78Articles
7Categories
2025-10-27Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
27 Oct706,000+ BIND 9 DNS Resolvers Exposed to Cache Poisoning – PoC ReleasedA critical vulnerability affecting more than 706,000 BIND 9 DNS resolvers worldwide has been disclosed with proof-of-concept exploit code now publicly available. The security flaw enables attackers to perform cache poisoning attacks by injecting malicious DNS records into vulnera…GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 24[−]
27 OctPwn2Own Ireland 2025: Major Cybersecurity Revelations & Critical VulnerabilitiesIn this episode of Cybersecurity Today, host David Shipley covers the latest updates from the Pwn2Own 2025 event in Ireland, where top hackers earned over $1 million for uncovering 73 zero-day vulnerabilities. Despite significant hype, AI's impact on cybersecurity remains limited…CYBERSECURITYTODAY.LIBSYN.COM
27 OctWhatsApp 0-Click Exploit Disclosed to Meta at Pwn2Own Security EventCybersecurity researchers from Team Z3 have withdrawn their planned demonstration of a zero-click remote code execution vulnerability in WhatsApp at the Pwn2Own Ireland 2025 hacking competition, opting instead for private coordinated disclosure to Meta. The high-stakes exploit, w…GBHACKERS.COM
27 OctCritical CoPhish Exploit Uses Copilot Studio to Hijack OAuth TokensSecurity researchers at Datadog have uncovered a sophisticated phishing technique that weaponizes Microsoft Copilot Studio to conduct OAuth token theft attacks. Dubbed “CoPhish,” this attack method leverages the legitimate appearance of Microsoft domains to trick user…GBHACKERS.COM
27 OctQilin Ransomware Exploits MSPaint and Notepad to Locate Sensitive FilesIn the latter half of 2025, the Qilin ransomware group has solidified its standing as a formidable threat, continuing to post details of more than 40 victims per month on its public leak site. This rapid, relentless campaign—primarily impacting manufacturing, professional and sci…GBHACKERS.COM
27 OctSecuring AI Agents with Dave Lewis, Enterprise News, and interviews from Oktane 2025 - ESW #430Segment 1: Interview with Dave Lewis from 1Password In this week's sponsored interview, we dive into the evolving security landscape around AI agents, where we stand with AI agent adoption. We also touch on topics such as securing credentials in browser workflows and why identity…YOUTUBE.COM
27 OctChrome Zero-Day Exploitation Linked to Hacking Team SpywareThe threat actor behind Operation ForumTroll used the same toolset typically employed in Dante spyware attacks. The post Chrome Zero-Day Exploitation Linked to Hacking Team Spyware appeared first on SecurityWeek .SECURITYWEEK.COM
27 OctQilin Ransomware Combines Linux Payload With BYOVD Exploit in Hybrid AttackThe ransomware group known as Qilin (aka Agenda, Gold Feather, and Water Galura) has claimed more than 40 victims every month since the start of 2025, barring January, with the number of postings on its data leak site touching a high of 100 cases in June. The development comes as…THEHACKERNEWS.COM
27 OctData sovereignty proof: How to verify controls like ‘Project Texas’As data sovereignty laws fracture the global internet, CSOs are scrutinizing ambitious new compliance blueprints, with their success or failure set to redefine security architectures for a generation. “ Project Texas ” may just be the most visible attempt to realign a global plat…CSOONLINE.COM
27 OctYear-Old WordPress Plugin Flaws Exploited to Hack WebsitesRoughly 9 million exploit attempts were observed this month as mass exploitation of the critical vulnerabilities recommenced. The post Year-Old WordPress Plugin Flaws Exploited to Hack Websites appeared first on SecurityWeek .SECURITYWEEK.COM
