🐛 COMMON VULNERABILITIES AND EXPOSURES 43[−]
29 OctMicrosoft Issues Alert on ASP.NET Flaw Allowing HTTP Request Smuggling AttacksMicrosoft has released a critical security update addressing a severe vulnerability in ASP.NET Core that could enable attackers to execute HTTP request smuggling attacks. On October 14, 2025, the company issued patches for CVE-2025-55315, a security feature bypass flaw affecting …GBHACKERS.COM
29 Oct KEVXWiki Remote Code Execution Flaw Actively Weaponized for CoinminingA critical security vulnerability in XWiki collaboration software is being actively exploited by threat actors to deploy cryptocurrency mining malware on vulnerable systems. The flaw, tracked as CVE-2025-24893, represents a serious threat to organizations running unpatched XWiki …GBHACKERS.COM
29 OctActive Exploits Hit Dassault and XWiki — CISA Confirms Critical Flaws Under AttackThreat actors are actively exploiting multiple security flaws impacting Dassault Systèmes DELMIA Apriso and XWiki, according to alerts issued by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and VulnCheck. The vulnerabilities are listed below - CVE-2025-6204 (C…THEHACKERNEWS.COM
29 OctDocker Compose Flaw Lets Attackers Overwrite Arbitrary FilesA path traversal vulnerability discovered in Docker Compose allows attackers to write arbitrary files to host systems through specially crafted OCI artifacts. Tracked as CVE-2025-62725, the flaw was discovered in early October 2025 and carries a high severity rating of 8.9 CVSS. …GBHACKERS.COM
29 OctGoogle Wear OS Flaw Lets Any App Send Texts on Behalf of UsersA critical vulnerability discovered in Google Messages for Wear OS has exposed millions of smartwatch users to a significant security risk. Identified as CVE-2025-12080, the flaw allows any installed application to send text messages on behalf of the user without requiring permis…GBHACKERS.COM
29 OctWindows Server Update Services (WSUS) vulnerability abused to harvest sensitive dataExploitation of CVE-2025-59287 began after public disclosure and the release of proof-of-concept codeSOPHOS.COM
29 OctCVE-2025-40025 f2fs: fix to do sanity check on node footer for non inode dnodeInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40051 vhost: vringh: Modify the return value checkInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40077 f2fs: fix to avoid overflow while left shift operationInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40064 smc: Fix use-after-free in __pnet_find_base_ndev().Information published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40038 KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't validInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40042 tracing: Fix race condition in kprobe initialization causing NULL pointer dereferenceInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40029 bus: fsl-mc: Check return value of platform_get_resource()Information published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40061 RDMA/rxe: Fix race in do_task() when drainingInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40078 bpf: Explicitly check accesses to bpf_sock_addrInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40044 fs: udf: fix OOB read in lengthAllocDescs handlingInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40052 smb: client: fix crypto buffers in non-linear memoryInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40030 pinctrl: check the return value of pinmux_ops::get_function_name()Information published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40035 Input: uinput - zero-initialize uinput_ff_upload_compat to avoid info leakInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40053 net: dlink: handle copy_thresh allocation failureInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40055 ocfs2: fix double free in user_cluster_connect()Information published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40056 vhost: vringh: Fix copy_to_iter return value checkInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40040 mm/ksm: fix flag-dropping behavior in ksm_madviseInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40026 KVM: x86: Don't (re)check L1 intercepts when completing userspace I/OInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40060 coresight: trbe: Return NULL pointer for allocation failuresInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40032 PCI: endpoint: pci-epf-test: Add NULL check for DMA channels before releaseInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40033 remoteproc: pru: