Cybersecurity News from Across the Internet
The Akira ransomware group claims to have stolen 23GB of data from Apache OpenOffice, including employee and financial records, though the breach remains unverified. – Read More – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
Cybersecurity experts from multiple federal agencies released guidance to help organizations bolster their defenses against attacks on on-premises Microsoft Exchange Servers, resurfacing and building upon previously shared advice that generally applies to most technology. The Cybersecurity and Infrastructure Security Agency said the security blueprint for Microsoft Exchange Server is a follow-up effort to an emergency … Read More “CISA, NSA offer guidance to better protect Microsoft Exchange Servers – CyberScoop” »
A severe vulnerability disclosed in Chromium’s Blink rendering engine can be exploited to crash many Chromium-based browsers within a few seconds. Security researcher Jose Pino, who disclosed details of the flaw, has codenamed it Brash. “It allows any Chromium browser to collapse in 15-60 seconds by exploiting an architectural flaw in how certain DOM operations … Read More “New “Brash” Exploit Crashes Chromium Browsers Instantly with a Single Malicious URL – The Hacker News” »
A landmark program that offers scholarships in exchange for federal service is threatening to saddle students with hundreds of thousands of dollars worth of debt amid hiring freezes and budget cuts, raising questions about the future of an initiative proponents say has helped close the government’s cyber workforce gap. Some CyberCorps: Scholarship for Service participants … Read More “Cyber scholarship-for-service students say government has pulled rug on them, potentially burdening them with debt – CyberScoop” »
ZÜRICH, Switzerland – Flowable, a global provider of enterprise automation and orchestration software, has been recognized in the… – Read More – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
Are you using a fake version of a popular app? Appknox warns US users about malicious brand clones hiding on third-party app stores. Protect yourself from hidden spyware and ‘commercial parasites.’ – Read More – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
A nonprofit government watchdog group is suing the Department of Homeland Security, alleging that department officials have delayed and denied legitimate public information requests regarding the hiring of Heather Honey. Honey was hired by DHS earlier this year and given the title “Deputy Assistant Secretary for Elections Integrity,” a change from past administrations, which have … Read More “Government watchdog sues DHS over election official’s records – CyberScoop” »
Ribbon Communications discloses a year-long breach by nation-state actors. The attack highlights critical supply chain risk, reflecting the Salt Typhoon and F5 espionage trends. – Read More – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
The open-source command-and-control (C2) framework known as AdaptixC2 is being used by a growing number of threat actors, some of whom are related to Russian ransomware gangs. AdaptixC2 is an emerging extensible post-exploitation and adversarial emulation framework designed for penetration testing. While the server component is written in Golang, the GUI Client is written in … Read More “Russian Ransomware Gangs Weaponize Open-Source AdaptixC2 for Advanced Attacks – The Hacker News” »
Google on Thursday revealed that the scam defenses built into Android safeguard users around the world from more than 10 billion suspected malicious calls and messages every month. The tech giant also said it has blocked over 100 million suspicious numbers from using Rich Communication Services (RCS), an evolution of the SMS protocol, thereby preventing … Read More “Google’s Built-In AI Defenses on Android Now Block 10 Billion Scam Messages a Month – The Hacker News” »
Can data leaks do real harm? Yes, they can. And so can a failure to respond appropriately. – Read More – Graham Cluley
The UK Information Commissioner’s Office (ICO) has levied a fine of £200,000 against a sole trader who sent almost one million spam text messages to people across the country – many of whom were already struggling with debt. Read more in my article on the Hot for Security blog. – Read More – Graham Cluley
The King Addons for Elementor plugin contains two flaws allowing unauthenticated file uploads and privilege escalation – Read More –
Cybercriminals are abusing AdaptixC2, a legitimate emulation framework, in ransomware campaigns – Read More –
Over a quarter of employees work with AI tools that had not been authorized by their company – Read More –
Silent Push wars of Russian hackers exploiting Adaptix, a pentesting tool built for Windows, Linux, and macOS, in ransomware campaigns. – Read More – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
Silver Spring, USA/ Maryland, 30th October 2025, CyberNewsWire – Read More – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
Security doesn’t fail at the point of breach. It fails at the point of impact. That line set the tone for this year’s Picus Breach and Simulation (BAS) Summit, where researchers, practitioners, and CISOs all echoed the same theme: cyber defense is no longer about prediction. It’s about proof. When a new exploit drops, scanners … Read More “The Death of the Security Checkbox: BAS Is the Power Behind Real Defense – The Hacker News” »
