Top Security News for Today
AI-Enabled Influence Operation Against Iran
https://www.schneier.com/blog/archives/2025/10/ai-enabled-influence-operation-against-iran.html
Jaguar Land Rover to restart production following cyberattack
https://therecord.media/jaguar-land-rover-restarting-production-after-cyberattack
Discord says sensitive info stolen during cyberattack on customer service provider
https://therecord.media/discord-data-breach-third-party
The future of pentesting is Human x AI, and it's already in Burp Suite Professional
https://portswigger.net/blog/the-future-of-pentesting-is-human-x-ai-and-its-already-in-burp-suite-professional
Russia blocks mobile internet for foreign SIM cards, citing drone threats
https://therecord.media/russia-blocks-mobile-internet-foreign-sim-cards
New Microsoft Secure Future Initiative (SFI) patterns and practices: Practical guides to strengthen security
https://www.microsoft.com/en-us/security/blog/2025/10/07/new-microsoft-secure-future-initiative-sfi-patterns-and-practices-practical-guides-to-strengthen-security/
Police searched national network of automatic license plate reading cameras in abortion investigation
https://therecord.media/police-searched-license-reading-cameras-abortion-investigation
Disrupting threats targeting Microsoft Teams
https://www.microsoft.com/en-us/security/blog/2025/10/07/disrupting-threats-targeting-microsoft-teams/
How Your AI Chatbot Can Become a Backdoor
https://www.trendmicro.com/en_us/research/25/j/ai-chatbot-backdoor.html
ShinyHunters Wage Broad Corporate Extortion Spree
https://krebsonsecurity.com/2025/10/shinyhunters-wage-broad-corporate-extortion-spree/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
AI-Enabled Influence Operation Against Iran
https://www.schneier.com/blog/archives/2025/10/ai-enabled-influence-operation-against-iran.html
Jaguar Land Rover to restart production following cyberattack
https://therecord.media/jaguar-land-rover-restarting-production-after-cyberattack
Discord says sensitive info stolen during cyberattack on customer service provider
https://therecord.media/discord-data-breach-third-party
The future of pentesting is Human x AI, and it's already in Burp Suite Professional
https://portswigger.net/blog/the-future-of-pentesting-is-human-x-ai-and-its-already-in-burp-suite-professional
Russia blocks mobile internet for foreign SIM cards, citing drone threats
https://therecord.media/russia-blocks-mobile-internet-foreign-sim-cards
New Microsoft Secure Future Initiative (SFI) patterns and practices: Practical guides to strengthen security
https://www.microsoft.com/en-us/security/blog/2025/10/07/new-microsoft-secure-future-initiative-sfi-patterns-and-practices-practical-guides-to-strengthen-security/
Police searched national network of automatic license plate reading cameras in abortion investigation
https://therecord.media/police-searched-license-reading-cameras-abortion-investigation
Disrupting threats targeting Microsoft Teams
https://www.microsoft.com/en-us/security/blog/2025/10/07/disrupting-threats-targeting-microsoft-teams/
How Your AI Chatbot Can Become a Backdoor
https://www.trendmicro.com/en_us/research/25/j/ai-chatbot-backdoor.html
ShinyHunters Wage Broad Corporate Extortion Spree
https://krebsonsecurity.com/2025/10/shinyhunters-wage-broad-corporate-extortion-spree/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Schneier on Security
AI-Enabled Influence Operation Against Iran - Schneier on Security
Citizen Lab has uncovered a coordinated AI-enabled influence operation against the Iranian government, probably conducted by Israel. Key Findings A coordinated network of more than 50 inauthentic X profiles is conducting an AI-enabled influence operation.…
Top Security News for Today
Tiny but Mighty: A Software-Hardware Co-Design Approach for Efficient Multimodal Inference on Battery-Powered Small Devices
https://arxiv.org/abs/2510.05109
System Prompt Poisoning: Persistent Attacks on Large Language Models Beyond User Injection
https://arxiv.org/abs/2505.06493
Bash a newline: Exploiting SSH via ProxyCommand, again (CVE-2025-61984)
https://www.reddit.com/r/netsec/comments/1o170wz/bash_a_newline_exploiting_ssh_via_proxycommand/
Teenagers arrested in England over cyberattack on nursery chain Kido
https://therecord.media/kido-nursery-school-chain-hack-arrests-britain
Cybercrime crew claims attack on Japanese brewer as it restarts operations
https://therecord.media/qilin-ransomware-gang-alleged-asahi-hackers
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Tiny but Mighty: A Software-Hardware Co-Design Approach for Efficient Multimodal Inference on Battery-Powered Small Devices
https://arxiv.org/abs/2510.05109
System Prompt Poisoning: Persistent Attacks on Large Language Models Beyond User Injection
https://arxiv.org/abs/2505.06493
Bash a newline: Exploiting SSH via ProxyCommand, again (CVE-2025-61984)
https://www.reddit.com/r/netsec/comments/1o170wz/bash_a_newline_exploiting_ssh_via_proxycommand/
Teenagers arrested in England over cyberattack on nursery chain Kido
https://therecord.media/kido-nursery-school-chain-hack-arrests-britain
Cybercrime crew claims attack on Japanese brewer as it restarts operations
https://therecord.media/qilin-ransomware-gang-alleged-asahi-hackers
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
arXiv.org
Tiny but Mighty: A Software-Hardware Co-Design Approach for...
Large Multimodal Models (LMMs) are inherently modular, consisting of vision and audio encoders, projectors, and large language models. Yet, they are almost always executed monolithically, which...
