🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
2 NovScans for Port 8530/8531 (TCP). Likely related to WSUS Vulnerability CVE-2025-59287, (Sun, Nov 2nd)Sensors reporting firewall logs detected a significant increase in scans for port 8530/TCP and 8531/TCP over the course of last week. Some of these reports originate from Shadowserver, and likely other researchers, but there are also some that do not correspond to known research-…ISC.SANS.EDU
⚠️ VULNERABILITY DISCLOSURE 1[−]
2 NovAlleged Jabber Zeus Coder ‘MrICQ’ in U.S. CustodyA Ukrainian man indicted in 2012 for conspiring with a prolific hacking group to steal tens of millions of dollars from U.S. businesses was arrested in Italy and is now in custody in the United States, KrebsOnSecurity has learned. Sources close to the investigation say Yuriy Igor…KREBSONSECURITY.COM
🔥 INCIDENT REPORTING 1[−]
2 NovPenn hacker claims to have stolen 1.2 million donor records in data breachA hacker has taken responsibility for last week's University of Pennsylvania "We got hacked" email incident, saying it was a far more extensive breach that exposed data on 1.2 million donors and internal documents. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 4[−]
2 NovEmployees are the new hackers: 1Password warns AI chaos is breaking corporate securitysubmitted by BrikoX to cybersecurity 4 points | 0 comments https://nerds.xyz/2025/10/employees-are-the-new-hackers-ai-chaos-security/ 1Password warns that the biggest cybersecurity threat now comes from inside as employees using AI and unapproved apps without oversight widen the …SH.ITJUST.WORKS
2 NovStudy concludes cybersecurity training doesn’t worksubmitted by cm0002 to cybersecurity 2 points | 0 comments https://www.kpbs.org/news/science-technology/2025/10/31/study-concludes-cybersecurity-training-doesnt-workINFOSEC.PUB
2 NovWhat Rural Internet Providers Offer Remote CommunitiesLoss of internet access in rural areas is considerably more serious, as it disrupts education, work, and communication. Despite such hurdles, it is rural internet providers serving such remote communities and getting them connected. By understanding what these providers can offer…GBHACKERS.COM
2 NovOpen VSX rotates access tokens used in supply-chain malware attackThe Open VSX registry rotated access tokens after they were accidentally leaked by developers in public repositories and allowed threat actors to publish malicious extensions in an attempted supply-chain attack. [...]BLEEPINGCOMPUTER.COM