🐛 COMMON VULNERABILITIES AND EXPOSURES 9[−]
17 OctCritical Cisco IOS and IOS XE Flaws Allow Remote Code ExecutionCisco has disclosed a serious security vulnerability affecting its IOS and IOS XE Software that could allow attackers to execute remote code or crash affected devices. The flaw, tracked as CVE-2025-20352, resides in the Simple Network Management Protocol (SNMP) subsystem and carr…GBHACKERS.COM
17 OctLinkPro: An eBPF-Based Rootkit Hiding Malicious Activity on GNU/LinuxSecurity researchers from Synacktiv CSIRT have uncovered a sophisticated Linux rootkit dubbed LinkPro that leverages eBPF (extended Berkeley Packet Filter) technology to establish persistent backdoor access while remaining virtually invisible to traditional monitoring tools. The …GBHACKERS.COM
17 OctResearchers Uncover WatchGuard VPN Bug That Could Let Attackers Take Over DevicesCybersecurity researchers have disclosed details of a recently patched critical security flaw in WatchGuard Fireware that could allow unauthenticated attackers to execute arbitrary code. The vulnerability, tracked as CVE-2025-9242 (CVSS score: 9.3), is described as an out-of-boun…THEHACKERNEWS.COM
17 Oct‘Highest Ever’ Severity Score Assigned by Microsoft to ASP.NET Core VulnerabilityCVE-2025-55315 is an HTTP request smuggling bug leading to information leaks, file content tampering, and server crashes. The post ‘Highest Ever’ Severity Score Assigned by Microsoft to ASP.NET Core Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
17 Oct‘Zero Disco’ campaign hits legacy Cisco switches with fileless rootkit payloadsIn newly disclosed real-world attacks, threat actors are found exploiting a Cisco Simple Network Management Protocol (SNMP) vulnerability to gain remote code execution (RCE) and install Linux rootkits on vulnerable switches. A Trend Micro investigation traced the activity, dubbed…CSOONLINE.COM
17 Oct KEVCritical ASP.NET core vulnerability earns Microsoft’s highest-ever severity scoreMicrosoft has patched a critical vulnerability in ASP.NET Core that earned a CVSS severity score of 9.9, the highest rating the company has ever assigned to a flaw in the web development framework. The vulnerability, tracked as CVE-2025-55315 , affects the Kestrel web server comp…CSOONLINE.COM
17 OctJust a moment...submitted by kid to cybersecurity 1 points | 0 comments https://securityboulevard.com/2025/10/tenable-discovers-critical-vulnerabilities-in-simplehelp-tool-cve-2025-36727-and-cve-2025-36728/SH.ITJUST.WORKS
17 Oct KEVWatchGuard VPN Flaw Allows Remote Attackers to Execute Arbitrary CodeA critical security vulnerability has been discovered in WatchGuard Firebox appliances that could allow remote attackers to execute arbitrary code without authentication. The flaw, identified as CVE-2025-9242, affects the IKEv2 VPN service and has been assigned a severity score o…GBHACKERS.COM
17 OctChromium: CVE-2025-11756 Use after free in Safe BrowsingThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 24[−]
17 OctNorth Korean Hackers Exploit EtherHiding to Spread Malware and Steal Crypto AssetsThe cybersecurity landscape has witnessed a significant evolution in attack techniques with North Korean threat actors adopting EtherHiding, a sophisticated method that leverages blockchain technology to distribute malware and facilitate cryptocurrency theft. EtherHiding represen…GBHACKERS.COM
17 OctF5 Issues Security Patches for Multiple Products After Recent BreachF5 Networks has released comprehensive security patches addressing multiple critical vulnerabilities across its product portfolio following a recent security incident. The company issued its quarterly security notification on October 15, 2025, documenting numerous high-severity v…GBHACKERS.COM
17 OctMicrosoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware CampaignMicrosoft on Thursday disclosed that it revoked more than 200 certificates used by a threat actor it tracks as Vanilla Tempest to fraudulently sign malicious binaries in ransomware attacks. The certificates were "used in fake Teams setup files to deliver the Oyster backdoor and u…THEHACKERNEWS.COM