27 OctChatGPT’s Atlas Browser Jailbroken to Hide Malicious Prompts Inside URLsSecurity researchers at NeuralTrust have uncovered a critical vulnerability in OpenAI’s Atlas browser that allows attackers to bypass safety measures by disguising malicious instructions as innocent-looking web addresses. The flaw exploits how the browser’s omnibox in…GBHACKERS.COM
27 OctCross-platform ransomware: Qilin weaponizes Linux binaries against Windows hostsAgenda ransomware group, popularly known as Qilin, has been abusing legitimate remote management and file transfer tools, security researchers revealed in a new disclosure. By deploying a Linux-based ransomware binary on Windows hosts, the threat actor has affected more than 700 …CSOONLINE.COM
27 OctDell Storage Manager Vulnerabilities Allow Full System CompromiseDell Technologies has disclosed three critical vulnerabilities affecting Dell Storage Manager that could allow unauthenticated remote attackers to completely compromise storage systems. Dell Storage Manager versions prior to 2020 R1.21 are vulnerable to attacks that bypass authen…GBHACKERS.COM
27 OctCritical HashiCorp Vault Vulnerabilities Allow Authentication Bypass and DoS AttacksHashiCorp has disclosed two critical vulnerabilities in Vault and Vault Enterprise that could enable attackers to bypass authentication mechanisms and launch denial-of-service attacks against infrastructure. The first vulnerability, identified under Bulletin ID HCSEC-2025-31, ste…GBHACKERS.COM
27 Oct⚡ Weekly Recap: WSUS Exploited, LockBit 5.0 Returns, Telegram Backdoor, F5 Breach WidensSecurity, trust, and stability — once the pillars of our digital world — are now the tools attackers turn against us. From stolen accounts to fake job offers, cybercriminals keep finding new ways to exploit both system flaws and human behavior. Each new breach proves a harsh trut…THEHACKERNEWS.COM
27 OctNew EDR-Redir Tool Bypasses EDRs by Exploiting Bind Filter and Cloud Filter DriverCybersecurity researchers have developed a sophisticated new tool called EDR-Redir that can bypass Endpoint Detection and Response (EDR) systems by exploiting Windows’ Bind Filter and Cloud Filter drivers. This technique represents a significant advancement in evasion metho…GBHACKERS.COM
27 Oct KEVCISA orders feds to patch actively exploited Windows Server WSUS flawThe Cybersecurity and Infrastructure Security Agency (CISA) ordered U.S. government agencies to patch a critical-severity Windows Server Update Services (WSUS) vulnerability after adding it to its catalog of security flaws exploited in attacks. [...]BLEEPINGCOMPUTER.COM
27 OctHackers launch mass attacks exploiting outdated WordPress pluginssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/hackers-launch-mass-attacks-exploiting-outdated-wordpress-plugins/SH.ITJUST.WORKS
27 OctCritical Chrome 0-Day Under Attack: Mem3nt0 Mori Hackers Actively Exploiting VulnerabilityIn March 2025, security researchers at Kaspersky detected a sophisticated campaign exploiting a previously unknown Chrome vulnerability to deliver advanced spyware to high-profile targets. The attack, dubbed Operation ForumTroll, leveraged personalized phishing links to compromis…GBHACKERS.COM
27 Oct706,000+ BIND 9 Resolver Instances Vulnerable to Cache Poisoning Exposed Online - PoC Releasedsubmitted by kid to cybersecurity 1 points | 0 comments https://cybersecuritynews.com/bind-9-resolver-instances/SH.ITJUST.WORKS
27 OctThe State of Exposure Management in 2025: Insights From 3,000+ OrganizationsAttackers are using AI to weaponize old vulnerabilities while security teams face expanding attack surfaces and limited resources. Intruder's 2025 Exposure Management Index reveals how 3,000+ organizations are adapting and fixing critical flaws faster than ever. [...]BLEEPINGCOMPUTER.COM
27 OctNew ChatGPT Atlas Browser Exploit Lets Attackers Plant Persistent Hidden CommandsCybersecurity researchers have discovered a new vulnerability in OpenAI's ChatGPT Atlas web browser that could allow malicious actors to inject nefarious instructions into the artificial intelligence (AI)-powered assistant's memory and run arbitrary code. "This exploit can allow …THEHACKERNEWS.COM
