107Articles
8Categories
2025-10-31Date
🚨 CISA KEV 2[−]
31 Oct KEVCISA Adds Exploited XWiki, VMware Flaws to KEV CatalogBroadcom has updated its advisory on CVE-2025-41244 to mention the vulnerability’s in-the-wild exploitation. The post CISA Adds Exploited XWiki, VMware Flaws to KEV Catalog appeared first on SecurityWeek .SECURITYWEEK.COM
31 Oct KEVCISA Issues Advisory on XWiki Flaw Allowing Remote Code ExecutionThe Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting XWiki Platform to its Known Exploited Vulnerabilities catalog, highlighting the urgent security threat posed by an eval injection flaw. This vulnerability could allow any gues…GBHACKERS.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 30[−]
31 Oct KEVCISA Flags VMware Zero-Day Exploited by China-Linked Hackers in Active AttacksThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting Broadcom VMware Tools and VMware Aria Operations to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation in the wild. …THEHACKERNEWS.COM
31 OctAI-powered bug hunting shakes up bounty industry — for better or worseAI-powered bug hunting has changed the calculus of what makes for an effective bounty program by accelerating vulnerability discovery — and subjecting code maintainers to ballooning volumes of AI flaw-hunting slop. Security researchers are using large language models (LLMs) to au…CSOONLINE.COM
31 OctCISA Alerts on Active Exploitation of VMware Tools and Aria Operations 0-DayThe Cybersecurity and Infrastructure Security Agency (CISA) has raised alarm over active exploitation of a critical privilege escalation vulnerability affecting Broadcom’s VMware Tools and VMware Aria Operations. Tracked as CVE-2025-41244, this 0-day flaw poses significant …GBHACKERS.COM
31 OctProgress Releases Patch for MOVEit Transfer Resource Consumption FlawProgress Software has released security patches to address a high-severity vulnerability in its MOVEit Transfer platform discovered on October 29, 2025. The flaw, tracked as CVE-2025-10932, affects the AS2 module and allows attackers to consume system resources without prope…GBHACKERS.COM
31 OctOpenAI launches Aardvark to detect and patch hidden bugs in codeOpenAI has unveiled Aardvark, a GPT-5-powered autonomous agent designed to act like a human security researcher capable of scanning, understanding, and patching code with the reasoning skills of a professional vulnerability analyst. Announced on Thursday and currently available i…CSOONLINE.COM
31 OctAttackers Exploit Windows Server Update Services Flaw to Steal Sensitive Organizational DataSophos researchers have identified real-world exploitation of a newly disclosed vulnerability in Windows Server Update Services (WSUS), where threat actors are harvesting sensitive data from organizations worldwide. The critical remote code execution flaw, tracked as CVE-2025-592…GBHACKERS.COM
31 OctChina-Linked Tick Group Exploits Lanscope Zero-Day to Hijack Corporate SystemsThe exploitation of a recently disclosed critical security flaw in Motex Lanscope Endpoint Manager has been attributed to a cyber espionage group known as Tick. The vulnerability, tracked as CVE-2025-61932 (CVSS score: 9.3), allows remote attackers to execute arbitrary commands w…THEHACKERNEWS.COM
31 OctChromium: CVE-2025-12444 Incorrect security UI in Fullscreen UIThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12447 Incorrect security UI in OmniboxThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12446 Incorrect security UI in SplitViewThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12445 Policy bypass in ExtensionsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12433 Inappropriate implementation in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12441 Out of bounds read in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12440 Inappropriate implementation in AutofillThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12439 Inappropriate implementation in App-Bound EncryptionThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12434 Race in StorageThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12435 Incorrect security UI in OmniboxThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12436 Policy bypass in ExtensionsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12437 Use after free in PageInfoThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12438 Use after free in OzoneThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12433 Inappropriate implementation in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12431 Inappropriate implementation in ExtensionsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12430 Object lifecycle issue in MediaThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12432 Race in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12429 Inappropriate implementation in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12428 Type Confusion in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctChromium: CVE-2025-12036 Inappropriate implementation in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/202[SS9.1]5) for more information.MSRC.MICROSOFT.COM