Cybersecurity researchers have uncovered yet another active software supply chain attack campaign targeting the npm registry with over 100 malicious packages that can steal authentication tokens, CI/CD secrets, and GitHub credentials from developers’ machines. The campaign has been codenamed PhantomRaven by Koi Security. The activity is assessed to have begun in August 2025, when the … Read More “PhantomRaven Malware Found in 126 npm Packages Stealing GitHub Tokens From Devs – The Hacker News” »
The comfort zone in cybersecurity is gone. Attackers are scaling down, focusing tighter, and squeezing more value from fewer, high-impact targets. At the same time, defenders face growing blind spots — from spoofed messages to large-scale social engineering. This week’s findings show how that shrinking margin of safety is redrawing the threat landscape. Here’s what’s … Read More “ThreatsDay Bulletin: DNS Poisoning Flaw, Supply-Chain Heist, Rust Malware Trick and New RATs Rising – The Hacker News” »
A new dark web analysis reveals more than 300 million records have been breached in 2025 to date – Read More –
The former general manager of defense contractor Trenchant has admitted selling zero-days to Russian broker – Read More –
If you live in the UK/EU/Canada/Hong Kong, LinkedIn has given you until Monday to stop AI from training on your profile. You have to opt-out if you don’t want this to happen to your data. Take action now, and tell your friends. Read more in my article on the Hot for Security blog. – Read … Read More “LinkedIn gives you until Monday to stop AI from training on your profile – Graham Cluley” »
The fast development of quantum computing opens unprecedented opportunities and serious threats to the current cybersecurity systems. Although quantum… The post How to Build a Quantum-Resilient Data Protection Strategy appeared first on JISA Softech Pvt Ltd. – Read More – JISA Softech Pvt Ltd
Posted by Aki Tuomi via Fulldisclosure on Oct 29 Affected product: Dovecot IMAP Server Internal reference: DOV-7830 Vulnerability type: CWE-1250 (Improper Preservation of Consistency Between Independent Representations of Shared State) Vulnerable version: 2.4.0, 2.4.1 Vulnerable component: auth Report confidence: Confirmed Solution status: Fixed in 2.4.2 Researcher credits: Erik <erik () broadlux com> Vendor notification: … Read More “Dovecot CVE-2025-30189: Auth cache causes access to wrong account – Full Disclosure” »
Posted by Christoph Gruber on Oct 29 It seems, the whole account is down – Read More – Full Disclosure
Posted by josephgoyd via Fulldisclosure on Oct 29 The exploit I caught in the wild and the flow of the attack chain are in this repo: https://github.com/JGoyd/Glass-Cage-iOS18-CVE-2025-24085-CVE-2025-24201 The report was constructed via log analysis. ——– Original Message ——– It seems, the whole account is down – Read More – Full Disclosure
Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Oct 29 SEC Consult Vulnerability Lab Security Advisory < 20251029-0 > ======================================================================= title: Unprotected NFC card manipulation leading to free top-up product: GiroWeb Cashless Catering Solutions vulnerable version: Only legacy customer infrastructure using outdated Legic Prime or other insecure NFC cards fixed version: – CVE… – … Read More “SEC Consult SA-20251029-0 :: Unprotected NFC card manipulation leading to free top-up in GiroWeb Cashless Catering Solutions (only legacy customer infrastructure) – Full Disclosure” »
Basketball stars have allegedly joined forces with the mafia to fleece high-rollers in a poker scam involving hacked shufflers, covert cameras, and an X-ray card table. Meanwhile, researchers have found they could poke around an FIA driver portal to pull up the personal details of Formula 1 megastars. All this and more is discussed in … Read More “Smashing Security podcast #441: Inside the mob’s million-dollar poker hack, and a Formula 1 fumble – Graham Cluley” »
A new investigation from mobile security firm Zimperium has revealed a fast-growing cybersecurity threat targeting Android users through… – Read More – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
A major Microsoft outage has disrupted Azure, Microsoft 365, Xbox, and Minecraft worldwide after a configuration failure, with services now gradually recovering. – Read More – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
A 19-year-old California man associated with the nihilistic violent extremist group 764 pleaded not guilty to multiple charges of animal crushing, sexual exploitation of a minor, possession of child sexual abuse material (CSAM), cyberstalking and interstate extortion in a federal court Tuesday. Tony Christopher Long of Porterville, Calif., allegedly committed the various criminal acts in … Read More “Alleged 764 member faces up to 69 years in prison for string of suspected violent crimes – CyberScoop” »
An ex-L3 Harris executive pleaded guilty to two counts of theft of trade secrets Wednesday, admitting to selling eight zero-day exploits to a Russian broker in exchange for millions of dollars. Peter Williams, 39, pleaded guilty in the District Court of the District of Columbia to two counts of theft of trade secrets. Court records … Read More “Ex-L3Harris exec pleads guilty to selling zero-day exploits to Russian broker – CyberScoop” »
