98Articles
9Categories
2025-10-28Date
🚨 CISA KEV 1[−]
28 Oct KEVCISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2025-6204 Dassault Systèmes DELMIA Apriso Code Injection Vulnerability CVE-2025-6205 Dassault Systèmes DELMIA Apriso Missing Authorization V…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
28 OctGamaredon Phishing Campaign Exploits WinRAR Vulnerability to Target Government AgenciesCybersecurity researchers have uncovered a sophisticated phishing campaign orchestrated by the notorious Gamaredon threat group, specifically targeting government entities through exploitation of a critical WinRAR vulnerability. The attack leverages CVE-2025-8088, a path traversa…GBHACKERS.COM
28 OctCritical QNAP .NET Flaw Lets Attackers Bypass Security ProtectionsA significant security vulnerability has emerged affecting QNAP’s NetBak PC Agent software through a critical flaw in Microsoft ASP.NET Core. The vulnerability, tracked as CVE-2025-55315, exploits HTTP Request Smuggling techniques to bypass essential security controls and c…GBHACKERS.COM
28 OctChrome Zero-Day Exploited to Deliver Italian Memento Labs' LeetAgent SpywareThe zero-day exploitation of a now-patched security flaw in Google Chrome led to the distribution of an espionage-related tool from Italian information technology and services provider Memento Labs, according to new findings from Kaspersky. The vulnerability in question is CVE-20…THEHACKERNEWS.COM
⚠️ VULNERABILITY DISCLOSURE 32[−]
28 OctOpenAI Atlas Browser Vulnerability Lets Attackers Execute Malicious Scripts in ChatGPTCybersecurity firm LayerX has identified a critical vulnerability in OpenAI’s ChatGPT Atlas browser that allows malicious actors to inject harmful instructions into ChatGPT’s memory and execute remote code. This security flaw poses significant risks to users across al…GBHACKERS.COM
28 OctApache Tomcat Flaws Allow Remote Code Execution on Vulnerable ServersThe Apache Software Foundation has disclosed two security vulnerabilities affecting multiple versions of Apache Tomcat, with one flaw posing a serious risk of remote code execution on vulnerable servers. The flaws impact Apache Tomcat versions 9, 10, and 11, prompting urgent warn…GBHACKERS.COM
28 OctBeware of Free Video Game Cheats that Deliver Infostealer MalwaresThe competitive gaming landscape has become a breeding ground for cybercriminals who exploit players’ desire to gain an unfair advantage. While major esports tournaments like last year’s CS2 PGL Major in Copenhagen boast prize pools reaching $1.25 million, the temptat…GBHACKERS.COM
28 OctCISA Alerts on Critical Veeder-Root Flaws Allowing Attackers to Execute System CommandsThe Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical security alert regarding serious vulnerabilities in Veeder-Root’s TLS4B Automatic Tank Gauge System. Released on October 23, 2025, the alert warns that attackers could exploit these flaws to t…GBHACKERS.COM
28 OctDo CISOs need to rethink service provider risk?Nearly half (47%) of organizations reported a cyberattack or data breach involving a third-party accessing their network in the 12 months to mid-2025, according to Imprivata and Ponemon report . As organizations increasingly rely on services providers to help manage critical syst…CSOONLINE.COM
28 Oct70% of CISOs say internal conflicts more damaging than cyberattacksRoughly 70% of security executives believe internal conflicts during a crisis cause more problems than the cyberattack itself. “ CISO-CEO tension, unclear authority, unrehearsed scenarios, and communication gaps between key teams cripple breach response despite major investments …CSOONLINE.COM
28 OctSweden’s Power Grid Operator Admits Data Breach Linked to Everest Ransomware GangSvenska kraftnät, Sweden’s national power grid operator, has confirmed it suffered a significant data breach that exposed certain information to unauthorized parties. The incident, disclosed on October 26, 2025, is linked to the notorious Everest ransomware gang, marking a …GBHACKERS.COM
28 OctNew GhostGrab Android Malware Silently Steals Banking Login Details and Intercept SMS for OTPsA sophisticated new Android malware family called GhostGrab is actively targeting mobile users with a dual-monetization strategy that combines covert cryptocurrency mining with comprehensive financial data theft. GhostGrab functions as a multifaceted threat that systematically ha…GBHACKERS.COM