Fix potential NULL pointer dereference in pru_rproc_set_ctable()Information published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40043 net: nfc: nci: Add parameter validation for packet dataInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40039 ksmbd: Fix race condition in RPC handle list accessInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40036 misc: fastrpc: fix possible map leak in fastrpc_put_argsInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40048 uio_hv_generic: Let userspace take care of interrupt maskInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40081 perf: arm_spe: Prevent overflow in PERF_IDX2OFF()Information published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40049 Squashfs: fix uninit-value in squashfs_get_parentInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-11840 GNU Binutils ldmisc.c vfinfo out-of-boundsInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40027 net/9p: fix double req put in p9_fd_cancelledInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40065 RISC-V: KVM: Write hgatp register with valid mode bitsInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40068 fs: ntfs3: Fix integer overflow in run_unpack()Information published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40079 riscv, bpf: Sign extend struct ops return values properlyInformation published.MSRC.MICROSOFT.COM
29 OctCVE-2025-40071 tty: n_gsm: Don't block input queue by waiting MSCInformation published.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 23[−]
29 OctAisuru Botnet Shifts from DDoS to Residential ProxiesAisuru, the botnet responsible for a series of record-smashing distributed denial-of-service (DDoS) attacks this year, recently was overhauled to support a more low-key, lucrative and sustainable business: Renting hundreds of thousands of infected Internet of Things (IoT) devices…KREBSONSECURITY.COM
29 OctAtroposia malware kit lowers the bar for cybercrime — and raises the stakes for enterprise defendersCybercrime is increasingly being commoditized, significantly lowering the bar for hackers and making things tougher for defenders. Researchers at Varonis have discovered a turnkey plug-and-play toolkit, dubbed Atroposia, that even the least experienced threat actor can effectivel…CSOONLINE.COM
29 OctNew Atroposia RAT Uses Hidden Remote Desktop, Vulnerability Scanning and Advanced PersistenceA sophisticated new remote access trojan called Atroposia has emerged in underground cybercrime marketplaces, offering attackers a comprehensive toolkit for hidden remote desktop access, credential theft, and network manipulation at an accessible price point. Security researchers…GBHACKERS.COM
29 OctMozilla Enforces Transparency Rules for Data Collection in New Firefox ExtensionsMozilla has announced a significant transparency initiative for its Firefox browser ecosystem, implementing mandatory data disclosure requirements for extension developers. Starting November 3rd, 2025, all newly submitted Firefox extensions must explicitly declare their data coll…GBHACKERS.COM
29 OctTop 7 agentic AI use cases for cybersecurityAgentic AI promises to revolutionize a wide range of IT operations and services, including cybersecurity. While the technology, which accomplishes specific tasks with no human supervision, may seem intimidating to some CISOs, a growing number of cybersecurity leaders are discover…CSOONLINE.COM
29 OctNew Attack Targets DDR5 Memory to Steal Keys From Intel and AMD TEEsIntel and AMD have published advisories after academics disclosed details of the new TEE.fail attack method. The post New Attack Targets DDR5 Memory to Steal Keys From Intel and AMD TEEs appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctCISA Warns of Exploited DELMIA Factory Software VulnerabilitiesTwo DELMIA Apriso flaws can be chained together to gain privileged access to the application and execute arbitrary code remotely. The post CISA Warns of Exploited DELMIA Factory Software Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctIs your perimeter having an identity crisis?For years, you’ve operated on a fundamental and fragile assumption that with enough training and the right tools, you could trust your employees to be the first line of defense. You taught them to spot the typos in phishing emails, to hover over suspicious links, to question the …CSOONLINE.COM
29 OctCISA Issues Alert on Active Exploitation of Dassault Systèmes Security FlawsThe Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical security alert regarding two severe vulnerabilities discovered in Dassault Systèmes DELMIA Apriso, a widely used manufacturing execution system. The agency has added these flaws to its official list…GBHACKERS.COM