31 OctCVE-2025-60711 Microsoft Edge (Chromium-based) Remote Code Execution VulnerabilityProtection mechanism failure in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
31 OctChinese hackers target Western diplomats using hard-to-patch Windows shortcut flawChinese hackers have been spotted targeting European diplomats using a longstanding Windows shortcut vulnerability that’s been popular with threat groups as far back as 2017. According to security company Arctic Wolf , whose researchers uncovered the latest campaign, the latest a…CSOONLINE.COM
31 OctCyber agencies produce ‘long overdue’ best practices for securing Microsoft Exchange ServerCyber agencies from three countries including the US have issued a list of security best practices for protecting Microsoft Exchange Server , a venerable on-premises email server that many IT departments still cling to. The advisory, also endorsed by Australia and Canada, comes a…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 25[−]
31 OctMalicious packages in npm evade dependency detection through invisible URL links: ReportThreat actors are finding new ways to insert invisible code or links into open source code to evade detection of software supply chain attacks. The latest example was found by researchers at Israel-based Koi Security, who this week said they have discovered a threat actor’s campa…CSOONLINE.COM
31 OctMassive Data Exposures, Insider Threats, and State-Sponsored Cyber AttacksIn this episode of Cybersecurity Today, host Jim Love covers a series of alarming cybersecurity incidents. Key highlights include Ernst and Young exposing a massive 4TB database to the open internet, a former L3 Harris executive guilty of selling zero-day exploits to a Russian br…CYBERSECURITYTODAY.LIBSYN.COM
31 OctNew Agent-Aware Cloaking Technique Uses ChatGPT Atlas Browser to Feed Fake ContentSecurity researchers have uncovered a sophisticated attack vector that exploits how AI search tools and autonomous agents retrieve web content. The vulnerability, termed “agent-aware cloaking,” allows attackers to serve different webpage versions to AI crawlers like O…GBHACKERS.COM
31 Oct KEVAembit Introduces Identity and Access Management for Agentic AIAembit today announced the launch of Aembit Identity and Access Management (IAM) for Agentic AI, a set of capabilities that help organizations safely provide and enforce access policies for AI agents as they move into production. The release introduces Blended Identity, which def…CSOONLINE.COM
31 OctWindows LNK UI Spoofing Vulnerability Weaponized for Remote Code ExecutionA sophisticated cyber espionage campaign targeting European diplomatic institutions has been uncovered, signaling a strategic escalation by Chinese-affiliated threat actor UNC6384. Central to this campaign is the exploitation of the Windows shortcut (LNK) UI misrepresentation vul…GBHACKERS.COM
31 OctEclipse Foundation Revokes Leaked Open VSX Tokens Following Wiz DiscoveryEclipse Foundation, which maintains the open-source Open VSX project, said it has taken steps to revoke a small number of tokens that were leaked within Visual Studio Code (VS Code) extensions published in the marketplace. The action comes following a report from cloud security c…THEHACKERNEWS.COM
31 OctCISA and NSA Issue Urgent Guidance to Secure WSUS and Microsoft Exchange ServersThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) and National Security Agency (NSA), along with international partners from Australia and Canada, have released guidance to harden on-premise Microsoft Exchange Server instances from potential exploitation. "By restr…THEHACKERNEWS.COM
31 OctThreat Actors Exploiting Open-Source C2 Frameworks to Deploy Malicious PayloadsThreat intelligence researchers have uncovered a growing campaign where cybercriminals are weaponizing AdaptixC2, a legitimate open-source Command and Control framework designed for authorized penetration testers. The discovery reveals how threat actors are exploiting ethical hac…GBHACKERS.COM
31 OctChinese APT Exploits Unpatched Windows Flaw in Recent AttacksThe Windows shortcut vulnerability has been seen in attacks conducted by Mustang Panda to drop the PlugX malware. The post Chinese APT Exploits Unpatched Windows Flaw in Recent Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