17 OctGladinet Patches Exploited CentreStack VulnerabilityThe unauthenticated local file inclusion bug allows attackers to retrieve the machine key and execute code remotely via a ViewState deserialization issue. The post Gladinet Patches Exploited CentreStack Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctVulnerabilities Allow Disruption of Phoenix Contact UPS DevicesAn attacker can exploit the flaws to put devices into a permanent DoS condition that prevents remote restoration. The post Vulnerabilities Allow Disruption of Phoenix Contact UPS Devices appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctConnectWise Flaws Let Attackers Deliver Malicious Software UpdatesConnectWise has issued a critical security update for its Automate™ platform after uncovering vulnerabilities that could allow attackers to intercept and tamper with software updates. The flaws, present in on-premises installations configured to use unsecured communication channe…GBHACKERS.COM
17 OctWindows GDI Vulnerability in Rust Kernel Module Enables Remote AttacksA newly discovered flaw in Microsoft’s Rust-based Graphics Device Interface (GDI) kernel component allows unprivileged attackers to crash or take control of Windows systems. Check Point Research (CPR) uncovered the issue in January 2025 and reported it to Microsoft. The company a…GBHACKERS.COM
17 OctCyberkriminelle erbeuten Kundendaten von Modekonzern MangoHacker haben Kundendaten des Modekonzerns Mango gestohlen. Auch deutsche Kunden sind betroffen. Vytautas Kielaitis – shutterstock.com Kriminelle Hacker haben massenhaft persönliche Daten von Kunden des spanischen Modekonzerns Mango erbeutet. Ein externer Marketingdienstleister ha…CSOONLINE.COM
17 Oct KEVCISOs face quantum leap in prioritizing quantum resilienceDespite recognizing the severity of the threat, enterprises continue to respond slowly to warnings that existing systems must be updated to address the risks of the approaching advent of quantum computers. Quantum computers threaten the security of existing public-key cryptograph…CSOONLINE.COM
17 OctNew Tech Support Scam Exploits Microsoft Logo to Steal User CredentialsMicrosoft’s name and branding have long been associated with trust in computing, security, and innovation. Yet a newly uncovered campaign by the Cofense Phishing Defense Center demonstrates that even the most recognized logos can be hijacked by threat actors to exploit user trust…GBHACKERS.COM
17 OctHackers Steal Sensitive Data From Auction House Sotheby’sSotheby's has disclosed a data breach impacting personal information, including SSNs. The post Hackers Steal Sensitive Data From Auction House Sotheby’s appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctEmail Bombs Exploit Lax Authentication in ZendeskCybercriminals are abusing a widespread lack of authentication in the customer service platform Zendesk to flood targeted email inboxes with menacing messages that come from hundreds of Zendesk corporate customers simultaneously.KREBSONSECURITY.COM
17 OctOver 266,000 F5 BIG-IP instances exposed to remote attacksInternet security nonprofit Shadowserver Foundation has found more than 266,000 F5 BIG-IP instances exposed online after the security breach disclosed by cybersecurity company F5 this week. [...]BLEEPINGCOMPUTER.COM
17 Oct KEVGladinet fixes actively exploited zero-day in file-sharing softwaresubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/gladinet-fixes-actively-exploited-zero-day-in-file-sharing-software/SH.ITJUST.WORKS
17 OctTikTok Videos Weaponized to Deliver Self-Compiling PowerShell MalwareAttackers are exploiting TikTok’s massive reach to trick users into executing malware through seemingly innocuous videos. In one popular TikTok video (liked over 500 times), the attacker poses as a provider of a free Photoshop activation tool and urges viewers to open PowerShell …GBHACKERS.COM