28 OctQuantum Computing Isn’t A Threat To Blockchains - Yet - Sandy Carielli, Martha Bennett - ASW #354The post quantum encryption migration is going to be a challenge, but how much of a challenge? There are several reasons why it is different from every other protocol and cypher iteration in the past. Is today's hardware up to the task? Is it just swapping out a library, or is th…YOUTUBE.COM
28 OctStep aside, SOC. It’s time to ROCLooking back on my years in national defense, one lesson stands out above the rest: speed and coordination are everything. Waiting until the dust settles to act after an attack can mean major setbacks at best, or dire consequences at worst. The same rings true in enterprise cyber…CSOONLINE.COM
28 OctZero-Click Exploit Targets MCP and Linked AI Agents to Stealthily Steal DataOperant AI’s security research team has uncovered Shadow Escape, a dangerous zero-click attack that exploits the Model Context Protocol to steal sensitive data through AI assistants. The attack works with widely used platforms, including ChatGPT, Claude, Gemini, and other A…GBHACKERS.COM
28 OctSocial Engineering People’s Credit Card DetailsGood Wall Street Journal article on criminal gangs that scam people out of their credit card information: Your highway toll payment is now past due, one text warns. You have U.S. Postal Service fees to pay, another threatens. You owe the New York City Department of Finance for un…SCHNEIER.COM
28 OctCybercriminals Trade 183 Million Stolen Credentials on Telegram, Dark ForumsThe email addresses were pulled from various sources and 16.4 million of them were not present in previous data breaches. The post Cybercriminals Trade 183 Million Stolen Credentials on Telegram, Dark Forums appeared first on SecurityWeek .SECURITYWEEK.COM
28 OctVolvo’s recent security breach: 5 tips to speed incident response while preserving forensic integrityIn August 2025, Volvo Group North America disclosed that it had been impacted by a data breach originating in its third-party HR software provider, Miljödata. Although Volvo insisted its internal systems remained untouched, the timeline of detection and disclosure raises question…CSOONLINE.COM
28 OctAtlas browser exploit lets attackers hijack ChatGPT memoryDays after cybersecurity analysts warned enterprises against installing OpenAI’s new Atlas browser, researchers have discovered a vulnerability that allows attackers to infect systems with malicious code, granting themselves access privileges, or deploy malware. The development r…CSOONLINE.COM
28 OctAnivia Stealer Peddled on Dark Web with UAC BypassA newly advertised information-stealing malware called Anivia Stealer has surfaced on the dark web, with threat actor ZeroTrace aggressively promoting the C++17-based infostealer as a commercial malware-as-a-service offering. The malware implements sophisticated privilege escalat…GBHACKERS.COM
28 OctCopilot diagrams could leak corporate emails via indirect prompt injectionMicrosoft has patched an indirect prompt injection flaw in Microsoft 365 Copilot that could have allowed attackers to steal sensitive data using clickable Mermaid diagrams. According to findings published by security researcher Adam Logue, the exploit could be triggered through s…CSOONLINE.COM
28 OctIPFire 2.29 Released with Enhanced Intrusion Prevention System ReportingThe IPFire project has announced the release of version 2.29, Core Update 198, marking a significant milestone in the open-source firewall’s evolution. This update introduces transformative improvements to the Intrusion Prevention System, coupled with comprehensive reportin…GBHACKERS.COM
28 OctChrome Zero-Day Exploitation Linked to Hacking Team Spyware - SecurityWeeksubmitted by kid to cybersecurity 4 points | 0 comments https://www.securityweek.com/chrome-zero-day-exploitation-linked-to-hacking-team-spyware/SH.ITJUST.WORKS
28 OctNew Atroposia malware comes with a local vulnerability scannerA new malware-as-a-service (MaaS) platform named Atroposia provides cybercriminals a remote access trojan that combines capabilities for persistent access, evasion, data theft, and local vulnerability scanning. [...]BLEEPINGCOMPUTER.COM