31 OctThe unified linkage model: A new lens for understanding cyber riskWhen Okta’s support credentials were stolen in 2023, the breach didn’t stop at the identity provider. It rippled outward — through SaaS integrations, internal legacy applications and downstream development pipelines. Okta’s systems were not directly exploited. Instead, the attack…CSOONLINE.COM
31 OctThreat Actors Exploit LANSCOPE Endpoint Manager Zero-Day Vulnerability to Steal Confidential DataIn mid-2025, Secureworks Counter Threat Unit (CTU) researchers uncovered a sophisticated cyber campaign where Chinese state-sponsored threat actors from the BRONZE BUTLER group exploited a critical zero-day vulnerability in Motex LANSCOPE Endpoint Manager to gain unauthorized acc…GBHACKERS.COM
31 OctWill AI Strengthen or Undermine Democracy?Listen to the Audio on NextBigIdeaClub.com Below, co-authors Bruce Schneier and Nathan E. Sanders share five key insights from their new book, Rewiring Democracy: How AI Will Transform Our Politics, Government, and Citizenship . What’s the big idea? AI can be used both for …SCHNEIER.COM
31 Oct KEVWindows zero-day actively exploited to spy on European diplomatsA China-linked hacking group is exploiting a Windows zero-day in attacks targeting European diplomats in Hungary, Belgium, and other European nations. [...]BLEEPINGCOMPUTER.COM
31 OctBug-Bounty-Programm trifft KI – ein zweischneidiges SchwertKI-gestütztes Bug Hunting verspricht viele Vorteile. Ob sich diese auch in der Praxis verwirklichen, ist eine andere Sache. DC Studio | shutterstock.com Künstliche Intelligenz (KI) wird zunehmend auch zum Treiber von Bug-Bounty-Programmen . Sicherheitsexperten greifen auf Large L…CSOONLINE.COM
31 OctBeware of Fake ChatGPT Apps That Spy on Users and Steal Sensitive DataThe proliferation of artificial intelligence applications has created unprecedented opportunities for cybercriminals to exploit user trust through deceptive mobile apps. Mobile app stores today are flooded with hundreds of lookalike applications claiming to offer ChatGPT, DALL·E,…GBHACKERS.COM
31 OctClaude AI vulnerability exposes enterprise data through code interpreter exploitA newly disclosed vulnerability in Anthropic’s Claude AI assistant has revealed how attackers can weaponize the platform’s code interpreter feature to silently exfiltrate enterprise data, bypassing even the default security settings designed to prevent such attacks. Security rese…CSOONLINE.COM
31 OctCISA: High-severity Linux flaw now exploited by ransomware gangsCISA confirmed on Thursday that a high-severity privilege escalation flaw in the Linux kernel is now being exploited in ransomware attacks. [...]BLEEPINGCOMPUTER.COM
31 OctNew "Brash" Exploit Crashes Chromium Browsers Instantly with a Single Malicious URLsubmitted by kid to cybersecurity 3 points | 0 comments https://thehackernews.com/2025/10/new-brash-exploit-crashes-chromium.htmlSH.ITJUST.WORKS
31 OctChina-Linked Hackers Exploit Windows Shortcut Flaw to Target European DiplomatsA China-affiliated threat actor known as UNC6384 has been linked to a fresh set of attacks exploiting an unpatched Windows shortcut vulnerability to target European diplomatic and government entities between September and October 2025. The activity targeted diplomatic organizatio…THEHACKERNEWS.COM
31 OctCISA: High-severity Linux flaw now exploited by ransomware gangssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/cisa-linux-privilege-escalation-flaw-now-exploited-in-ransomware-attacks/SH.ITJUST.WORKS
31 OctMultiple Jenkins Vulnerability SAML Authentication Bypass And MCP Server Plugin Permissionssubmitted by kid to cybersecurity 1 points | 0 comments https://cybersecuritynews.com/multiple-jenkins-vulnerability/SH.ITJUST.WORKS
31 OctAustralia warns of BadCandy infections on unpatched Cisco devicesThe Australian government is warning about ongoing cyberattacks against unpatched Cisco IOS XE devices in the country to infect routers with the BadCandy webshell. [...]BLEEPINGCOMPUTER.COM
31 OctUNC6384 Weaponizes ZDI-CAN-25373 Vulnerability to Deploy PlugX Against Hungarian and Belgian Diplomatic Entities - Arctic Wolfsubmitted by kid to cybersecurity 1 points | 0 comments https://arcticwolf.com/resources/blog/unc6384-weaponizes-zdi-can-25373-vulnerability-to-deploy-plugx/SH.ITJUST.WORKS
31 OctAustralia warns of BadCandy infections on unpatched Cisco devicessubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/australia-warns-of-badcandy-infections-on-unpatched-cisco-devices/SH.ITJUST.WORKS