27 OctItalian spyware vendor linked to Chrome zero-day attacksA zero-day vulnerability in Google Chrome exploited in Operation ForumTroll earlier this year delivered malware linked to Italian spyware vendor Memento Labs, born after IntheCyber ​​Group acquired the infamous Hacking Team. [...]BLEEPINGCOMPUTER.COM
27 OctQNAP warns of critical ASP.NET flaw in its Windows backup softwareQNAP warned customers to patch a critical ASP.NET Core vulnerability that also impacts the company's NetBak PC Agent, a Windows utility for backing& up data to a QNAP network-attached storage (NAS) device. [...]BLEEPINGCOMPUTER.COM
27 OctGoogle disputes false claims of massive Gmail data breachGoogle was once again forced to announce that it had not suffered a data breach after numerous news outlets published sensational stories about a fake breach that purportedly exposed 183 million accounts. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 7[−]
27 OctMicrosoft: New policy removes pre-installed Microsoft Store appsMicrosoft now allows IT administrators to remove pre-installed Microsoft Store apps (also known as in-box apps) using a new app management policy. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 12[−]
27 OctMyVidster (2025) - 3,864,364 breached accountsIn October 2025, the data of almost 4M MyVidster users was posted to a public hacking forum . Separate to the 2015 breach, this incident exposed usernames, email addresses and in a small number of cases, profile photos.HAVEIBEENPWNED.COM
27 OctHow We (Almost) Found Chromium's Bug via Crash Reports to Report URIPresently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite Tracking down bugs in software is a pain that all of us who write code must bear. When we're talking about outright errors in a we…TROYHUNT.COM
27 OctRansomware Payments Dropped in Q3 2025: AnalysisCoveware has attributed the drop to large enterprises increasingly refusing to pay up and smaller amounts paid by mid-market firms. The post Ransomware Payments Dropped in Q3 2025: Analysis appeared first on SecurityWeek .SECURITYWEEK.COM
27 OctPredatory Sparrow Strikes: Coordinated Cyberattacks Seek to Cripple Critical InfrastructureA sophisticated cyber-sabotage group known as Predatory Sparrow has emerged as one of the most destructive threat actors targeting Iranian critical infrastructure over the past several years. Unlike traditional cybercriminal operations focused on financial gain, this group execut…GBHACKERS.COM
27 OctDefective block grant scheme firm hit by cyber attacksubmitted by kid to cybersecurity 1 points | 0 comments https://www.bbc.com/news/articles/c986g2qll62oSH.ITJUST.WORKS
27 Oct[Cyber Security Awareness Month] Doppelgänger Promotes Incident Hiding: Why Saying Something When You See Something Is So ImportantIt can happen to the best of us.  This story happened a decade ago, when I was working at a Fortune 10 company. “Smartest” is subjective, but most of my former coworkers and external customers agreed the guy involved in this story was seen as the “smartest” guy around.KNOWBE4.COM
27 OctiOS 26 Overwrites ‘shutdown.log’ on Reboot, Erasing Forensic Evidence of Pegasus and Predator SpywareAs iOS 26 is being rolled out, a critical forensic challenge has emerged: the operating system now automatically overwrites the shutdown.log file on every reboot, effectively erasing crucial evidence of Pegasus and Predator spyware infections. This development represents a signif…GBHACKERS.COM
27 OctRisiken bei der Wiederherstellung nach Ransomware-AngriffenDie Zahlung des Lösegelds nach einer Ransomware-Attacke ist keine Garantie für eine reibungslose oder gar erfolgreiche Wiederherstellung der Daten. AndryDj – shutterstock.com Zwei von fünf Unternehmen, die Cyberkriminellen für die Entschlüsselung von Ransomware bezahlen, können i…CSOONLINE.COM