Top Security News for Today
Discord says 70,000 users had government IDs exposed in third-party breach
https://therecord.media/discord-government-docs-exposed-breach
Investing targeted “payroll pirate” attacks affecting US universities
https://www.microsoft.com/en-us/security/blog/2025/10/09/investigating-targeted-payroll-pirate-attacks-affecting-us-universities/
LLM Black Markets in 2025 – Prompt Injection, Jailbreak Sales & Model Leaks
https://www.darknet.org.uk/2025/10/llm-black-markets-in-2025-prompt-injection-jailbreak-sales-model-leaks/
HTTP/1.1 must die: Dafydd Stuttard on what this means for enterprise security
https://portswigger.net/blog/http-1-1-must-die-dafydd-stuttard-on-what-this-means-for-enterprise-security
Security Analysis of a medical device: Methods and Findings
https://www.reddit.com/r/netsec/comments/1o29iec/security_analysis_of_a_medical_device_methods_and/
A Hands-On Edition: Will Supabase Be the Next Firebase (At Least in Terms of Security)?
https://www.reddit.com/r/netsec/comments/1o0pfnr/a_handson_edition_will_supabase_be_the_next/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Discord says 70,000 users had government IDs exposed in third-party breach
https://therecord.media/discord-government-docs-exposed-breach
Investing targeted “payroll pirate” attacks affecting US universities
https://www.microsoft.com/en-us/security/blog/2025/10/09/investigating-targeted-payroll-pirate-attacks-affecting-us-universities/
LLM Black Markets in 2025 – Prompt Injection, Jailbreak Sales & Model Leaks
https://www.darknet.org.uk/2025/10/llm-black-markets-in-2025-prompt-injection-jailbreak-sales-model-leaks/
HTTP/1.1 must die: Dafydd Stuttard on what this means for enterprise security
https://portswigger.net/blog/http-1-1-must-die-dafydd-stuttard-on-what-this-means-for-enterprise-security
Security Analysis of a medical device: Methods and Findings
https://www.reddit.com/r/netsec/comments/1o29iec/security_analysis_of_a_medical_device_methods_and/
A Hands-On Edition: Will Supabase Be the Next Firebase (At Least in Terms of Security)?
https://www.reddit.com/r/netsec/comments/1o0pfnr/a_handson_edition_will_supabase_be_the_next/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Discord says 70,000 users had government IDs exposed in third-party breach
The social media platform Discord said about 70,000 users had their government IDs stolen by cybercriminals, as the company sought to dispel claims by the purported hackers of a larger breach.
Top Security News for Today
CISA Emergency Directive: AI-Powered Phishing Campaign Analysis - 300% Surge, $2.3B Q3 Losses
https://www.reddit.com/r/netsec/comments/1o2wci1/cisa_emergency_directive_aipowered_phishing/
Autonomous AI Hacking and the Future of Cybersecurity
https://www.schneier.com/blog/archives/2025/10/autonomous-ai-hacking-and-the-future-of-cybersecurity.html
Hacking with AI SASTs: An overview of 'AI Security Engineers'
https://www.reddit.com/r/netsec/comments/1o2tait/hacking_with_ai_sasts_an_overview_of_ai_security/
Pro-Russian hackers caught bragging about attack on fake water utility
https://therecord.media/fake-water-utility-honeypot-hacked-pro-russian-group
Living off Node.js Addons
https://www.reddit.com/r/netsec/comments/1o326ys/living_off_nodejs_addons/
DDoS Botnet Aisuru Blankets US ISPs in Record DDoS
https://krebsonsecurity.com/2025/10/ddos-botnet-aisuru-blankets-us-isps-in-record-ddos/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
CISA Emergency Directive: AI-Powered Phishing Campaign Analysis - 300% Surge, $2.3B Q3 Losses
https://www.reddit.com/r/netsec/comments/1o2wci1/cisa_emergency_directive_aipowered_phishing/
Autonomous AI Hacking and the Future of Cybersecurity
https://www.schneier.com/blog/archives/2025/10/autonomous-ai-hacking-and-the-future-of-cybersecurity.html
Hacking with AI SASTs: An overview of 'AI Security Engineers'
https://www.reddit.com/r/netsec/comments/1o2tait/hacking_with_ai_sasts_an_overview_of_ai_security/
Pro-Russian hackers caught bragging about attack on fake water utility
https://therecord.media/fake-water-utility-honeypot-hacked-pro-russian-group
Living off Node.js Addons
https://www.reddit.com/r/netsec/comments/1o326ys/living_off_nodejs_addons/
DDoS Botnet Aisuru Blankets US ISPs in Record DDoS
https://krebsonsecurity.com/2025/10/ddos-botnet-aisuru-blankets-us-isps-in-record-ddos/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
[ Removed by moderator ] : r/netsec
538K subscribers in the netsec community. /r/netsec is a community-curated aggregator of technical information security content. Our mission is to extract signal from the noise — to provide value to security practitioners, students, researchers, and hackers…
Top Security News for Today
IAmAntimalware: Inject Malicious Code Into Antivirus
https://www.reddit.com/r/netsec/comments/1o3rhy1/iamantimalware_inject_malicious_code_into/
A Story About Bypassing Air Canada's In-flight Network Restrictions
https://www.reddit.com/r/netsec/comments/1o3l1fy/a_story_about_bypassing_air_canadas_inflight/
Blind Enumeration of gRPC Services
https://www.reddit.com/r/netsec/comments/1o4eyuc/blind_enumeration_of_grpc_services/
Venom: A Kernel Module
https://www.reddit.com/r/lowlevel/comments/1o4iguk/venom_a_kernel_module/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