17 OctIn Other News: CrowdStrike Vulnerabilities, CISA Layoffs, Mango Data BreachOther noteworthy stories that might have slipped under the radar: Capita fined £14 million, ICTBroadcast vulnerability exploited, Spyware maker NSO acquired. The post In Other News: CrowdStrike Vulnerabilities, CISA Layoffs, Mango Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctAttackers Exploit Zendesk Authentication Issue to Flood Targets’ Inboxes with Corporate NotificationsCybercriminals have discovered a gap in Zendesk’s ticket submission process and are using it to bombard victims with waves of misleading support messages. When configured to accept anonymous requests, however, the service can be abused to generate email floods that appear to come…GBHACKERS.COM
17 OctPhishing Remains the Top Initial Access Vector in Cyberattacks Across EuropePhishing was the initial access vector for 60% of cyberattacks across Europe between July 2024 and June 2025, according to the European Union Agency for Cybersecurity (ENISA). KNOWBE4.COM
17 OctMicrosoft fixes highest-severity ASP.NET Core flaw everEarlier this week, Microsoft patched a vulnerability that was flagged with the "highest ever" severity rating received by an ASP.NET Core security flaw. [...]BLEEPINGCOMPUTER.COM
17 OctEuropol dismantles SIM box operation renting numbers for cybercrimeEuropean law enforcement in an operation codenamed 'SIMCARTEL' has dismantled an illegal SIM-box service that enabled more than 3,200 fraud cases and caused at least 4.5 million euros in losses. [...]BLEEPINGCOMPUTER.COM
17 OctConnectWise fixes Automate bug allowing AiTM update attacksConnectWise released a security update to address vulnerabilities, one of them with critical severity, in Automate product that could expose sensitive communications to interception and modification. [...]BLEEPINGCOMPUTER.COM
17 OctNorth Korean threat actors turn blockchains into malware delivery serversNation-state threat actors and cybercriminals are increasingly abusing cryptocurrency blockchains to host malicious payloads with a technique known as “EtherHiding,” which makes their attacks harder to detect and take down. “Google Threat Intelligence Group (GTIG) has observed th…CSOONLINE.COM
17 OctNation-state hackers deliver malware from “bulletproof” blockchains - Ars Technicasubmitted by otters_raft to cybersecurity 1 points | 0 comments https://arstechnica.com/security/2025/10/hackers-bullet-proof-hosts-deliver-malware-from-blockchains/ Some excerpts: Since February, Google researchers have observed two groups turning to a newer technique to infect …SH.ITJUST.WORKS
17 OctGovernment considered destroying its data hub after decade-long intrusionA Chinese-sponsored cyber attack was so damaging that it was briefly proposed that an entire data hub be destroyed, according to British news magazine The Spectator . It observed that the attack accessing confidential UK government data was just one manifestation of a continuing …CSOONLINE.COM
📋 SECURITY BULLETINS 1[−]
17 OctMicrosoft fixes Windows bug breaking localhost HTTP connectionsMicrosoft has fixed a known issue breaking HTTP/2 localhost (127.0.0.1) connections and IIS websites after installing recent Windows security updates. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 1[−]
🔥 INCIDENT REPORTING 11[−]
17 OctDeutschland größtes Hacker-Ziel in der EULaut einer Studie von Microsoft richteten sich 3,3 Prozent aller Cyberangriffe weltweit im ersten Halbjahr 2025 gegen Ziele in Deutschland. hyotographics – shutterstock.com Kein Land in der Europäischen Union steht so sehr im Fokus von kriminellen Hackern wie Deutschland. Das geh…CSOONLINE.COM
17 OctOver 269,000 F5 Devices Found Exposed Online After Massive BreachA recent breach of F5 Networks’ infrastructure has left more than 269,000 devices exposed and vulnerable to attack. Security researchers first detected unusual activity on F5’s management portal, prompting the company to issue an alert and patch critical vulnerabilities. However,…GBHACKERS.COM