29 OctAd and PR Giant Dentsu Says Hackers Stole Merkle DataJapan’s Dentsu has disclosed a Merkle data breach impacting clients, suppliers, and employees. The post Ad and PR Giant Dentsu Says Hackers Stole Merkle Data appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctXWiki Vulnerability Exploited in Cryptocurrency Mining OperationExploits have been available publicly for over half a year, but the bug was previously targeted only for reconnaissance. The post XWiki Vulnerability Exploited in Cryptocurrency Mining Operation appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctSignal’s Post-Quantum Cryptographic ImplementationSignal has just rolled out its quantum-safe cryptographic implementation. Ars Technica has a really good article with details: Ultimately, the architects settled on a creative solution. Rather than bolt KEM onto the existing double ratchet, they allowed it to remain more or less …SCHNEIER.COM
29 OctCyberRidge Emerges From Stealth With $26 Million for Photonic Encryption SolutionThe company has built a plug-and-play photonic layer transmission system that encrypts data in transit to prevent interception. The post CyberRidge Emerges From Stealth With $26 Million for Photonic Encryption Solution appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctNew TEE.fail Exploit Steals Secrets from Intel & AMD DDR5 Trusted EnvironmentsResearchers have unveiled a groundbreaking attack dubbed “TEE.fail” that fundamentally compromises the security guarantees of Trusted Execution Environments (TEEs) from Intel and AMD by exploiting DDR5 memory architecture. The attack demonstrates how even the most adv…GBHACKERS.COM
29 OctGoogle Publishes New Guide to Help Defenders Monitor Privileged AccountsGoogle has released comprehensive guidance on protecting privileged accounts, recognizing that stolen credentials have become one of the most dangerous attack vectors facing modern organizations. The new recommendations address how attackers increasingly exploit these “keys…GBHACKERS.COM
29 OctMassive 4TB EY Database Backup Found Publicly Accessible on AzureA critical security vulnerability was discovered when a complete 4-terabyte SQL Server backup belonging to Ernst & Young (EY), one of the world’s Big Four accounting firms, was found publicly accessible on Microsoft Azure. The exposure was identified by security researc…GBHACKERS.COM
29 OctVisibility Gaps: Streamlining Patching and Vulnerability RemediationHidden visibility gaps can turn unpatched systems into open doors. Action1 gives IT teams unified visibility and automated control to detect, prioritize, and remediate vulnerabilities before attackers exploit them. [...]BLEEPINGCOMPUTER.COM
29 Oct KEVCISA warns of two more actively exploited Dassault vulnerabilitiessubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/cisa-warns-of-two-more-actively-exploited-dassault-vulnerabilities/SH.ITJUST.WORKS
29 OctExperts Reports Sharp Increase in Automated Botnet Attacks Targeting PHP Servers and IoT DevicesCybersecurity researchers are calling attention to a spike in automated attacks targeting PHP servers, IoT devices, and cloud gateways by various botnets such as Mirai, Gafgyt, and Mozi. "These automated campaigns exploit known CVE vulnerabilities and cloud misconfigurations to g…THEHACKERNEWS.COM
29 OctIs Russia Cracking Down on Cyber Criminals? Fake Death Scams & Exposed AI Servers | Cybersecurity TodayIn this episode of Cybersecurity Today, host Jim Love explores the potential shift in Russia's stance on cyber criminals, including arrests of major network operators. Discover the latest phishing scams where hackers fabricate death notices to steal passwords, a critical vulnerab…CYBERSECURITYTODAY.LIBSYN.COM
29 OctFormer L3Harris Trenchant boss pleads guilty to selling zero-day exploits to Russian brokerProsecutors confirmed Peter Williams, the former Trenchant boss, sold eight exploits to a Russian buyer. TechCrunch exclusively reported that the Trenchant division was investigating a leak of its hacking tools, after another employee was accused of involvement.TECHCRUNCH.COM
29 OctWordPress security plugin exposes private data to site subscribersThe Anti-Malware Security and Brute-Force Firewall plugin for WordPress, installed on over 100,000 sites, has a vulnerability that allows subscribers to read any file on the server, potentially exposing private information. [...]BLEEPINGCOMPUTER.COM