IAmAntimalware: Inject Malicious Code Into Antivirus
https://www.reddit.com/r/netsec/comments/1o3rhy1/iamantimalware_inject_malicious_code_into/
A Story About Bypassing Air Canada's In-flight Network Restrictions
https://www.reddit.com/r/netsec/comments/1o3l1fy/a_story_about_bypassing_air_canadas_inflight/
Blind Enumeration of gRPC Services
https://www.reddit.com/r/netsec/comments/1o4eyuc/blind_enumeration_of_grpc_services/
Venom: A Kernel Module
https://www.reddit.com/r/lowlevel/comments/1o4iguk/venom_a_kernel_module/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: IAmAntimalware: Inject Malicious Code Into Antivirus
Explore this post and more from the netsec community
Top Security News for Today
CloudConqueror – AWS CloudControl API Attack Surface Mapping and Persistence Tool
https://www.darknet.org.uk/2025/10/cloudconqueror-aws-cloudcontrol-api-attack-surface-mapping-and-persistence-tool/
Blind Enumeration of gRPC Services
https://www.reddit.com/r/netsec/comments/1o4eyuc/blind_enumeration_of_grpc_services/
SwitchOS - Switch between running OSs without losing state
https://www.reddit.com/r/lowlevel/comments/1o4zbir/switchos_switch_between_running_oss_without/
13th October – Threat Intelligence Report
https://research.checkpoint.com/2025/13th-october-threat-intelligence-report/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
CloudConqueror – AWS CloudControl API Attack Surface Mapping and Persistence Tool
https://www.darknet.org.uk/2025/10/cloudconqueror-aws-cloudcontrol-api-attack-surface-mapping-and-persistence-tool/
Blind Enumeration of gRPC Services
https://www.reddit.com/r/netsec/comments/1o4eyuc/blind_enumeration_of_grpc_services/
SwitchOS - Switch between running OSs without losing state
https://www.reddit.com/r/lowlevel/comments/1o4zbir/switchos_switch_between_running_oss_without/
13th October – Threat Intelligence Report
https://research.checkpoint.com/2025/13th-october-threat-intelligence-report/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Darknet - Hacking Tools, Hacker News & Cyber Security
CloudConqueror - AWS CloudControl API Attack Surface Mapping and Persistence Tool
CloudConqueror maps and abuses the AWS CloudControl API for discovery, resource enumeration, and persistence. Learn how attackers and defenders can test detection coverage and harden cloud environments.
Top Security News for Today
AI and the Future of American Politics
https://www.schneier.com/blog/archives/2025/10/ai-and-the-future-of-american-politics.html
UK fines 4chan over noncompliance with Online Safety Act
https://therecord.media/4chan-fined-ofcom-uk-online-safety-act
LLM Honeypot vs. Cryptojacking: Understanding the Enemy
https://www.reddit.com/r/netsec/comments/1o5m7cg/llm_honeypot_vs_cryptojacking_understanding_the/
Netherlands invokes special powers against Chinese-owned semiconductor company Nexperia
https://therecord.media/netherlands-special-powers-chinese-owned-semiconductor
(DEF CON 33) How I hacked over 1,000 car dealerships across the US
https://www.reddit.com/r/netsec/comments/1o5na8l/def_con_33_how_i_hacked_over_1000_car_dealerships/
Building a lasting security culture at Microsoft
https://www.microsoft.com/en-us/security/blog/2025/10/13/building-a-lasting-security-culture-at-microsoft/
Ukraine takes steps to launch dedicated cyber force for offensive strikes
https://therecord.media/ukraine-takes-steps-dedicated-cyber-force
Harvard says ‘limited number of parties’ impacted by breach linked to Oracle zero-day
https://therecord.media/harvard-says-limited-number-linked-to-data-theft
UK hit by record number of ‘nationally significant’ cyberattacks
https://therecord.media/uk-hit-by-record-number-significant-cyberattacks
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
AI and the Future of American Politics
https://www.schneier.com/blog/archives/2025/10/ai-and-the-future-of-american-politics.html
UK fines 4chan over noncompliance with Online Safety Act
https://therecord.media/4chan-fined-ofcom-uk-online-safety-act
LLM Honeypot vs. Cryptojacking: Understanding the Enemy
https://www.reddit.com/r/netsec/comments/1o5m7cg/llm_honeypot_vs_cryptojacking_understanding_the/
Netherlands invokes special powers against Chinese-owned semiconductor company Nexperia
https://therecord.media/netherlands-special-powers-chinese-owned-semiconductor
(DEF CON 33) How I hacked over 1,000 car dealerships across the US
https://www.reddit.com/r/netsec/comments/1o5na8l/def_con_33_how_i_hacked_over_1000_car_dealerships/
Building a lasting security culture at Microsoft
https://www.microsoft.com/en-us/security/blog/2025/10/13/building-a-lasting-security-culture-at-microsoft/
Ukraine takes steps to launch dedicated cyber force for offensive strikes
https://therecord.media/ukraine-takes-steps-dedicated-cyber-force
Harvard says ‘limited number of parties’ impacted by breach linked to Oracle zero-day
https://therecord.media/harvard-says-limited-number-linked-to-data-theft
UK hit by record number of ‘nationally significant’ cyberattacks
https://therecord.media/uk-hit-by-record-number-significant-cyberattacks
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Schneier on Security
AI and the Future of American Politics - Schneier on Security