17 OctProsper Data Breach Impacts 17.6 Million AccountsHackers stole names, addresses, dates of birth, email addresses, Social Security numbers, government IDs, and other information. The post Prosper Data Breach Impacts 17.6 Million Accounts appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctAPT28 Deploys BeardShell and Covenant Modules via Weaponized Office DocumentsSecurity researchers at Sekoia.io have uncovered a sophisticated cyberattack campaign orchestrated by APT28, the notorious Russian state-sponsored threat actor, targeting Ukrainian military personnel with weaponized Office documents that deliver advanced malware frameworks includ…GBHACKERS.COM
17 OctMicrosoft Report Warns of AI-Powered Automation in Cyberattacks and Malware CreationCybercriminals are weaponizing artificial intelligence to accelerate malware development, discover vulnerabilities faster, and create more sophisticated phishing campaigns, according to Microsoft’s latest Digital Defense Report covering trends from July 2024 through June 20…GBHACKERS.COM
17 OctHackerangriff auf Stadtverwaltung Hohen NeuendorfCyberkriminelle haben auf Daten der Stadtverwaltung Hohen Neuendorf zugegriffen. LookerStudio – shutterstock.com Wie die Stadtverwaltung Hohen Neuendorf auf ihrer Website mitteilt , gab es kürzlich einen Cyberangriff. Nachdem der Vorfall am 7. Oktober entdeckt wurde, mussten sämt…CSOONLINE.COM
17 OctNew deadline: Claim up to $7,500 from AT&T's $177M data breach payouts - here's how | ZDNETsubmitted by kid to cybersecurity 1 points | 0 comments https://www.zdnet.com/article/new-deadline-claim-up-to-7500-from-at-ts-177m-data-breach-payouts-heres-how/SH.ITJUST.WORKS
17 OctHave I Been Pwned: Prosper data breach impacts 17.6 million accountssubmitted by kid to cybersecurity 3 points | 0 comments https://www.bleepingcomputer.com/news/security/have-i-been-pwned-warns-of-prosper-data-breach-impacting-176-million-accounts/SH.ITJUST.WORKS
17 OctMS Digital Defense Reportsubmitted by cm0002 to cybersecurity 1 points | 0 comments https://cdn-dynmedia-1.microsoft.com/is/content/microsoftcorp/microsoft/msc/documents/presentations/CSR/Microsoft-Digital-Defense-Report-2025.pdf The Microsoft Digital Defense Report 2025 provides an in-depth look at the …INFOSEC.PUB
17 OctMicrosoft: Russia, China Increasingly Using AI to Escalate Cyberattacks on the USThe U.S. is the top target for cyberattacks, with criminals and foreign adversaries targeting companies, governments and organizations. The post Microsoft: Russia, China Increasingly Using AI to Escalate Cyberattacks on the US appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctAmerican Airlines subsidiary Envoy confirms Oracle data theft attackEnvoy Air, a regional airline carrier owned by American Airlines, confirms that data was compromised from its Oracle E-Business Suite application after the Clop extortion gang listed American Airlines on its data leak site. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 13[−]
17 OctISC Stormcast For Friday, October 17th, 2025 https://isc.sans.edu/podcastdetail/9660, (Fri, Oct 17th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
17 OctVMware Releases Workstation & Fusion 25H2 With Enhanced Features and OS SupportVMware has launched the latest versions of its desktop hypervisors, Workstation 25H2 and Fusion 25H2, bringing significant improvements to virtualization technology. These updates introduce a simplified versioning system, powerful new features, and expanded compatibility with mod…GBHACKERS.COM
17 OctCisco Desk, IP, and Video Phones Vulnerable to Remote DoS and XSS AttacksMultiple Cisco desk, IP, and video phones are at risk of remote denial-of-service (DoS) and cross-site scripting (XSS) attacks due to flaws in their Session Initiation Protocol (SIP) software. The weaknesses affect Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video …GBHACKERS.COM
17 OctA Surprising Amount of Satellite Traffic Is UnencryptedHere’s the summary : We pointed a commercial-off-the-shelf satellite dish at the sky and carried out the most comprehensive public study to date of geostationary satellite communication. A shockingly large amount of sensitive traffic is being broadcast unencrypted, includin…SCHNEIER.COM