28 OctQilin Ransomware Combines Linux Payload With BYOVD Exploit in Hybrid Attacksubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/10/qilin-ransomware-combines-linux-payload.htmlSH.ITJUST.WORKS
28 OctThe Agentic AI Platform for the Agentic Workforce of the FutureIntroducing Cortex AgentiX, the Agentic AI platform for the autonomous enterprise, delivering an AI agent workforce for security and IT. The post The Agentic AI Platform for the Agentic Workforce of the Future appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
28 OctHow evolving regulations are redefining CISO responsibilityCISOs face increasing personal and criminal liability for improper or incomplete risk management and disclosure during cyber incidents. The SEC, DOJ and international regulators are targeting executives who knowingly omit or distort cyber risk information. Increasing attacks on I…CSOONLINE.COM
28 OctApache Tomcat Security Vulnerabilities Expose Servers to Remote Code Execution Attackssubmitted by kid to cybersecurity 2 points | 0 comments https://cybersecuritynews.com/apache-tomcat-security-vulnerabilities/SH.ITJUST.WORKS
28 OctQNAP NetBak PC Agent Affected by Recent ASP.NET Core VulnerabilityThe critical-severity flaw allows attackers to smuggle HTTP requests and access sensitive data, modify server files, or cause DoS conditions. The post QNAP NetBak PC Agent Affected by Recent ASP.NET Core Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
28 OctMaking A Virtual Machine Look Like Real Hardware To Malwaresubmitted by IcedRaktajino to cybersecurity 1 points | 0 comments https://hackaday.com/2025/10/27/making-a-virtual-machine-look-like-real-hardware-to-malware Running suspicious software in a virtual machine seems like a basic precaution to figure out whether said software contain…INFOSEC.PUB
28 OctCISA Releases Three Industrial Control Systems AdvisoriesCISA released three Industrial Control Systems (ICS) Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.  ICSA-25-301-01 Schneider Electric EcoStruxure ICSMA-25-301-01 Vertikal Systems Hospital…CISA.GOV
28 OctNew Android Trojan 'Herodotus' Outsmarts Anti-Fraud Systems by Typing Like a HumanCybersecurity researchers have disclosed details of a new Android banking trojan called Herodotus that has been observed in active campaigns targeting Italy and Brazil to conduct device takeover (DTO) attacks. "Herodotus is designed to perform device takeover while making first a…THEHACKERNEWS.COM
28 Oct KEVCISA warns of two more actively exploited Dassault vulnerabilitiesThe Cybersecurity & Infrastructure Security Agency (CISA) warned today that attackers are actively exploiting two vulnerabilities in Dassault Systèmes' DELMIA Apriso, a manufacturing operations management (MOM) and execution (MES) solution. [...]BLEEPINGCOMPUTER.COM
28 OctI'm a cyber major, but what should I minor in?submitted by Imaginary_Stand4909 to cybersecurity 2 points | 0 comments cross-posted from: lemmy.blahaj.zone/post/33597700 I know that I want to major in Cybersecurity, as it’s been a passion of mine since middle school, and I really like my classes so far (Sophomore). But I’m st…SH.ITJUST.WORKS
28 OctHTTPS by defaultOne year from now, with the release of Chrome 154 in October 2026, we will change the default settings of Chrome to enable “Always Use Secure Connections”. This means Chrome will ask for the user's permission before the first access to any public site without HTTPS. The “Always U…SECURITY.GOOGLEBLOG.COM
28 OctAdvertising giant Dentsu reports data breach at subsidiary MerkleJapanese advertising giant Dentsu has disclosed that its U.S.-based subsidiary Merkle suffered a cybersecurity incident that exposed staff and client data. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 7[−]
28 OctUnterstützung für Dobrindts Pläne zu aktiver CyberabwehrBundesinnenminister Alexander Dobrindt (CSU) will im kommenden Jahr eine Gesetzesänderung zur Cyberabwehr vorstellen. hotocosmos1 – shutterstock.com Bundesinnenminister Alexander Dobrindt (CSU) stößt mit Plänen für eine aktive Cyberabwehr auf Zustimmung. Dabei geht es um Attacken…CSOONLINE.COM