Two years ago, Americans anxious about the forthcoming 2024 presidential election were considering the malevolent force of an election influencer: artificial intelligence. Over the past several years, we have seen plenty of warning signs from elections worldwide…
Top Security News for Today
Signal in the noise: what hashtags reveal about hacktivism in 2025
https://securelist.com/dfi-meta-hacktivist-report/117708/
Automating the RMF: Lessons from the FedRAMP 20x Pilot
https://arxiv.org/abs/2510.09610
A Biosecurity Agent for Lifecycle LLM Biosecurity Alignment
https://arxiv.org/abs/2510.09613
Causal Digital Twins for Cyber-Physical Security: A Framework for Robust Anomaly Detection in Industrial Control Systems
https://arxiv.org/abs/2510.09615
Microsoft raises the bar: A smarter way to measure AI for cybersecurity
https://www.microsoft.com/en-us/security/blog/2025/10/14/microsoft-raises-the-bar-a-smarter-way-to-measure-ai-for-cybersecurity/
Qantas confirms cybercriminals released stolen customer data
https://therecord.media/qantas-cybercriminals-stolen-data
Taiwan reports surge in Chinese cyber activity and disinformation efforts
https://therecord.media/taiwan-nsb-report-china-surge-cyberattacks-influence-operations
Florida sues Roku for illegally selling children’s data, including precise geolocation
https://therecord.media/florida-roku-children-data
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Signal in the noise: what hashtags reveal about hacktivism in 2025
https://securelist.com/dfi-meta-hacktivist-report/117708/
Automating the RMF: Lessons from the FedRAMP 20x Pilot
https://arxiv.org/abs/2510.09610
A Biosecurity Agent for Lifecycle LLM Biosecurity Alignment
https://arxiv.org/abs/2510.09613
Causal Digital Twins for Cyber-Physical Security: A Framework for Robust Anomaly Detection in Industrial Control Systems
https://arxiv.org/abs/2510.09615
Microsoft raises the bar: A smarter way to measure AI for cybersecurity
https://www.microsoft.com/en-us/security/blog/2025/10/14/microsoft-raises-the-bar-a-smarter-way-to-measure-ai-for-cybersecurity/
Qantas confirms cybercriminals released stolen customer data
https://therecord.media/qantas-cybercriminals-stolen-data
Taiwan reports surge in Chinese cyber activity and disinformation efforts
https://therecord.media/taiwan-nsb-report-china-surge-cyberattacks-influence-operations
Florida sues Roku for illegally selling children’s data, including precise geolocation
https://therecord.media/florida-roku-children-data
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Securelist
Hacktivism in 2025: what it looks like and how hashtags help analyze it
Kaspersky researchers identified over 2000 unique hashtags across 11,000 hacktivist posts on the surface web and the dark web to find out how hacktivist campaigns function and whom they target.
Top Security News for Today
Researchers report rare intrusion by suspected Chinese hackers into Russian tech firm
https://therecord.media/rare-china-linked-intrusion-russian-tech-firms
Mysterious Elephant: a growing threat
https://securelist.com/mysterious-elephant-apt-ttps-and-tools/117596/
Apple’s Bug Bounty Program
https://www.schneier.com/blog/archives/2025/10/apples-bug-bounty-program.html
Capita given record £14 million fine over ransomware attack security failings
https://therecord.media/capita-record-fine-uk-ico-ransomware-attack
New York secures $14 million in fines from 8 car insurance companies after data breaches
https://therecord.media/auto-insurance-companies-fined-ny-state-pre-fill-data-breaches
Maverick: a new banking Trojan abusing WhatsApp in a mass-scale distribution
https://securelist.com/maverick-banker-distributing-via-whatsapp/117715/
Exploit-as-a-Service Resurgence in 2025 – Broker Models, Bundles & Subnoscription Access
https://www.darknet.org.uk/2025/10/exploit-as-a-service-resurgence-in-2025-broker-models-bundles-subnoscription-access/
Mango says some customer information exposed in cyber incident
https://therecord.media/mango-fashion-retaier-data-breach
PowerSchool hacker sentenced to 4 years in prison
https://therecord.media/powerschool-hacker-sentenced-4-years
CISA warns of ‘significant’ threat to federal networks after nation-state hackers stole F5 source code, undisclosed bug info
https://therecord.media/cisa-directive-f5-nation-state-incident
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Researchers report rare intrusion by suspected Chinese hackers into Russian tech firm
https://therecord.media/rare-china-linked-intrusion-russian-tech-firms
Mysterious Elephant: a growing threat
https://securelist.com/mysterious-elephant-apt-ttps-and-tools/117596/
Apple’s Bug Bounty Program
https://www.schneier.com/blog/archives/2025/10/apples-bug-bounty-program.html
Capita given record £14 million fine over ransomware attack security failings
https://therecord.media/capita-record-fine-uk-ico-ransomware-attack
New York secures $14 million in fines from 8 car insurance companies after data breaches
https://therecord.media/auto-insurance-companies-fined-ny-state-pre-fill-data-breaches
Maverick: a new banking Trojan abusing WhatsApp in a mass-scale distribution
https://securelist.com/maverick-banker-distributing-via-whatsapp/117715/