17 OctOver $3 Million in Prizes Offered at Pwn2Own Automotive 2026Set for January 2026 at Automotive World in Tokyo, the contest will have six categories, including Tesla, infotainment systems, EV chargers, and automotive OSes. The post Over $3 Million in Prizes Offered at Pwn2Own Automotive 2026 appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctAI, Quantum Computing and Other Emerging RisksPrepare for tomorrow's cybersecurity threats. Explore emerging risks from AI and quantum computing and learn how to build a proactive defense strategy. The post AI, Quantum Computing and Other Emerging Risks appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
17 OctClickFake Interview Campaign Used by Threat Actors to Deliver OtterCandy MalwareA North Korean-linked group, WaterPlum’s Cluster B, has evolved its tactics by introducing OtterCandy—a Node.js–based RAT and information stealer—through the ClickFake Interview campaign, with significant enhancements observed in August 2025. This threat actor, attributed to Nort…GBHACKERS.COM
17 OctThreat Intelligence Executive Report – Volume 2025, Number 5This issue of the Counter Threat Unit’s high-level bimonthly report discusses noteworthy updates in the threat landscape during July and AugustSOPHOS.COM
17 OctNorth Korean Hackers Combine BeaverTail and OtterCookie into Advanced JS MalwareThe North Korean threat actor linked to the Contagious Interview campaign has been observed merging some of the functionality of two of its malware programs, indicating that the hacking group is actively refining its toolset. That's according to new findings from Cisco Talos, whi…THEHACKERNEWS.COM
17 OctWhatever happened to Secure Quick Reliable Login (SQRL)?submitted by onlinepersona to cybersecurity 1 points | 0 comments I just watched “ Decentralized Authentication is Our Only Hope ” and the dude presented a new method of authentication that went over my head. Back when reading SQRL my first thought was “damn, that’s genius”. My c…INFOSEC.PUB
17 OctFriday Squid Blogging: Squid Inks Philippines FishermanGood video . As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy.SCHNEIER.COM
17 OctErotic Chats, UEFI, F5, Cisco, Doug Sings, Insiders, Lastpass, Sora, Aaran Leyland... - SWN #521Erotic Chats, UEFI, F5, Cisco, Doug Sings, Insiders, Lastpass, Sora, Aaran Leyland, and More on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-521YOUTUBE.COM
17 OctRisky Biz Soap Box: Why Mastercard is scaling its cybersecurity businessIn this sponsored Soap Box edition of the Risky Business podcast, host Patrick Gray chats with Mastercard’s Executive Vice President and Head of Security Solutions, Johan Gerber, about how the card brand thinks about cybersecurity and why it’s aggressively investing in the space.…RISKY.BIZ
🌐 CYBER THREAT LANDSCAPE 1[−]
17 OctTikTok Videos Promoting Malware Installation, (Fri, Oct 17th)Attackers are everywhere! They try to abuse victims using new communication channels and social engineering techniques! Somebody pointed my to the following Tik-Tok video: hxxps://vm[.]tiktok[.]com/ZGdaCkbEF/.
ISC.SANS.EDU
📡 INFOSEC NEWS 4[−]
17 OctLinks to porn and online casinos hidden inside corporate websitesAttackers are embedding blocks of links that lead to porn sites, online casinos, and the like. We explain their objective, and how to protect your website.KASPERSKY.COM
17 OctIdentity Security: Your First and Last Line of DefenseThe danger isn’t that AI agents have bad days — it’s that they never do. They execute faithfully, even when what they’re executing is a mistake. A single misstep in logic or access can turn flawless automation into a flawless catastrophe. This isn't some dystopian fantasy—it's Tu…THEHACKERNEWS.COM
17 OctVMware Certification: Your Next Career Power MoveVMware certification isn't just about passing exams — it's about mastering systems, proving expertise, and your career. Gain hands-on labs, discounts, and mentorship with VMUG Advantage to reach your next goal faster. [...]BLEEPINGCOMPUTER.COM
17 OctMicrosoft lifts more safeguard holds blocking Windows 11 updatesMicrosoft has removed two more compatibility holds preventing customers from installing Windows 11 24H2 via Windows Update. [...]BLEEPINGCOMPUTER.COM