31 OctAI Cheating?, O, Canada, npms, passkeys, Exchange, Solaris, the amazing Rob Allen - SWN #525AI Cheating?, O, Canada, npms, passkeys, Exchange, Solaris, the amazing Rob Allen of Threatlocker, and More on this edition of the Security Weekly News. Segment Resources: Ingram Micro Working Through Ransomware Attack by SafePay Group | MSSP Alert: https://www.msspalert.com/news…YOUTUBE.COM
📢 SECURITY ADVISORIES 6[−]
31 OctCISA Publishes New Guidance to Strengthen Microsoft Exchange Server SecurityThe Cybersecurity and Infrastructure Security Agency (CISA), working alongside the National Security Agency and international cybersecurity partners, has released a comprehensive security guidance document focused on hardening Microsoft Exchange servers against evolving threats. …GBHACKERS.COM
31 OctThe MSP Cybersecurity Readiness Guide: Turning Security into GrowthMSPs are facing rising client expectations for strong cybersecurity and compliance outcomes, while threats grow more complex and regulatory demands evolve. Meanwhile, clients are increasingly seeking comprehensive protection without taking on the burden of managing security thems…THEHACKERNEWS.COM
31 OctCISA and NSA share tips on securing Microsoft Exchange serverssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/cisa-and-nsa-share-tips-on-securing-microsoft-exchange-servers/SH.ITJUST.WORKS
🔥 INCIDENT REPORTING 12[−]
31 OctMassive Great Firewall Leak Exposes 500GB of Censorship DataIn a historic breach of China’s censorship infrastructure, over 500 gigabytes of internal data were leaked from Chinese infrastructure firms associated with the Great Firewall (GFW) in September 2025. Researchers now estimate the full dump is closer to approximately 600 GB,…GBHACKERS.COM
31 OctKimsuky and Lazarus Hackers Deploy New Backdoor Tools for Remote Access AttacksNorth Korean state-sponsored threat actors have escalated their cyber operations with the deployment of sophisticated new malware variants designed to establish persistent backdoor access to compromised systems. Recent investigations by threat intelligence researchers have uncove…GBHACKERS.COM
31 OctUkrainian extradited from Ireland on Conti ransomware chargesA Ukrainian national believed to be a member of the Conti ransomware operation has been extradited to the United States and faces charges that could get him 25 years in prison. [...]BLEEPINGCOMPUTER.COM
31 OctData breach at Reputation.com: brands at risk as 120M records leaksubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/security/reputation-com-leak-exposes-sensitive-data/SH.ITJUST.WORKS
31 OctBPO giant Conduent confirms data breach impacts 10.5 million peoplesubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/bpo-giant-conduent-confirms-data-breach-impacts-105-million-people/SH.ITJUST.WORKS
31 OctMajor telecom services provider Ribbon breached by state hackerssubmitted by kid to cybersecurity 3 points | 0 comments https://www.bleepingcomputer.com/news/security/major-telecom-services-provider-ribbon-breached-by-state-hackers/SH.ITJUST.WORKS
31 OctStolen Credentials Drive the Rise of Financially Motivated CyberattacksThroughout the first half of 2025, the FortiGuard Incident Response team investigated dozens of security breaches across multiple industries driven by financially motivated threat actors. What emerged from these investigations was a striking pattern: attackers are abandoning comp…GBHACKERS.COM
31 OctUkrainian Man Extradited From Ireland to US Over Conti Ransomware ChargesOleksii Oleksiyovych Lytvynenko is now in the US after being held in custody in Ireland since 2023. The post Ukrainian Man Extradited From Ireland to US Over Conti Ransomware Charges appeared first on SecurityWeek .SECURITYWEEK.COM
31 OctPoland mayors hit by phishing scam​ | Cybernewssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/cyber-war/cyberattack-polish-municipalities-mayors-phishing-campaign/SH.ITJUST.WORKS
31 OctGovernment hackers breached telecom giant Ribbon for months before getting caughtRibbon, which provides software and technology to phone and internet giants, said nation-state hackers were in its systems since at least December 2024.TECHCRUNCH.COM
31 OctHackers threaten to leak data after breaching University of Pennsylvania to send mass emailsThe hackers sent out mass-emails using official University of Pennsylvania email accounts, and threatened to leak university data.TECHCRUNCH.COM
31 Oct‘We got hacked’ emails threaten to leak University of Pennsylvania dataThe University of Pennsylvania suffered a cybersecurity incident on Friday, where students and alumni received a series of offensive emails from various University email addresses, claiming that data was stolen in a breach. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 23[−]