29 Oct KEVRisky Business #812 -- Alleged Trenchant exploit mole is ex-ASDIn this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including: L3Harris Trenchant boss accused of selling exploits to Russia once worked at the Australian Signals Directorate Microsoft WSUS bug being exploited in the wild Dan Kaminsky DNS cach…RISKY.BIZ
📋 SECURITY BULLETINS 1[−]
29 OctZehntausende Exchange-Server in Deutschland gefährdetsrcset="https://b2b-contenthub.com/wp-content/uploads/2025/10/shutterstock_2626268707.jpg?quality=50&strip=all 6240w, https://b2b-contenthub.com/wp-content/uploads/2025/10/shutterstock_2626268707.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
📢 SECURITY ADVISORIES 6[−]
29 OctDiscover Practical AI Tactics for GRC — Join the Free Expert WebinarArtificial Intelligence (AI) is rapidly transforming Governance, Risk, and Compliance (GRC). It's no longer a future concept—it's here, and it's already reshaping how teams operate. AI's capabilities are profound: it's speeding up audits, flagging critical risks faster, and drast…THEHACKERNEWS.COM
29 OctInsider Risk, Ethical Walls and the Future of Data Governance in Financial ServicesIn the complex ecosystem of financial services, some of the greatest threats come from within. While cybersecurity for financial institutions often focuses on external threat actors, the reality is that insider risks—whether intentional or accidental—pose an equally dangerous cha…KNOWBE4.COM
🔥 INCIDENT REPORTING 16[−]
29 OctLG Uplus is latest South Korean telco to confirm cybersecurity incidentKorean telecom giant LG Uplus is the third major phone provider in the past six months to report a cybersecurity incident.TECHCRUNCH.COM
29 OctHow to collect memory-only filesystems on Linux systems, (Wed, Oct 29th)I&#;x26;#;39;ve been doing Unix/Linux IR and Forensics for a long time. I logged into a Unix system for the first time in 1983. That&#;x26;#;39;s one of the reasons I love teaching FOR577 [1], because I have storie…ISC.SANS.EDU
29 OctGunra Ransomware Targets Windows and Linux with Dual EncryptionThe cybersecurity landscape continues to face persistent threats from emerging ransomware groups, with Gunra representing a significant concern since its emergence in April 2025. This threat actor has launched systematic attacks across multiple industries and geographic regions, …GBHACKERS.COM
29 OctBeast Ransomware Targets Active SMB Connections to Infect Entire NetworksA sophisticated ransomware operation known as Beast has emerged as a significant cybersecurity threat, employing aggressive network propagation tactics that leverage Server Message Block (SMB) port scanning to infiltrate and encrypt systems across enterprise environments. The thr…GBHACKERS.COM
29 OctMassive Tata Motors Data Leak Exposes 70+ TB of Sensitive InformationTata Motors, India’s largest automaker and a major player in the global automotive industry, suffered a catastrophic data exposure that revealed over 70 terabytes of sensitive information through multiple security failures. The breaches, discovered in 2023, involved exposed…GBHACKERS.COM
29 OctRansomware-Attacke auf schwedischen Stromversorgersrcset="https://b2b-contenthub.com/wp-content/uploads/2025/10/shutterstock_2182279977.jpg?quality=50&strip=all 5474w, https://b2b-contenthub.com/wp-content/uploads/2025/10/shutterstock_2182279977.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
29 OctBlueNoroff reemerges with new campaigns for crypto theft and espionageNorth Korea-aligned threat actor BlueNoroff, also known under aliases APT38 and TA444, has resurfaced with two new campaigns dubbed “GhostCall” and “GhostHire,” targeting executives, Web3 developers, and blockchain professionals. According to Kaspersky’s Securelist researchers, t…CSOONLINE.COM
29 OctPreparing for the Digital Battlefield of 2026: Ghost Identities, Poisoned Accounts, & AI Agent HavocBeyondTrust’s annual cybersecurity predictions point to a year where old defenses will fail quietly, and new attack vectors will surge. Introduction The next major breach won’t be a phished password. It will be the result of a massive, unmanaged identity debt. This debt takes man…THEHACKERNEWS.COM
29 OctRussian Hackers Target Ukrainian Organizations Using Stealthy Living-Off-the-Land TacticsOrganizations in Ukraine have been targeted by threat actors of Russian origin with an aim to siphon sensitive data and maintain persistent access to compromised networks. The activity, according to a new report from the Symantec and Carbon Black Threat Hunter Team, targeted a la…THEHACKERNEWS.COM