28 OctActive Directory at Risk Due to Domain-Join Account MisconfigurationsActive Directory domain join accounts are systematically exposing enterprise environments to compromise, even when administrators follow Microsoft’s official guidance. A comprehensive security analysis reveals that these specialized accounts inherit excessive privileges by …GBHACKERS.COM
28 OctCyDeploy wants to create a replica of a company’s system to help it test updates before pushing them out — catch it at Disrupt 2025Tina Williams-Koroma said CyDeploy uses machine learning to understand what happens on a company’s machine and then creates a “digital twin” where system administrators can test updates.TECHCRUNCH.COM
28 OctWindows 11 KB5067036 update rolls out Administrator Protection feature​​Microsoft has released the KB5067036 preview cumulative update for Windows 11 24H2 and 25H2, which begins the rollout of the Administrator Protection cybersecurity feature and an updated Start Menu. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 10[−]
28 OctCybersicherheit ist größte Herausforderung für die FinanzbrancheCyberangriffe stellen viele Banken und Versicherungen vor große Probleme. Golden Dayz – shutterstock.com Systemkritische Branchen wie die Finanzindustrie geraten immer häufiger ins Visier von Cyberkriminellen. Die Anzahl der Cyberangriffe hat sich in diesem Bereich im Vergleich z…CSOONLINE.COM
28 OctIndustrial Giants Schneider Electric and Emerson Named as Victims of Oracle HackData allegedly stolen from the companies has been made available for download on the Cl0p ransomware leak website. The post Industrial Giants Schneider Electric and Emerson Named as Victims of Oracle Hack appeared first on SecurityWeek .SECURITYWEEK.COM
28 OctMulti-Protocol Cascading Round-Robin Ciphersubmitted by xoron to cybersecurity 1 points | 0 comments I’ve been exploring a cryptographic concept I can’t find an existing name for, and I’d appreciate the community’s insight. While I suspect it’s overly redundant or computationally heavy, initial testing suggests performanc…INFOSEC.PUB
28 OctIran’s MOIS-linked Ravin Academy hit by data breach • The Registersubmitted by kid to cybersecurity 1 points | 0 comments https://www.theregister.com/2025/10/27/breach_iran_ravin_academy/SH.ITJUST.WORKS
28 OctWhy Early Threat Detection Is a Must for Long-Term Business GrowthIn cybersecurity, speed isn’t just a win — it’s a multiplier. The faster you learn about emerging threats, the faster you adapt your defenses, the less damage you suffer, and the more confidently your business keeps scaling. Early threat detection isn’t about preventing a breach …THEHACKERNEWS.COM
28 OctMulti-Protocol Cascading Round-Robin Ciphersubmitted by xoron to cybersecurity 1 points | 0 comments I’ve been exploring a cryptographic concept I can’t find an existing name for, and I’d appreciate the community’s insight. While I suspect it’s overly redundant or computationally heavy, initial testing suggests performanc…SH.ITJUST.WORKS
28 OctGoogle disputes false claims of massive Gmail data breachsubmitted by kid to cybersecurity 3 points | 0 comments https://www.bleepingcomputer.com/news/security/google-disputes-false-claims-of-massive-gmail-data-breach/SH.ITJUST.WORKS
28 OctHSBC USA data breach exposes client transactions, hackers claim | Cybernewssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/security/hsbc-usa-data-breach-claims/SH.ITJUST.WORKS
28 OctRansomware profits drop as victims stop paying hackerssubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/ransomware-profits-drop-as-victims-stop-paying-hackers/SH.ITJUST.WORKS
28 OctQilin ransomware abuses WSL to run Linux encryptors in WindowsThe Qilin ransomware operation was spotted executing Linux encryptors in Windows using Windows Subsystem for Linux (WSL) to evade detection by traditional security tools. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 32[−]
28 OctISC Stormcast For Tuesday, October 28th, 2025 https://isc.sans.edu/podcastdetail/9674, (Tue, Oct 28th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