27 OctFake LastPass death claims used to breach password vaultssubmitted by kid to cybersecurity 2 points | 2 comments https://www.bleepingcomputer.com/news/security/fake-lastpass-death-claims-used-to-breach-password-vaults/SH.ITJUST.WORKS
27 OctEverest Ransomware Says It Stole 1.5M Dublin Airport Passenger Records – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and Moresubmitted by kid to cybersecurity 2 points | 0 comments https://hackread.com/everest-ransomware-dublin-airport-passenger-data/SH.ITJUST.WORKS
27 OctRansomware profits drop as victims stop paying hackersThe number of victims paying ransomware threat actors has reached a new low, with just 23% of the breached companies giving in to attackers' demands. [...]BLEEPINGCOMPUTER.COM
27 OctGmail Passwords Confirmed As Part Of 183 Million Account Data Leaksubmitted by cm0002 to cybersecurity 1 points | 0 comments https://www.forbes.com/sites/daveywinder/2025/10/27/gmail-passwords-confirmed-as-part-of-183-million-account-data-breach/INFOSEC.PUB
🕵️ THREAT INTELLIGENCE 25[−]
27 OctISC Stormcast For Monday, October 27th, 2025 https://isc.sans.edu/podcastdetail/9672, (Mon, Oct 27th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
27 OctNorth Korean Chollima Actors Added BeaverTail and OtterCookie to its ArsenalFamous Chollima, a DPRK-aligned threat group, has evolved its arsenal, with BeaverTail and OtterCookie increasingly merging functionalities to steal credentials and cryptocurrency via deceptive job offers. A recent campaign involved a trojanized Node.js application distributed th…GBHACKERS.COM
27 OctMicrosoft Adds Wi-Fi-Based Work Location Auto-Detection to TeamsMicrosoft is preparing to introduce a groundbreaking feature in Teams that will revolutionise how hybrid workers manage their presence information. The new capability will automatically identify and update users’ work locations by detecting their connection to organisationa…GBHACKERS.COM
27 OctFirst Wap: A Surveillance Computer You’ve Never Heard OfMother Jones has a long article on surveillance arms manufacturers, their wares, and how they avoid export control laws: Operating from their base in Jakarta, where permissive export laws have allowed their surveillance business to flourish, First Wap’s European founders an…SCHNEIER.COM
27 OctNew Firefox Extensions Required to Disclose Data Collection PracticesAll new extensions will be required to declare their data collection practices in their manifest file using a specific key. The post New Firefox Extensions Required to Disclose Data Collection Practices appeared first on SecurityWeek .SECURITYWEEK.COM
27 OctSmishing Triad Linked to 194,000 Malicious Domains in Global Phishing Operationsubmitted by kid to cybersecurity 2 points | 0 comments https://thehackernews.com/2025/10/smishing-triad-linked-to-194000.htmlSH.ITJUST.WORKS
27 OctEuropol has put an end to network behind 49 million fake accountsOn October 10, Europol, in cooperation with police authorities in Estonia, Finland, Latvia and Austria, raided a cybercrime-as-a-service (CaaS) network. During the raid, seven people were arrested who are believed to have swindled millions of euros through the criminal activity. …CSOONLINE.COM
27 OctMassive China-Linked Smishing Campaign Leveraged 194,000 DomainsThe malicious Smishing Triad domains were used to collect sensitive information, including Social Security numbers. The post Massive China-Linked Smishing Campaign Leveraged 194,000 Domains appeared first on SecurityWeek .SECURITYWEEK.COM
27 OctBlitz Spear Phishing Campaign Targets NGOs Supporting Ukraine - Infosecurity Magazinesubmitted by kid to cybersecurity 2 points | 0 comments https://www.infosecurity-magazine.com/news/blitz-spear-phishing-ngos-ukraine/SH.ITJUST.WORKS