Exploit-as-a-Service Resurgence in 2025 – Broker Models, Bundles & Subnoscription Access
https://www.darknet.org.uk/2025/10/exploit-as-a-service-resurgence-in-2025-broker-models-bundles-subnoscription-access/
Mango says some customer information exposed in cyber incident
https://therecord.media/mango-fashion-retaier-data-breach
PowerSchool hacker sentenced to 4 years in prison
https://therecord.media/powerschool-hacker-sentenced-4-years
CISA warns of ‘significant’ threat to federal networks after nation-state hackers stole F5 source code, undisclosed bug info
https://therecord.media/cisa-directive-f5-nation-state-incident
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Researchers report rare intrusion by suspected Chinese hackers into Russian tech firm
According to a new report by cybersecurity firm Symantec, the hackers gained access to the Russian company’s software build and code-repository systems between January and May 2025 — suggesting the breach may have been an attempted software supply-chain attack…
Top Security News for Today
yIKEs (WatchGuard Fireware OS IKEv2 Out-of-Bounds Write CVE-2025-9242) - watchTowr Labs
https://www.reddit.com/r/netsec/comments/1o826c9/yikes_watchguard_fireware_os_ikev2_outofbounds/
Denial of Fuzzing: Rust in the Windows kernel
https://research.checkpoint.com/2025/denial-of-fuzzing-rust-in-the-windows-kernel/
North Korean hackers seen using blockchain to hide crypto-stealing malware
https://therecord.media/north-korean-hackers-using-blockchain-hiding-malware
Cryptocurrency ATMs
https://www.schneier.com/blog/archives/2025/10/cryptocurrency-atms.html
Extortion and ransomware drive over half of cyberattacks
https://www.trendmicro.com/en_us/research/25/j/the-impact-of-water-kurita-lumma-stealer-doxxing.html
Microsoft warns of a 32% surge in identity hacks, mainly driven by stolen passwords
https://therecord.media/microsoft-warns-of-surge-identity-hacks-passwords
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
yIKEs (WatchGuard Fireware OS IKEv2 Out-of-Bounds Write CVE-2025-9242) - watchTowr Labs
https://www.reddit.com/r/netsec/comments/1o826c9/yikes_watchguard_fireware_os_ikev2_outofbounds/
Denial of Fuzzing: Rust in the Windows kernel
https://research.checkpoint.com/2025/denial-of-fuzzing-rust-in-the-windows-kernel/
North Korean hackers seen using blockchain to hide crypto-stealing malware
https://therecord.media/north-korean-hackers-using-blockchain-hiding-malware
Cryptocurrency ATMs
https://www.schneier.com/blog/archives/2025/10/cryptocurrency-atms.html
Extortion and ransomware drive over half of cyberattacks
https://www.trendmicro.com/en_us/research/25/j/the-impact-of-water-kurita-lumma-stealer-doxxing.html
Microsoft warns of a 32% surge in identity hacks, mainly driven by stolen passwords
https://therecord.media/microsoft-warns-of-surge-identity-hacks-passwords
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: yIKEs (WatchGuard Fireware OS IKEv2 Out-of-Bounds Write CVE-2025-9242) - watchTowr Labs
Explore this post and more from the netsec community
Top Security News for Today
HoneyBee – Misconfigured App Generator for Red Team Validation
https://www.darknet.org.uk/2025/10/honeybee-misconfigured-app-generator-for-red-team-validation/
Post-exploitation framework now also delivered via npm
https://securelist.com/adaptixc2-agent-found-in-an-npm-package/117784/
How I Reversed Amazon's Kindle Web Obfuscation Because Their App Sucked
https://www.reddit.com/r/netsec/comments/1o8uj8c/how_i_reversed_amazons_kindle_web_obfuscation/
A Surprising Amount of Satellite Traffic Is Unencrypted
https://www.schneier.com/blog/archives/2025/10/a-surprising-amount-of-satellite-traffic-is-unencrypted.html
Email Bombs Exploit Lax Authentication in Zendesk
https://krebsonsecurity.com/2025/10/email-bombs-exploit-lax-authentication-in-zendesk/
Small Actions, Big Breaches: The Silent Offensive Against Your Data
https://bishopfox.com/blog/small-actions-big-breaches-the-silent-offensive-against-your-data
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
HoneyBee – Misconfigured App Generator for Red Team Validation
https://www.darknet.org.uk/2025/10/honeybee-misconfigured-app-generator-for-red-team-validation/
Post-exploitation framework now also delivered via npm
https://securelist.com/adaptixc2-agent-found-in-an-npm-package/117784/
How I Reversed Amazon's Kindle Web Obfuscation Because Their App Sucked
https://www.reddit.com/r/netsec/comments/1o8uj8c/how_i_reversed_amazons_kindle_web_obfuscation/
A Surprising Amount of Satellite Traffic Is Unencrypted
https://www.schneier.com/blog/archives/2025/10/a-surprising-amount-of-satellite-traffic-is-unencrypted.html
Email Bombs Exploit Lax Authentication in Zendesk
https://krebsonsecurity.com/2025/10/email-bombs-exploit-lax-authentication-in-zendesk/
Small Actions, Big Breaches: The Silent Offensive Against Your Data
https://bishopfox.com/blog/small-actions-big-breaches-the-silent-offensive-against-your-data
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Darknet - Hacking Tools, Hacker News & Cyber Security
HoneyBee - Misconfigured App Generator for Red Team Validation
HoneyBee generates intentionally misconfigured Docker environments and Nuclei templates using LLMs so red teams can rehearse exploitation and validate detection.