28 OctSideWinder Adopts New ClickOnce-Based Attack Chain Targeting South Asian DiplomatsA European embassy located in the Indian capital of New Delhi, as well as multiple organizations in Sri Lanka, Pakistan, and Bangladesh, have emerged as the target of a new campaign orchestrated by a threat actor known as SideWinder in September 2025. The activity "reveals a nota…THEHACKERNEWS.COM
28 OctWater Saci Hackers Use WhatsApp to Deploy Persistent SORVEPOTEL MalwareTrend Micro Research has identified a significant evolution in the aggressive Water Saci malware campaign, revealing a new infection chain that abandons traditional .NET-based delivery methods in favor of sophisticated script-driven techniques. On October 8, 2025, researchers dis…GBHACKERS.COM
28 OctBlueNoroff Shifts Tactics: Targets C-Suite and Managers with New Infiltration MethodsThe North Korean-linked threat group BlueNoroff, also known by aliases including Sapphire Sleet, APT38, and Alluring Pisces, continues to evolve its attack tactics while maintaining its primary focus on financial gain. The group has shifted its strategy to employ sophisticated ne…GBHACKERS.COM
28 OctHackers Target Swedish Power Grid OperatorThe hackers stole information from a file transfer solution and the country’s power supply was not affected. The post Hackers Target Swedish Power Grid Operator appeared first on SecurityWeek .SECURITYWEEK.COM
28 OctFileFix + Cache Smuggling: A New Evasion ComboCybersecurity researchers have uncovered a sophisticated evolution in phishing attacks that combines FileFix social engineering with cache smuggling techniques to bypass modern security defenses. This hybrid attack method eliminates the need for malicious code to make web request…GBHACKERS.COM
28 OctMuddyWater’s Phoenix Backdoor Infects More Than 100 Government OrganizationsAdvanced Persistent Threat (APT) MuddyWater has orchestrated a sophisticated phishing campaign targeting over 100 government entities across the Middle East, North Africa, and international organizations worldwide. Group-IB Threat Intelligence has attributed the campaign to the I…GBHACKERS.COM
28 OctEuropol Warns of Rising Threat From Caller ID Spoofing Attacks - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/europol-warns-id-spoofing-attacks/SH.ITJUST.WORKS
28 OctOpenAI Atlas Browser tripped up by malformed URLs • The Registersubmitted by kid to cybersecurity 4 points | 1 comments https://www.theregister.com/2025/10/27/openai_atlas_prompt_injection/SH.ITJUST.WORKS
28 OctSublime Security Raises $150 Million for Email Security PlatformSublime Security’s Series C funding round brings the total raised by the company to more than $240 million. The post Sublime Security Raises $150 Million for Email Security Platform appeared first on SecurityWeek .SECURITYWEEK.COM
28 OctNew Phishing Attack Using Invisible Characters Hidden in Subject Line Using MIME EncodingSecurity researchers have discovered a sophisticated phishing technique that weaponizes invisible Unicode characters embedded within email subject lines using MIME encoding—a tactic that remains largely unknown among email security professionals. The discovery reveals how attacke…GBHACKERS.COM
28 OctHerodotus: New Android Malware Mimics Human Behavior to Bypass Biometric SecurityA sophisticated new Android banking Trojan named Herodotus has emerged as a significant threat to mobile users, introducing a novel approach that deliberately mimics human typing patterns to evade behavioral biometrics detection systems. The malware’s sophisticated approach…GBHACKERS.COM
28 OctBrida Introduces New Release Offering Complete Support for Latest Frida IntegrationThe Brida security testing toolkit has released version 0.6, marking a significant update that brings full compatibility with the latest Frida dynamic instrumentation framework. This new release addresses critical compatibility gaps that emerged after Frida’s major overhaul…GBHACKERS.COM
28 OctBSidesPDX 2025submitted by ashar to security_cpe 1 points | 0 comments https://youtube.com/playlist?list=PLqdWoaf0o9zeCWmKLYW5gsI5ePiMt609G BSidesPDX 2025 playlist BSidesPDX 2025 ScheduleINFOSEC.PUB
28 OctSAINTCON 25submitted by ashar to security_cpe 1 points | 0 comments https://youtube.com/playlist?list=PL6cQ3smzyfmp53lRqjq_h059VudgdjuTz SAINTCON 25, livestream over 4 days SAINTCON 25 ScheduleINFOSEC.PUB
