicious package on the Python Package Index (PyPI) repository that claims to offer the ability to create a SOCKS5 proxy service, while also providing a stealthy backdoor-like functionality to drop additional payloads on Windows systems. …THEHACKERNEWS.COM
2 OctNew spyware campaigns target privacy-conscious Android users in the UAEESET researchers have discovered campaigns distributing spyware disguised as Android Signal and ToTok apps, targeting users in the United Arab EmiratesWELIVESECURITY.COM
📡 INFOSEC NEWS 6[−]
2 OctHow to Close Threat Detection Gaps: Your SOC's Action PlanRunning a SOC often feels like drowning in alerts. Every morning, dashboards light up with thousands of signals; some urgent, many irrelevant. The job is to find the real threats fast enough to keep cases from piling up, prevent analyst burnout, and maintain client or leadership …THEHACKERNEWS.COM
2 OctLast chance alert: Founder and Investor Bundle savings for TechCrunch Disrupt 2025 ends tomorrowFounder and Investor Bundle savings for TechCrunch Disrupt 2025 end tomorrow, October 3. Groups of 4–9 founders save 15% and investors save 20%. Access top VCs, pitch-ready startups, and hands-on sessions.TECHCRUNCH.COM
2 OctMicrosoft Defender bug triggers erroneous BIOS update alertsMicrosoft is working to resolve a bug that causes Defender for Endpoint to incorrectly tag some devices' BIOS (Basic Input/Output System) firmware as outdated, prompting users to update it. [...]BLEEPINGCOMPUTER.COM
2 OctBrave browser surpasses the 100 million active monthly users markBrave browser this September has reached 101 million monthly active users and 42 million daily active users, hitting a new record in the project's history. [...]BLEEPINGCOMPUTER.COM
2 OctHackerOne paid $81 million in bug bounties over the past yearBug bounty platform HackerOne announced that it paid out $81 million in rewards to white-hat hackers worldwide over the past 12 months. [...]BLEEPINGCOMPUTER.COM
2 OctMicrosoft Outlook stops displaying inline SVG images used in attacksMicrosoft says Outlook for Web and the new Outlook for Windows will no longer display risky inline SVG images that are being used in attacks. [...]BLEEPINGCOMPUTER.COM