Top Security News for Today
macOS Shortcuts for Initial Access
https://www.reddit.com/r/netsec/comments/1o9v6il/macos_shortcuts_for_initial_access/
Notice: Google Gemini AI's Undisclosed 911 Auto-Dial Bypass – Logs and Evidence Available
https://www.reddit.com/r/netsec/comments/1oa1dai/notice_google_gemini_ais_undisclosed_911_autodial/
CoreGuard: Safeguarding Foundational Capabilities of LLMs Against Model Stealing in Edge Deployment
https://arxiv.org/abs/2410.13903
Every Language Model Has a Forgery-Resistant Signature
https://arxiv.org/abs/2510.14086
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
macOS Shortcuts for Initial Access
https://www.reddit.com/r/netsec/comments/1o9v6il/macos_shortcuts_for_initial_access/
Notice: Google Gemini AI's Undisclosed 911 Auto-Dial Bypass – Logs and Evidence Available
https://www.reddit.com/r/netsec/comments/1oa1dai/notice_google_gemini_ais_undisclosed_911_autodial/
CoreGuard: Safeguarding Foundational Capabilities of LLMs Against Model Stealing in Edge Deployment
https://arxiv.org/abs/2410.13903
Every Language Model Has a Forgery-Resistant Signature
https://arxiv.org/abs/2510.14086
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: macOS Shortcuts for Initial Access
Explore this post and more from the netsec community
Top Security News for Today
CVE-2025-8941: Critical Privilege Escalation Vulnerability in Linux-PAM
https://reporter.deepspecter.com/CVE-2025-8941
DefenderWrite: Abusing Whitelisted Programs for Arbitrary Writes into Antivirus's Operating Folder
https://reporter.deepspecter.com/DefenderWrite
CVE-2025-8941: Critical Privilege Escalation Vulnerability in Linux-PAM
https://www.reddit.com/r/netsec/comments/1oanqes/cve20258941_critical_privilege_escalation/
DefenderWrite: Abusing Whitelisted Programs for Arbitrary Writes into Antivirus's Operating Folder
https://www.reddit.com/r/netsec/comments/1oaq5nx/defenderwrite_abusing_whitelisted_programs_for/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
CVE-2025-8941: Critical Privilege Escalation Vulnerability in Linux-PAM
https://reporter.deepspecter.com/CVE-2025-8941
DefenderWrite: Abusing Whitelisted Programs for Arbitrary Writes into Antivirus's Operating Folder
https://reporter.deepspecter.com/DefenderWrite
CVE-2025-8941: Critical Privilege Escalation Vulnerability in Linux-PAM
https://www.reddit.com/r/netsec/comments/1oanqes/cve20258941_critical_privilege_escalation/
DefenderWrite: Abusing Whitelisted Programs for Arbitrary Writes into Antivirus's Operating Folder
https://www.reddit.com/r/netsec/comments/1oaq5nx/defenderwrite_abusing_whitelisted_programs_for/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Top Security News for Today
How a fake AI recruiter delivers five staged malware disguised as a dream job
https://www.reddit.com/r/netsec/comments/1obgnxd/how_a_fake_ai_recruiter_delivers_five_staged/
XRayC2 – Weaponizing AWS X-Ray for Covert Command and Control (C2)
https://www.darknet.org.uk/2025/10/xrayc2-weaponizing-aws-x-ray-for-covert-command-and-control-c2/
Agentic AI’s OODA Loop Problem
https://www.schneier.com/blog/archives/2025/10/agentic-ais-ooda-loop-problem.html
Evilginx’s creator reckons with the dark side of red-team tools
https://therecord.media/evilginx-kuba-gretzky-interview-click-here-podcast
20th October – Threat Intelligence Report
https://research.checkpoint.com/2025/20th-october-threat-intelligence-report/
Home security firm Verisure reports data breach at Swedish subsidiary
https://therecord.media/verisure-data-breach-sweden-alert-alarm-subsidiary
China claims it caught US attempting cyberattack on national time center
https://therecord.media/china-attack-national-time-center
Inside the attack chain: Threat activity targeting Azure Blob Storage
https://www.microsoft.com/en-us/security/blog/2025/10/20/inside-the-attack-chain-threat-activity-targeting-azure-blob-storage/
Tunneling WireGuard over HTTPS using Wstunnel
https://www.reddit.com/r/netsec/comments/1obogco/tunneling_wireguard_over_https_using_wstunnel/
Better-Auth Critical Account Takeover via Unauthenticated API Key Creation (CVE-2025-61928)
https://www.reddit.com/r/netsec/comments/1obrlhi/betterauth_critical_account_takeover_via/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
How a fake AI recruiter delivers five staged malware disguised as a dream job
https://www.reddit.com/r/netsec/comments/1obgnxd/how_a_fake_ai_recruiter_delivers_five_staged/
XRayC2 – Weaponizing AWS X-Ray for Covert Command and Control (C2)
https://www.darknet.org.uk/2025/10/xrayc2-weaponizing-aws-x-ray-for-covert-command-and-control-c2/
Agentic AI’s OODA Loop Problem
https://www.schneier.com/blog/archives/2025/10/agentic-ais-ooda-loop-problem.html
Evilginx’s creator reckons with the dark side of red-team tools
https://therecord.media/evilginx-kuba-gretzky-interview-click-here-podcast
20th October – Threat Intelligence Report
https://research.checkpoint.com/2025/20th-october-threat-intelligence-report/
Home security firm Verisure reports data breach at Swedish subsidiary
https://therecord.media/verisure-data-breach-sweden-alert-alarm-subsidiary
China claims it caught US attempting cyberattack on national time center
https://therecord.media/china-attack-national-time-center
Inside the attack chain: Threat activity targeting Azure Blob Storage
https://www.microsoft.com/en-us/security/blog/2025/10/20/inside-the-attack-chain-threat-activity-targeting-azure-blob-storage/
Tunneling WireGuard over HTTPS using Wstunnel
https://www.reddit.com/r/netsec/comments/1obogco/tunneling_wireguard_over_https_using_wstunnel/
Better-Auth Critical Account Takeover via Unauthenticated API Key Creation (CVE-2025-61928)
https://www.reddit.com/r/netsec/comments/1obrlhi/betterauth_critical_account_takeover_via/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: How a fake AI recruiter delivers five staged malware disguised as a dream job
Explore this post and more from the netsec community
Top Security News for Today
The evolving landscape of email phishing attacks: how threat actors are reusing and refining established techniques
https://securelist.com/email-phishing-techniques-2025/117801/
Better-Auth Critical Account Takeover via Unauthenticated API Key Creation (CVE-2025-61928)
https://www.reddit.com/r/netsec/comments/1obrlhi/betterauth_critical_account_takeover_via/
CVE-2025-9133: ZYXEL Configuration Exposure via Authorization Bypass
https://www.reddit.com/r/netsec/comments/1oc4qwa/cve20259133_zyxel_configuration_exposure_via/
A Cybersecurity Merit Badge
https://www.schneier.com/blog/archives/2025/10/a-cybersecurity-merit-badge.html
Fast, Broad, and Elusive: How Vidar Stealer 2.0 Upgrades Infostealer Capabilities
https://www.trendmicro.com/en_us/research/25/j/how-vidar-stealer-2-upgrades-infostealer-capabilities.html
Microsoft 365 Copilot - Arbitrary Data Exfiltration Via Mermaid Diagrams
https://www.reddit.com/r/netsec/comments/1occb7r/microsoft_365_copilot_arbitrary_data_exfiltration/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
The evolving landscape of email phishing attacks: how threat actors are reusing and refining established techniques
https://securelist.com/email-phishing-techniques-2025/117801/
Better-Auth Critical Account Takeover via Unauthenticated API Key Creation (CVE-2025-61928)
https://www.reddit.com/r/netsec/comments/1obrlhi/betterauth_critical_account_takeover_via/
CVE-2025-9133: ZYXEL Configuration Exposure via Authorization Bypass
https://www.reddit.com/r/netsec/comments/1oc4qwa/cve20259133_zyxel_configuration_exposure_via/
A Cybersecurity Merit Badge
https://www.schneier.com/blog/archives/2025/10/a-cybersecurity-merit-badge.html
Fast, Broad, and Elusive: How Vidar Stealer 2.0 Upgrades Infostealer Capabilities
https://www.trendmicro.com/en_us/research/25/j/how-vidar-stealer-2-upgrades-infostealer-capabilities.html
Microsoft 365 Copilot - Arbitrary Data Exfiltration Via Mermaid Diagrams
https://www.reddit.com/r/netsec/comments/1occb7r/microsoft_365_copilot_arbitrary_data_exfiltration/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Securelist
Notable email phishing techniques in 2025
Common email phishing tactics in 2025 include PDF attachments with QR codes, password-protected PDF documents, calendar phishing, and advanced websites that validate email addresses.