28 OctTurboMirai-Class ‘Aisuru’ Botnet Blamed for 20+ Tbps DDoS AttacksA new class of Mirai-based DDoS botnets have been launching massive attacks, but their inability to spoof traffic enables device remediation. The post TurboMirai-Class ‘Aisuru’ Botnet Blamed for 20+ Tbps DDoS Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
28 OctAI-Driven, Quantum-Ready Network SecuritySecure your network with AI-powered, quantum-ready solutions. Discover Prisma Browser, AIRS 2.0 and a path to quantum-safe security. The post AI-Driven, Quantum-Ready Network Security appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
28 OctPrisma AIRS 2.0 Is Powering the Next Wave of Secure AI InnovationSecure your AI innovation with Prisma AIRS. Discover, assess risks and protect against AI-specific threats across agents and models. The post Prisma AIRS 2.0 Is Powering the Next Wave of Secure AI Innovation appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
28 OctCyberRiskTV Live Coverage from InfoSec World 2025 - Day 2CyberRisk TV is broadcasting live from InfoSec World 2025 at Disney’s Coronado Springs Resort in Orlando, Florida! Join us Tuesday, October 28 for exclusive interviews with cybersecurity leaders, breaking insights from the keynote stage, and behind-the-scenes coverage from one of…YOUTUBE.COM
28 Oct'Herodotus' Android Trojan Mimics Human Sluggishnesssubmitted by kid to cybersecurity 2 points | 0 comments https://www.bankinfosecurity.com/herodotus-android-trojan-mimics-human-sluggishness-a-29843SH.ITJUST.WORKS
28 OctSimSpace Raises $39 Million for Cyber Range PlatformSimSpace provides realistic cyber ranges where organizations can test attack preparedness and validate defenses. The post SimSpace Raises $39 Million for Cyber Range Platform appeared first on SecurityWeek .SECURITYWEEK.COM
28 OctMeet Atroposia: The Stealthy Feature-Packed RATsubmitted by kid to cybersecurity 1 points | 0 comments https://www.varonis.com/blog/atroposia-ratSH.ITJUST.WORKS
28 OctGhostCall and GhostHire — two campaigns by BlueNoroffGhostCall and GhostHire, two campaigns by the BlueNoroff APT group (a subgroup of Lazarus), target developers and executives in the crypto industry.KASPERSKY.COM
28 OctResearchers Expose GhostCall and GhostHire: BlueNoroff's New Malware ChainsThreat actors tied to North Korea have been observed targeting the Web3 and blockchain sectors as part of twin campaigns tracked as GhostCall and GhostHire. According to Kaspersky, the campaigns are part of a broader operation called SnatchCrypto that has been underway since at l…THEHACKERNEWS.COM
28 OctStragglers From Myanmar Scam Center Raided by Army Cross Into Thailand as Buildings are Blown UpWitnesses on the Thai side of the border reported hearing explosions and seeing smoke coming from the center over the past several nights starting on Friday. The post Stragglers From Myanmar Scam Center Raided by Army Cross Into Thailand as Buildings are Blown Up appeared first o…SECURITYWEEK.COM
28 OctSecure the AI Factory with Palo Alto Networks & NVIDIASecure your AI factory with Palo Alto Networks and NVIDIA. Learn how to deploy AI bravely with zero trust protection and real-time threat detection. The post Secure the AI Factory with Palo Alto Networks & NVIDIA appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
28 OctTEE.fail: Breaking Trusted Execution Environments via DDR5 Memory Bus Interpositionsubmitted by kid to cybersecurity 1 points | 0 comments https://tee.fail/ With the increasing popularity of remote computation like cloud computing, users are increasingly losing control over their data, uploading it to remote servers that they do not control. Trusted Execution E…SH.ITJUST.WORKS
28 OctIs It Or Is It Not an HP Scam?These days it can be hard to tell if something is or isn’t a scam.KNOWBE4.COM
28 OctLockpick chaos, CoPhish, Atlas, Turing, ForumTroll, PKD, Kilgore Trout, Aaran Leyland - SWN #524Lockpicks, Microsoft, CoPhish, Atlas, Turing, ForumTroll, PKD, even Kilgore Trout, the Amazing Aaran Leyland, and more on the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-524YOUTUBE.COM