27 OctHackers steal Discord accounts with RedTiger-based infostealersubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/hackers-steal-discord-accounts-with-redtiger-based-infostealer/SH.ITJUST.WORKS
27 OctNew CoPhish attack steals OAuth tokens via Copilot Studio agentssubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/new-cophish-attack-steals-oauth-tokens-via-copilot-studio-agents/SH.ITJUST.WORKS
27 OctHackers Target 81% of Routers with Default Admin PasswordsThe latest 2025 Broadband Genie router security survey reveals alarming trends in network security awareness among internet users. This year’s results, while showing marginal improvements in some areas, underscore the persistent gap between knowing how to secure a network a…GBHACKERS.COM
27 Oct1inch partners with Innerworks to strengthen DeFi security through AI-Powered threat detectionLondon, United Kingdom, October 27th, 2025, CyberNewsWire 1inch, the leading DeFi ecosystem, has adopted Innerworks’ advanced device intelligence and RedTeam ethical hacking platform to strengthen security. By tapping into Innerworks’ predictive AI solution, the companies a…GBHACKERS.COM
27 OctIR Trends Q3 2025: ToolShell attacks dominate, highlighting criticality of segmentation and rapid responsesubmitted by kid to cybersecurity 2 points | 0 comments https://blog.talosintelligence.com/ir-trends-q3-2025/SH.ITJUST.WORKS
27 OctLouvre Jewel HeistI assume I don’t have to explain last week’s Louvre jewel heist . I love a good caper, and have (like many others ) eagerly followed the details . An electric ladder to a second-floor window, an angle grinder to get into the room and the display cases, security guards…SCHNEIER.COM
27 OctChainguard Raises $280 Million in Growth FundingChainguard has raised $636 million in the past six months alone for its software supply chain security solutions. The post Chainguard Raises $280 Million in Growth Funding appeared first on SecurityWeek .SECURITYWEEK.COM
27 OctCyberRiskTV Live Coverage from Oktane 2025 - Day 2CyberRisk Alliance's Security Weekly broadcasting live from the CyberRiskTV Studio at Oktane 2025 at Caesars Forum in Las Vegas! Schedule (PT): 9:40am - Daily Intro ft. Mandy Logan & Adrian Sanabria 10:10am - How to detect, contain, and respond to today’s threats ft. Matt Immler,…YOUTUBE.COM
27 OctCyberRiskTV Live Coverage from InfoSec World 2025 - Day 1CyberRisk Alliance's Security Weekly broadcasting live from the CyberRiskTV Studio at InfoSec World 2025 at Disney's Coronado Springs Resort in Orlando! Schedule (ET): 2:00pm - Daily Intro ft. Mandy Logan 2:40pm - Security Challenges for Mid-Sized companies ft. Perry Schumacher, …YOUTUBE.COM
27 OctCyberRiskTV Live Coverage from Oktane 2025 - Day 2CyberRisk Alliance's Security Weekly broadcasting live from the CyberRiskTV Studio at Oktane 2025 at Caesars Forum in Las Vegas! Schedule (PT): 9:40am - Daily Intro ft. Mandy Logan & Adrian Sanabria 10:10am - How to detect, contain, and respond to today’s threats ft. Matt Immler,…YOUTUBE.COM
27 OctCyberRiskTV Live Coverage from Oktane 2025 - Day 2CyberRisk Alliance's Security Weekly broadcasting live from the CyberRiskTV Studio at Oktane 2025 at Caesars Forum in Las Vegas! Schedule (PT): 9:40am - Daily Intro ft. Mandy Logan & Adrian Sanabria 10:10am - How to detect, contain, and respond to today’s threats ft. Matt Immler,…YOUTUBE.COM
27 OctCyberRiskTV Live Coverage from Oktane 2025 - Day 2CyberRisk Alliance's Security Weekly broadcasting live from the CyberRiskTV Studio at Oktane 2025 at Caesars Forum in Las Vegas! Schedule (PT): 9:40am - Daily Intro ft. Mandy Logan & Adrian Sanabria 10:10am - How to detect, contain, and respond to today’s threats ft. Matt Immler,…YOUTUBE.COM
27 OctnsKnox Launches Adaptive Payment Security™, Revolutionizing B2B Fraud Prevention by Solving the ‘Impossible Triangle’ of Speed, Certainty, and EfforNew York, New York, USA, October 27th, 2025, CyberNewsWire nsKnox, a leader in payment security, today announced the launch of Adaptive Payment Security, a groundbreaking enhancement to its PaymentKnox platform designed to eliminate B2B payment fraud by providing the fastest poss…GBHACKERS.COM