Top Security News for Today
BetterBank DeFi Protocol: Esteem Token Bonus Minting
https://securelist.com/betterbank-defi-protocol-esteem-token-bonus-minting/117822/
Post-Quantum Cryptography in 2025 – Migration Paths, Early Movers and CISO/RedTeam Impact
https://www.darknet.org.uk/2025/10/post-quantum-cryptography-in-2025-migration-paths-early-movers-and-ciso-redteam-impact/
Failures in Face Recognition
https://www.schneier.com/blog/archives/2025/10/failures-in-face-recognition.html
PhantomCaptcha' hackers impersonate Ukrainian president’s office in attack on war relief workers
https://therecord.media/phantomcaptcha-spearphishing-campaign-ukraine-war-relief-groups
Jaguar Land Rover cyberattack cost $2.5 billion, says monitoring group
https://therecord.media/jaguar-land-rover-cyberattack-economic-impact
Ransomware gang steals meeting videos, financial secrets from fence wholesaler
https://therecord.media/ransomware-gang-steals-meeting-video-fence-manufacturer
Can Burp AI hack a website? CyberMaddy explores the new agentic capabilities in Burp AI
https://portswigger.net/blog/can-burp-ai-hack-a-website-cybermaddy-explores-the-new-agentic-capabilities-in-burp-ai
Canada Fines Cybercrime Friendly Cryptomus $176M
https://krebsonsecurity.com/2025/10/canada-fines-cybercrime-friendly-cryptomus-176m/
State attorneys general stepping up privacy enforcement, watchdog finds
https://therecord.media/state-ags-enforcement-privacy-law
The security paradox of local LLMs
https://www.reddit.com/r/netsec/comments/1od7azc/the_security_paradox_of_local_llms/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
BetterBank DeFi Protocol: Esteem Token Bonus Minting
https://securelist.com/betterbank-defi-protocol-esteem-token-bonus-minting/117822/
Post-Quantum Cryptography in 2025 – Migration Paths, Early Movers and CISO/RedTeam Impact
https://www.darknet.org.uk/2025/10/post-quantum-cryptography-in-2025-migration-paths-early-movers-and-ciso-redteam-impact/
Failures in Face Recognition
https://www.schneier.com/blog/archives/2025/10/failures-in-face-recognition.html
PhantomCaptcha' hackers impersonate Ukrainian president’s office in attack on war relief workers
https://therecord.media/phantomcaptcha-spearphishing-campaign-ukraine-war-relief-groups
Jaguar Land Rover cyberattack cost $2.5 billion, says monitoring group
https://therecord.media/jaguar-land-rover-cyberattack-economic-impact
Ransomware gang steals meeting videos, financial secrets from fence wholesaler
https://therecord.media/ransomware-gang-steals-meeting-video-fence-manufacturer
Can Burp AI hack a website? CyberMaddy explores the new agentic capabilities in Burp AI
https://portswigger.net/blog/can-burp-ai-hack-a-website-cybermaddy-explores-the-new-agentic-capabilities-in-burp-ai
Canada Fines Cybercrime Friendly Cryptomus $176M
https://krebsonsecurity.com/2025/10/canada-fines-cybercrime-friendly-cryptomus-176m/
State attorneys general stepping up privacy enforcement, watchdog finds
https://therecord.media/state-ags-enforcement-privacy-law
The security paradox of local LLMs
https://www.reddit.com/r/netsec/comments/1od7azc/the_security_paradox_of_local_llms/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Securelist
The BetterBank DeFi protocol exploited for reward minting
Kaspersky experts break down the recent BetterBank incident involving ESTEEM token bonus minting due to the lack of liquidity pool validation.