29 OctHackers Allegedly Leak HSBC USA Customer and Financial InformationA threat actor has claimed responsibility for breaching HSBC USA, the American division of the global investment bank and financial services holding company. The cybercriminal posted an extensive database for sale on underground forums, alleging it contains fresh and comprehensiv…GBHACKERS.COM
29 OctNew ‘Gentlemen’ RaaS Appears on Hacking Forums, Targeting Windows, Linux and ESXiThreat intelligence researchers have identified a new ransomware-as-a-service (RaaS) operation called The Gentlemen’s RaaS, being actively recruited on underground hacking forums by an operator using the handle zeta88. The cross-platform threat represents a significant evol…GBHACKERS.COM
29 OctQilin claims pharmacy benefit manager MedImpact | Cybernewssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/security/qilin-medimpact-data-breach-healthcare/SH.ITJUST.WORKS
29 OctNext-gen firewalls, VPNs can increase security risks: At-Baysubmitted by Amoxtli to cybersecurity 2 points | 0 comments https://www.theregister.com/2025/10/28/cisco_citrix_vpn_ransomware/SH.ITJUST.WORKS
29 OctAdvertising giant Dentsu reports data breach at subsidiary Merklesubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/advertising-giant-dentsu-reports-data-breach-at-subsidiary-merkle/SH.ITJUST.WORKS
29 OctReport: Organizations Are Struggling to Keep Up With AI-Powered Attacks76% of organizations are struggling to keep up with the sophistication of AI-powered attacks, according to CrowdStrike’s latest State of Ransomware Survey.KNOWBE4.COM
29 OctCanada says hacktivists breached water and energy facilitiesThe Canadian Centre for Cyber Security warned today that hacktivists have breached critical infrastructure systems multiple times across the country, allowing them to modify industrial controls that could have led to dangerous conditions. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 25[−]
29 OctISC Stormcast For Wednesday, October 29th, 2025 https://isc.sans.edu/podcastdetail/9676, (Wed, Oct 29th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
29 OctEthical Prompt Injection: Fighting Shadow AI with Its Own WeaponAI language models like ChatGPT, DeepSeek, and Copilot are transforming business operations at lightning speed. They help us generate documents, summarise meetings, and even make decisions faster than ever before. But this rapid adoption comes at a price. Employees often use unap…GBHACKERS.COM
29 Oct10 NPM Packages That Automatically Run on Install and Steal CredentialsA sophisticated supply chain attack involving ten malicious npm packages that execute automatically upon installation and deploy a comprehensive credential theft operation. The malware uses advanced obfuscation techniques, social engineering tactics, and cross-platform functional…GBHACKERS.COM
29 OctEmergence of the Chief Trust Officer as CISOs Earn Business Respect and Agenda Shifts - BSW #419Organizations that successfully earn and keep the trust of their customers, employees, and partners experience better business outcomes, more engagement, and competitive differentiation. But what does that trust look like and who's responsible for building and maintaining that tr…YOUTUBE.COM
29 OctChrome to Turn HTTPS on by Default for Public SitesStarting October 2026, the browser will ask users if they want to access public websites that do not use secure connections. The post Chrome to Turn HTTPS on by Default for Public Sites appeared first on SecurityWeek .SECURITYWEEK.COM
29 Oct10 npm Packages Caught Stealing Developer Credentials on Windows, macOS, and LinuxCybersecurity researchers have discovered a set of 10 malicious npm packages that are designed to deliver an information stealer targeting Windows, Linux, and macOS systems. "The malware uses four layers of obfuscation to hide its payload, displays a fake CAPTCHA to appear legiti…THEHACKERNEWS.COM
29 OctAI Security Firm Polygraf Raises $9.5 Million in Seed FundingPolygraf AI has developed proprietary small language model (SLM) technology designed to help organizations mitigate AI risks. The post AI Security Firm Polygraf Raises $9.5 Million in Seed Funding appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctCybercriminals Launch Flood of Fake Forex Platforms to Harvest LoginsFraudulent investment platforms impersonating legitimate cryptocurrency and forex exchanges have emerged as the primary financial threat across Asia, with organized crime groups operating at unprecedented scale. These sophisticated scams leverage social engineering tactics to dec…GBHACKERS.COM