The Trump administration’s zeal to stamp out diversity, equity and inclusion programs is affecting national cybersecurity research, as a key open-source security foundation announced it would reject federal grant funding. The Python Software Foundation (PSF), which promotes safe and secure Python coding practices and helps oversee PyPI, the world’s largest open-source code repository for Python, … Read More “Open-source security group pulls out of U.S. grant, citing DEI restrictions – CyberScoop” »
Tel Aviv, Israel, 29th October 2025, CyberNewsWire – Read More – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
Hackers exploit critical XWiki flaw CVE-2025-24893 to hijack corporate servers for cryptomining, with active attacks confirmed by VulnCheck researchers. – Read More – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
Google Chrome will enhance security with enforced HTTPS connections from version 154, set for release in October 2026 – Read More –
Cybersecurity researchers have flagged a new security issue in agentic web browsers like OpenAI ChatGPT Atlas that exposes underlying artificial intelligence (AI) models to context poisoning attacks. In the attack devised by AI security company SPLX, a bad actor can set up websites that serve different content to browsers and AI crawlers run by ChatGPT … Read More “New AI-Targeted Cloaking Attack Tricks AI Crawlers Into Citing Fake Info as Verified Facts – The Hacker News” »
Cybersecurity researchers are calling attention to a spike in automated attacks targeting PHP servers, IoT devices, and cloud gateways by various botnets such as Mirai, Gafgyt, and Mozi. “These automated campaigns exploit known CVE vulnerabilities and cloud misconfigurations to gain control over exposed systems and expand botnet networks,” the Qualys Threat Research Unit (TRU) said … Read More “Experts Reports Sharp Increase in Automated Botnet Attacks Targeting PHP Servers and IoT Devices – The Hacker News” »
The ongoing ‘PhantomRaven’ malicious campaign has infected 126 npm packages to date, representing 86,000 downloads – Read More –
A rise in attacks on PHP servers, IoT devices and cloud gateways is linked to botnets exploiting flaws, according to new research published by Qualys – Read More –
Your main rival in the fintech space just raised $20 million in a very successful Series B funding… – Read More – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More
Organizations in Ukraine have been targeted by threat actors of Russian origin with an aim to siphon sensitive data and maintain persistent access to compromised networks. The activity, according to a new report from the Symantec and Carbon Black Threat Hunter Team, targeted a large business services organization for two months and a local government … Read More “Russian Hackers Target Ukrainian Organizations Using Stealthy Living-Off-the-Land Tactics – The Hacker News” »
BeyondTrust’s annual cybersecurity predictions point to a year where old defenses will fail quietly, and new attack vectors will surge. Introduction The next major breach won’t be a phished password. It will be the result of a massive, unmanaged identity debt. This debt takes many forms: it’s the “ghost” identity from a 2015 breach lurking … Read More “Preparing for the Digital Battlefield of 2026: Ghost Identities, Poisoned Accounts, & AI Agent Havoc – The Hacker News” »
Atroposia is a newly discovered modular RAT that uses encrypted channels and advanced theft capabilities to target credentials and crypto wallets – Read More –
Artificial Intelligence (AI) is rapidly transforming Governance, Risk, and Compliance (GRC). It’s no longer a future concept—it’s here, and it’s already reshaping how teams operate. AI’s capabilities are profound: it’s speeding up audits, flagging critical risks faster, and drastically cutting down on time-consuming manual work. This leads to greater efficiency, higher accuracy, and a more … Read More “Discover Practical AI Tactics for GRC — Join the Free Expert Webinar – The Hacker News” »
The backbone breaker benchmark (b3) has been launched to enhance the security of LLMs within AI agents – Read More –
The British Standards Institution claims business leaders aren’t focused enough on managing AI risk – Read More –
Cybersecurity researchers have discovered a set of 10 malicious npm packages that are designed to deliver an information stealer targeting Windows, Linux, and macOS systems. “The malware uses four layers of obfuscation to hide its payload, displays a fake CAPTCHA to appear legitimate, fingerprints victims by IP address, and downloads a 24MB PyInstaller-packaged information stealer … Read More “10 npm Packages Caught Stealing Developer Credentials on Windows, macOS, and Linux – The Hacker News” »
Threat actors are actively exploiting multiple security flaws impacting Dassault Systèmes DELMIA Apriso and XWiki, according to alerts issued by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and VulnCheck. The vulnerabilities are listed below – CVE-2025-6204 (CVSS score: 8.0) – A code injection vulnerability in Dassault Systèmes DELMIA Apriso that could allow an attacker … Read More “Active Exploits Hit Dassault and XWiki — CISA Confirms Critical Flaws Under Attack – The Hacker News” »
![Re: [FD] : “Glass Cage” – Zero-Click iMessage → Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885) – Full Disclosure](https://attackfeed.com/wp-content/uploads/2025/10/fulldisclosure-img-tKo9mS.webp "Re: [FD] : “Glass Cage” – Zero-Click iMessage → Persistent iOS Compromise + Bricking (CVE-2025-24085 / 24201, CNVD-2025-07885)")