27 OctCyberRiskTV Live Coverage from Oktane 2025 - Day 2CyberRisk Alliance's Security Weekly broadcasting live from the CyberRiskTV Studio at Oktane 2025 at Caesars Forum in Las Vegas! Schedule (PT): 9:40am - Daily Intro ft. Mandy Logan & Adrian Sanabria 10:10am - How to detect, contain, and respond to today’s threats ft. Matt Immler,…YOUTUBE.COM
27 OctPredatory Sparrow Group Attacking Critical Infrastructure to Destroy Data and Cause Disruptionsubmitted by kid to cybersecurity 1 points | 0 comments https://cybersecuritynews.com/predatory-sparrow-group-attacking-critical-infrastructure/SH.ITJUST.WORKS
27 OctReport: More Than Half of Adults Encountered a Scam Last YearResearchers at Bitdefender warn that scams are seeing a steady increase globally. Citing a recent report from the Global Anti-Scam Alliance (GASA), the researchers note that 57% of adults worldwide have reported encountering a scam in the past year, and 13% encounter a scam at le…KNOWBE4.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
27 OctBytes over DNS, (Mon, Oct 27th)I was intrigued when Johannes talked about malware that uses BASE64 over DNS to communicate. Take a DNS request like this: label1.label2.tld. Labels in a request like this can only be composed with letters (not case-sensitive), digits and a hyphen character (-). While BASE64 is e…ISC.SANS.EDU
27 OctLeetAgent: a tool shared by ForumTroll and DanteAt the SAS 2025 conference, our experts showed common tools used by both the ForumTroll and the actors armed with Dante malware by Memento Labs (HackingTeam).KASPERSKY.COM
27 OctActive Water Saci Campaign Spreading Via WhatsApp Features Multi-Vector Persistence and Sophisticated C&CContinuous investigation on the Water Saci campaign reveals innovative email-based C&C system, multi-vector persistence, and real-time command capabilities that allow attackers to orchestrate coordinated botnet operations, gather detailed campaign intelligence, and dynamicall…TRENDMICRO.COM
📡 INFOSEC NEWS 6[−]
27 OctChatGPT Atlas Browser Can Be Tricked by Fake URLs into Executing Hidden CommandsThe newly released OpenAI Atlas web browser has been found to be susceptible to a prompt injection attack where its omnibox can be jailbroken by disguising a malicious prompt as a seemingly harmless URL to visit. "The omnibox (combined address/search bar) interprets input either …THEHACKERNEWS.COM
27 OctGoogle says everyone will be able to vibe code video gamesGoogle AI Studio product lead teased that everyone will be able to vibe code video games by the end of the year. [...]BLEEPINGCOMPUTER.COM
27 OctX Warns Users With Security Keys to Re-Enroll Before November 10 to Avoid LockoutsSocial media platform X is urging users who have enrolled for two-factor authentication (2FA) using passkeys and hardware security keys like Yubikeys to re-enroll their key to ensure continued access to the service. To that end, users are being asked to complete the re-enrollment…THEHACKERNEWS.COM
27 OctWindows will soon prompt for memory scans after BSOD crashesMicrosoft has started testing a new feature that prompts Windows 11 users to run a memory scan when logging in after a blue screen of death (BSOD). [...]BLEEPINGCOMPUTER.COM
27 OctX: Re-enroll 2FA security keys by November 10 or get locked outX is warning that users must re-enroll their security keys or passkeys for two-factor authentication (2FA) before November 10 or they will be locked out of their accounts until they do so. [...]BLEEPINGCOMPUTER.COM
27 OctHow MDR can give MSPs the edge in a competitive marketWith cybersecurity talent in short supply and threats evolving fast, managed detection and response is emerging as a strategic necessity for MSPsWELIVESECURITY.COM