28 OctMY TAKE: Have you noticed how your phone’s AI assistant is starting to remap what you trust?This morning, I tried to power down my Samsung S23 smartphone. Related: Sam Altman seeks to replace the browser I long-pressed the side key expecting the usual “Power off / Restart” menu. Instead, a small Gemini prompt window appeared towards … (more…) The post MY TAKE: Hav…LASTWATCHDOG.COM
28 OctRecruitment red flags: Can you spot a spy posing as a job seeker?Here’s what to know about a recent spin on an insider threat – fake North Korean IT workers infiltrating western firmsWELIVESECURITY.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
28 OctNew Herodotus Android malware fakes human typing to avoid detectionA new Android malware family, Herodotus, uses random delay injection in its input routines to mimic human behavior on mobile devices and evade timing-based detection by security software. [...]BLEEPINGCOMPUTER.COM
🎙️ PODCASTS 1[−]
28 OctThe AI Fix #74: AGI, LLM brain rot, and how to scam an AI browserIn episode 74 of The AI Fix, we meet Amazon's AI-powered delivery glasses, an AI TV presenter who doesn't exist, and an Ohio lawmaker who wants to stop people from marrying their chatbot. Also, we learn how Geoffrey Hinton and Steve Wozniak have teamed up with the unlikely coupli…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 11[−]
28 OctA phishing with invisible characters in the subject line, (Tue, Oct 28th)While reviewing malicious messages that were delivered to our handler inbox over the past few days, I noticed that the “subject” of one phishing e-mail looked quite strange when displayed in the Outlook message list… ISC.SANS.EDU
28 OctIs Your Google Workspace as Secure as You Think it is?The New Reality for Lean Security Teams If you’re the first security or IT hire at a fast-growing startup, you’ve likely inherited a mandate that’s both simple and maddeningly complex: secure the business without slowing it down. Most organizations using Google Workspace start wi…THEHACKERNEWS.COM
28 OctBiDi Swap: The bidirectional text trick that makes fake URLs look realAttackers are abusing bidirectional text to make fake URLs look real, reviving a decade-old browser flaw now fueling new phishing tricks. Varonis reveals how the "BiDi Swap" technique works and what organizations need to watch out for. [...]BLEEPINGCOMPUTER.COM
28 OctTEE.Fail attack breaks confidential computing on Intel, AMD, NVIDIA CPUsAcademic researchers developed a side-channel attack called TEE.Fail, which allows extracting secrets from the trusted execution environment in the CPU, the highly secure area of a system, such as Intel's SGX and TDX, and AMD's SEV-SNP. [...]BLEEPINGCOMPUTER.COM
28 OctGoogle Chrome to warn users before opening insecure HTTP sitesGoogle announced today that the Chrome web browser will start warning users by default before connecting to insecure HTTP public websites beginning with Chrome 154 in October 2026. [...]BLEEPINGCOMPUTER.COM
28 OctMicrosoft: Copilot now lets you build apps, automate workflows​Microsoft announced today a new Microsoft 365 Copilot agent called App Builder that can help users create and deploy apps "in minutes." [...]BLEEPINGCOMPUTER.COM
28 OctMicrosoft sued for allegedly tricking millions into Copilot M365 subscriptionsThe Australian Competition and Consumer Commission (ACCC) is suing Microsoft for allegedly misleading 2.7 million Australians into paying for the Copilot AI assistant in the Microsoft 365 service. [...]BLEEPINGCOMPUTER.COM
28 OctPython rejects $1.5M grant from U.S. govt. fearing ethical compromiseThe Python Software Foundation (PSF) has withdrawn its $1.5 million grant proposal to the U.S. National Science Foundation (NSF) due to funding terms forcing a compromise on its commitment to diversity, equity, and inclusion.. [...]BLEEPINGCOMPUTER.COM
28 OctAI Security: NVIDIA BlueField Now with Vision One™Launching at NVIDIA GTC 2025 - Transforming AI Security with Trend Vision One™ on NVIDIA BlueFieldTRENDMICRO.COM
28 OctKeeping the Internet fast and secure: introducing Merkle Tree CertificatesCloudflare is launching an experiment with Chrome to evaluate fast, scalable, and quantum-ready Merkle Tree Certificates, all without degrading performance or changing WebPKI trust relationships.CLOUDFLARE.COM