31 OctISC Stormcast For Friday, October 31st, 2025 https://isc.sans.edu/podcastdetail/9680, (Fri, Oct 31st)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
31 OctMalicious Multilingual ZIP Files Strike Banks and Government OfficesA sophisticated phishing campaign leveraging multilingual ZIP file lures has emerged across East and Southeast Asia, targeting government institutions and financial organizations with unprecedented coordination. Security researchers utilizing Hunt.io’s AttackCapture™ and Hu…GBHACKERS.COM
31 OctJapan Issues OT Security Guidance for Semiconductor FactoriesThe 130-page document covers several important aspects and it’s available in both Japanese and English. The post Japan Issues OT Security Guidance for Semiconductor Factories appeared first on SecurityWeek .SECURITYWEEK.COM
31 OctResearchers Develop Linux Rootkit That Evades Elastic EDR ProtectionsSecurity researchers have unveiled a sophisticated Linux rootkit capable of bypassing Elastic Security’s advanced detection mechanisms, demonstrating critical vulnerabilities in endpoint detection and response solutions. The Singularity rootkit employs multiple obfuscation …GBHACKERS.COM
31 OctWhatsApp Implements Passkey System to Boost Backup PrivacyWhatsApp has announced a significant security upgrade that makes protecting your chat backups simpler and more secure than ever before. The messaging platform is introducing passkey-encrypted backups, a new feature that eliminates the need for complicated passwords or lengthy enc…GBHACKERS.COM
31 OctAgentic AI: What now, what next?Download the November 2025 issue of the Enterprise Spotlight from the editors of CIO, Computerworld, CSO, InfoWorld, and Network World. aria-label="Embed of NOVEMBER SPOTLIGHT 02."> NOVEMBER SPOTLIGHT 02 DownloadUS.RESOURCES.CSOONLINE.COM
31 OctJamf to Go Private Following $2.2 Billion Acquisition by Francisco PartnersThe private equity firm will purchase the outstanding shares of Jamf common stock for $13 per share in an all-cash transaction. The post Jamf to Go Private Following $2.2 Billion Acquisition by Francisco Partners appeared first on SecurityWeek .SECURITYWEEK.COM
31 OctLotL Attack Hides Malware in Windows Native AI Stacksubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/vulnerabilities-threats/lotl-attack-malware-windows-native-ai-stackSH.ITJUST.WORKS
31 OctOpen VSX Downplays Impact From GlassWorm CampaignOpen VSX fully contained the GlassWorm attacks and says it was not a self-replicating worm in the traditional sense. The post Open VSX Downplays Impact From GlassWorm Campaign appeared first on SecurityWeek .SECURITYWEEK.COM
31 OctMassive surge of NFC relay malware steals Europeans’ credit cardssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/massive-surge-of-nfc-relay-malware-steals-europeans-credit-cards/SH.ITJUST.WORKS
31 OctGoogle Launches New AI Security Features on Android to Block Mobile ScamsGoogle has announced enhanced artificial intelligence protections designed to combat the rising tide of mobile scams affecting billions of users worldwide. The company revealed that fraudsters stole over $400 billion globally in the past year using advanced AI-powered schemes, ma…GBHACKERS.COM
31 OctCritical Flaws Found in Elementor King Addons Affect 10,000 Sites - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/critical-flaws-elementor-king/SH.ITJUST.WORKS
31 OctWhy password controls still matter in cybersecurityPasswords still matter — and weak policies leave the door wide open. Specops Software explains how longer passphrases, smarter banned-password lists, and adaptive rotation strategies can strengthen security without frustrating users. [...]BLEEPINGCOMPUTER.COM
31 OctNPM flooded with malicious packages downloaded more than 86,000 timessubmitted by cm0002 to cybersecurity 1 points | 0 comments https://arstechnica.com/security/2025/10/npm-flooded-with-malicious-packages-downloaded-more-than-86000-times/INFOSEC.PUB
31 OctKimsuky and Lazarus Hacker Groups Unveil New Tools That Enable Backdoor and Remote Accesssubmitted by kid to cybersecurity 1 points | 0 comments https://cybersecuritynews.com/kimsuky-and-lazarus-hacker-groups-unveil-new-tools/SH.ITJUST.WORKS
31 OctIn Other News: WhatsApp Passkey-Encrypted Backups, Russia Targets Meduza Malware, New Mastercard SolutionOther noteworthy stories that might have slipped under the radar: several interesting Android malware families, UN cybercrime treaty, criminal complaint against Clearview AI in Europe. The post In Other News: WhatsApp Passkey-Encrypted Backups, Russia Targets Meduza Malware, New …SECURITYWEEK.COM