29 OctNew Android Trojan 'Herodotus' Outsmarts Anti-Fraud Systems by Typing Like a Humansubmitted by Amoxtli to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/10/new-android-trojan-herodotus-outsmarts.html?m=1SH.ITJUST.WORKS
29 OctThe Human-AI Partnership: Securing the New Dual-Front of Business RiskThe integration of artificial intelligence into the modern workplace represents a paradigm shift in productivity and innovation.KNOWBE4.COM
29 OctPureHVNC RAT Distributed via Weaponized Judicial DocumentsThe campaign leverages judicial document themes to distribute Hijackloader malware, which subsequently deploys PureHVNC remote access trojan (RAT)—marking the first observed instance where this combination has been used against Spanish-speaking users in Latin America. The campaig…GBHACKERS.COM
29 OctMITRE Unveils ATT&CK v18 With Updates to Detections, Mobile, ICSMITRE has unveiled the latest version of ATT&CK, with the most significant changes in the defensive part of the framework. The post MITRE Unveils ATT&CK v18 With Updates to Detections, Mobile, ICS appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctRussian Hackers Target Government with Stealthy “Living-Off-the-Land” TacticsRussian-linked attackers have intensified their targeting of Ukrainian organizations through sophisticated intrusions that rely heavily on legitimate Windows tools rather than malware. The attackers demonstrated remarkable restraint in their malware deployment, instead leveraging…GBHACKERS.COM
29 OctScammers target international students by threatening their visa status - Help Net Securitysubmitted by kid to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2025/10/29/international-students-scams-visa-status/SH.ITJUST.WORKS
29 OctAI agents can leak company data through simple web searches - Help Net Securitysubmitted by kid to cybersecurity 2 points | 0 comments https://www.helpnetsecurity.com/2025/10/29/agentic-ai-security-indirect-prompt-injection/SH.ITJUST.WORKS
29 OctIndustrial Giants Schneider Electric and Emerson Named as Victims of Oracle Hack - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/industrial-giants-schneider-electric-and-emerson-named-as-victims-of-oracle-hack/SH.ITJUST.WORKS
29 OctWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
29 OctGermany: 92% of Exchange servers left unprotected | Cybernewssubmitted by kid to cybersecurity 4 points | 0 comments https://cybernews.com/security/germany-finds-most-of-microsoft-exchange-servers-left-unprotected/SH.ITJUST.WORKS
29 OctHackers Target Swedish Power Grid Operator - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/hackers-target-swedish-power-grid-operator/SH.ITJUST.WORKS
29 OctResearchers Expose GhostCall and GhostHire: BlueNoroff's New Malware Chainssubmitted by kid to cybersecurity 2 points | 0 comments https://thehackernews.com/2025/10/researchers-expose-ghostcall-and.htmlSH.ITJUST.WORKS
29 OctSweet Security Brings Runtime-CNAPP Power to WindowsTel Aviv, Israel, October 29th, 2025, CyberNewsWire Sweet Security Brings Runtime-CNAPP Power to Windows Sweet Security, a leader in Runtime Cloud and AI security solutions, today announced an extension of its Runtime CNAPP sensor to include Windows environments. With this launch…GBHACKERS.COM
29 OctTurboMirai-Class 'Aisuru' Botnet Blamed for 20+ Tbps DDoS Attacks - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/turbomirai-class-aisuru-botnet-blamed-for-20-tbps-ddos-attacks/SH.ITJUST.WORKS
29 OctAzure down: Thousands of users complain about outage; here's Microsoft's latest statementsubmitted by kid to cybersecurity 3 points | 0 comments https://economictimes.indiatimes.com/news/new-updates/azure-down-thousands-of-users-complain-about-outage-heres-microsofts-latest-statement/articleshow/124910174.cmsSH.ITJUST.WORKS
29 OctMicrosoft DNS Outage Disrupts Azure and Microsoft 365 Services WorldwideMicrosoft experienced a widespread service outage on Wednesday, October 29, 2025, affecting its Azure cloud platform and Microsoft 365 suite, leaving thousands of users unable to access critical business services. The disruption, which began around 16:00 UTC (approximately 9:30 P…GBHACKERS.COM
29 OctMY TAKE: What a cystoscopy taught me about the changing face of patient care — and trusting AIThe other day, I found myself flat on my back in a urologist’s exam room, eyes fixed on the ceiling tiles as a cystoscope made its slow, deliberate circuit. Related: Click-baiters are having an AI field day Dr. Mitchell narrated … (more…) The post MY TAKE: What a cystoscopy…LASTWATCHDOG.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