31 OctAisuru Botnet Shifts from DDoS to Residential Proxies – Krebs on Securitysubmitted by kid to cybersecurity 1 points | 0 comments https://krebsonsecurity.com/2025/10/aisuru-botnet-shifts-from-ddos-to-residential-proxies/SH.ITJUST.WORKS
31 OctAustralian Police Use 'Crypto Safe Cracker' to Access $6M Stash - Decryptsubmitted by kid to cybersecurity 1 points | 0 comments https://decrypt.co/346755/australian-police-use-crypto-safe-cracker-to-access-6m-stashSH.ITJUST.WORKS
31 OctNation-State Hackers Deploy New Airstalk Malware in Suspected Supply Chain AttackA suspected nation-state threat actor has been linked to the distribution of a new malware called Airstalk as part of a likely supply chain attack. Palo Alto Networks Unit 42 said it's tracking the cluster under the moniker CL-STA-1009, where "CL" stands for cluster and "STA" ref…THEHACKERNEWS.COM
31 OctRussia finally bites the cybercrooks it raised, arresting suspected Meduza infostealer devssubmitted by PhilipTheBucket to cybersecurity 2 points | 0 comments https://go.theregister.com/feed/www.theregister.com/2025/10/31/russia_arrests_three_meduza_cyber_suspects/INFOSEC.PUB
31 OctUN Convention Against Cybercrime Is a Huge Win!One of the biggest reasons why cybercrime is so bad — and is increasing each year —is that so much of it is committed by foreign nationals who are not physically located in the country they are attacking.KNOWBE4.COM
31 OctFriday Squid Blogging: Giant Squid at the SmithsonianI can’t believe that I haven’t yet posted this picture of a giant squid at the Smithsonian. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy.SCHNEIER.COM
31 OctMY TAKE: Microsoft pitches an AI ‘protopian’ future — while civic groups pedal to stay uprightSEATTLE — At a well-meaning civic forum hosted inside a south Seattle community space yesterday (Oct. 30,) Microsoft’s Lorraine Bardeen coined a new term: protopian . Related: The workflow cadences of GenAI She said it three times, as if underlining … (more…) The post MY TA…LASTWATCHDOG.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
31 OctAlleged Meduza Stealer malware admins arrested after hacking Russian orgThe Russian authorities have arrested three individuals in Moscow who are believed to be the creators and operators of the Meduza Stealer information-stealing malware. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 8[−]
31 OctA New Security Layer for macOS Takes Aim at Admin Errors Before Hackers DoA design firm is editing a new campaign video on a MacBook Pro. The creative director opens a collaboration app that quietly requests microphone and camera permissions. MacOS is supposed to flag that, but in this case, the checks are loose. The app gets access anyway. On another …THEHACKERNEWS.COM
31 OctPhake phishing: Phundamental or pholly?Debates over the effectiveness of phishing simulations are widespread. Sophos X-Ops looks at the arguments for and against – and our own phishing philosophySOPHOS.COM
31 OctGoogle says Search AI Mode will know everything about youGoogle wants 'AI mode' on Search to be as personal as possible, and it'll soon tap into services like Gmail or Drive to know more about you. [...]BLEEPINGCOMPUTER.COM
31 OctMicrosoft Edge gets scareware sensor for faster scam detectionMicrosoft is introducing a new scareware sensor for the Microsoft Edge web browser, which helps detect scam pages more quickly and ensures that Defender SmartScreen blocks them faster. [...]BLEEPINGCOMPUTER.COM
31 OctOpenAI Unveils Aardvark: GPT-5 Agent That Finds and Fixes Code Flaws AutomaticallyOpenAI has announced the launch of an "agentic security researcher" that's powered by its GPT-5 large language model (LLM) and is programmed to emulate a human expert capable of scanning, understanding, and patching code. Called Aardvark, the artificial intelligence (AI) company …THEHACKERNEWS.COM
31 OctWindows 11 tests shared Bluetooth audio support, but only for AI PCsIf you have two headphones, speakers, earbuds, or any other Bluetooth hardware, you can now use both simultaneously on a Copilot+ PC. [...]BLEEPINGCOMPUTER.COM
31 OctThis month in security with Tony Anscombe – October 2025 editionFrom the end of Windows 10 support to scams on TikTok and state-aligned hackers wielding AI, October's headlines offer a glimpse of what's shaping cybersecurity right nowWELIVESECURITY.COM
31 OctHow are you managing cloud risk?Learn why managing cloud risk demands unified visibility, continuous risk assessment, and efficient security operations. Discover how a full-featured CNAPP like Trend Vision One™ Cloud Security enables organizations to move from reactive to proactive cloud protection.TRENDMICRO.COM