29 OctCEO of spyware maker Memento Labs confirms one of its government customers was caught using its malwareSecurity researchers found a government hacking campaign that relies on Windows spyware developed by surveillance tech maker Memento Labs. When reached by TechCrunch, the spyware maker's chief executive blamed a government customer for getting caught.TECHCRUNCH.COM
29 OctAL25-016 Internet-accessible industrial control systems (ICS) abused by hacktivistsCYBER.GC.CA
29 OctMalicious NPM packages fetch infostealer for Windows, Linux, macOSTen malicious packages mimicking legitimate software projects in the npm registry download an information-stealing component that collects sensitive data from Windows, Linux, and macOS systems. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 13[−]
29 OctNew TEE.Fail Side-Channel Attack Extracts Secrets from Intel and AMD DDR5 Secure EnclavesA group of academic researchers from Georgia Tech, Purdue University, and Synkhronix have developed a side-channel attack called TEE.Fail that allows for the extraction of secrets from the trusted execution environment (TEE) in a computer's main processor, including Intel's Softw…THEHACKERNEWS.COM
29 OctTata Motors confirms it fixed security flaws, which exposed company and customer dataA security researcher found the Indian automotive giant exposing personal information of its customers, internal company reports, and dealers’ data. Tata confirmed it fixed the issues.TECHCRUNCH.COM
29 OctTechCrunch Disrupt 2025: Day 3This is the third and final day of TechCrunch Disrupt 2025 at Moscone West in San Francisco. Register here to get a 50% discount and don't miss out on innovation and scaling. Disrupt won' come back for another year.TECHCRUNCH.COM
29 OctMicrosoft fixes 0x800F081F errors causing Windows update failuresMicrosoft has resolved a known issue that caused Windows updates to fail, leading to 0x800F081F errors on Windows 11 24H2 systems. [...]BLEEPINGCOMPUTER.COM
29 OctWhich social media are the most privacy-oriented in 2025 | Kaspersky official blogLet’s compare TikTok, Twitch, YouTube, Reddit, Pinterest, Facebook, Instagram, and other social media based on the amount of data they collect and their privacy settings.KASPERSKY.COM
29 OctSophos Firewall v22: Health CheckSecuring your firewall is much easier with the new Health Check feature.SOPHOS.COM
29 OctNew AI-Targeted Cloaking Attack Tricks AI Crawlers Into Citing Fake Info as Verified FactsCybersecurity researchers have flagged a new security issue in agentic web browsers like OpenAI ChatGPT Atlas that exposes underlying artificial intelligence (AI) models to context poisoning attacks. In the attack devised by AI security company SPLX, a bad actor can set up websit…THEHACKERNEWS.COM
29 OctPhantomRaven attack floods npm with credential-stealing packagesAn active campaign named 'PhantomRaven' is targeting developers with dozens of malicious npm packages that steal authentication tokens, CI/CD secrets, and GitHub credentials. [...]BLEEPINGCOMPUTER.COM
29 OctMicrosoft: DNS outage impacts Azure and Microsoft 365 servicesMicrosoft is investigating an ongoing DNS outage affecting customers worldwide, preventing them from logging into company networks and accessing Microsoft Azure and Microsoft 365 services. [...]BLEEPINGCOMPUTER.COM
29 OctMicrosoft fixes Media Creation Tool broken on some Windows PCsMicrosoft has confirmed that the Windows 11 Media Creation Tool (MCT) is working again on Windows 10 22H2 and Windows 11 25H2 systems. [...]BLEEPINGCOMPUTER.COM
29 OctCybersecurity Awareness Month 2025: When seeing isn't believingDeepfakes are blurring the line between real and fake and fraudsters are cashing in, using synthetic media for all manner of scamsWELIVESECURITY.COM
29 OctOne IP address, many users: detecting CGNAT to reduce collateral effectsIPv4 scarcity drives widespread use of Carrier-Grade Network Address Translation, a practice in ISPs and mobile networks that places many users behind each IP address, along with their collected activity and volumes of traffic. We introduce the method we’ve developed to detect la…CLOUDFLARE.COM
29 OctDefending QUIC from acknowledgement-based DDoS attacksWe identified and patched two DDoS vulnerabilities in our QUIC implementation related to packet acknowledgements. Cloudflare customers were not affected. We examine the "Optimistic ACK" attack vector and our solution, which dynamically skips packet numbers to validate client beha…CLOUDFLARE.COM