Top Security News for Today
Serious F5 Breach
https://www.schneier.com/blog/archives/2025/10/serious-f5-breach.html
Dissecting YouTube’s Malware Distribution Network
https://research.checkpoint.com/2025/youtube-ghost-network/
Phishing campaign across Mideast, North Africa is attributed to Iranian group
https://therecord.media/iran-muddywater-phishing-campaign-north-africa-middle-east
Former Polish official indicted over spyware purchase
https://therecord.media/former-polish-official-indicted-spyware-probe
Hackers posing as Kyrgyz officials target Russian agencies in cyber espionage campaign
https://therecord.media/hackers-pose-kyrgyz-officials-russia-cyber-espionage
Tinder to expand face verification tech to more states
https://therecord.media/tinder-face-check-tool-expanding-to-more-states
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Serious F5 Breach
https://www.schneier.com/blog/archives/2025/10/serious-f5-breach.html
Dissecting YouTube’s Malware Distribution Network
https://research.checkpoint.com/2025/youtube-ghost-network/
Phishing campaign across Mideast, North Africa is attributed to Iranian group
https://therecord.media/iran-muddywater-phishing-campaign-north-africa-middle-east
Former Polish official indicted over spyware purchase
https://therecord.media/former-polish-official-indicted-spyware-probe
Hackers posing as Kyrgyz officials target Russian agencies in cyber espionage campaign
https://therecord.media/hackers-pose-kyrgyz-officials-russia-cyber-espionage
Tinder to expand face verification tech to more states
https://therecord.media/tinder-face-check-tool-expanding-to-more-states
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Schneier on Security
Serious F5 Breach - Schneier on Security
This is bad: F5, a Seattle-based maker of networking software, disclosed the breach on Wednesday. F5 said a “sophisticated” threat group working for an undisclosed nation-state government had surreptitiously and persistently dwelled in its network over a…
Top Security News for Today
Cyberattack on Russia’s food safety agency reportedly disrupts product shipments
https://therecord.media/russia-food-safety-agency-rosselkhoznadzor-ddos-attack
TARMAGEDDON (CVE-2025-62518): RCE Vulnerability Highlights the challenges of open source abandonware
https://therecord.media/cybercrime-treaty-signing-hanoi
Counter Ransomware Initiative stresses importance of supply-chain security
https://therecord.media/counter-ransomware-initiative-software-supply-chain-guidance
Part Four of The Kryptos Sculpture
https://www.schneier.com/blog/archives/2025/10/part-four-of-the-kryptos-sculpture.html
A Quantum-Inspired Algorithm for Solving Sudoku Puzzles and the MaxCut Problem
https://arxiv.org/abs/2510.19835
Excitation of Looped Bistable Bands for High-Speed Linear Actuation
https://arxiv.org/abs/2510.19834
Benchmarking Reasoning Reliability in Artificial Intelligence Models for Energy-System Analysis
https://arxiv.org/abs/2510.19836
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Cyberattack on Russia’s food safety agency reportedly disrupts product shipments
https://therecord.media/russia-food-safety-agency-rosselkhoznadzor-ddos-attack
TARMAGEDDON (CVE-2025-62518): RCE Vulnerability Highlights the challenges of open source abandonware
https://therecord.media/cybercrime-treaty-signing-hanoi
Counter Ransomware Initiative stresses importance of supply-chain security
https://therecord.media/counter-ransomware-initiative-software-supply-chain-guidance
Part Four of The Kryptos Sculpture
https://www.schneier.com/blog/archives/2025/10/part-four-of-the-kryptos-sculpture.html
A Quantum-Inspired Algorithm for Solving Sudoku Puzzles and the MaxCut Problem
https://arxiv.org/abs/2510.19835
Excitation of Looped Bistable Bands for High-Speed Linear Actuation
https://arxiv.org/abs/2510.19834
Benchmarking Reasoning Reliability in Artificial Intelligence Models for Energy-System Analysis
https://arxiv.org/abs/2510.19836
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
therecord.media
Cyberattack on Russia’s food safety agency reportedly disrupts product shipments
A veterinary certification platform and systems that track products and chemicals were among the tools disrupted by a DDoS incident, Russia's food safety watchdog said.
Top Security News for Today
Account takeover exploit write-up for Magento SessionReaper
https://www.reddit.com/r/netsec/comments/1ofm6og/account_takeover_exploit_writeup_for_magento/
Pentesting Next.js Server Actions
https://www.reddit.com/r/netsec/comments/1of84hu/pentesting_nextjs_server_actions/
What Does Print Function ACTUALLY Do?
https://www.reddit.com/r/lowlevel/comments/1ofza5t/what_does_print_function_actually_do/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Account takeover exploit write-up for Magento SessionReaper
https://www.reddit.com/r/netsec/comments/1ofm6og/account_takeover_exploit_writeup_for_magento/
Pentesting Next.js Server Actions
https://www.reddit.com/r/netsec/comments/1of84hu/pentesting_nextjs_server_actions/
What Does Print Function ACTUALLY Do?
https://www.reddit.com/r/lowlevel/comments/1ofza5t/what_does_print_function_actually_do/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Account takeover exploit write-up for Magento SessionReaper
Posted by AdAccording4827 - 1 vote and 0 comments
Top Security News for Today
Hacking the World Poker Tour: Inside ClubWPT Gold’s Back Office
https://www.reddit.com/r/netsec/comments/1ogilto/hacking_the_world_poker_tour_inside_clubwpt_golds/
Using EDR-Redir To Break EDR Via Bind Link and Cloud Filter
https://www.reddit.com/r/netsec/comments/1oglfix/using_edrredir_to_break_edr_via_bind_link_and/
NetExec – Network Execution Toolkit for Windows and Active Directory
https://www.darknet.org.uk/2025/10/netexec-network-execution-toolkit-for-windows-and-active-directory/
New no nonsense platform for practice security learning
https://www.reddit.com/r/netsec/comments/1ogmqkl/new_no_nonsense_platform_for_practice_security/
YOLO detect security cameras
http://diablohorn.com/2025/10/26/yolo-detect-security-cameras/
Reaper – Unified Application Security Testing with AI Support
https://www.darknet.org.uk/2025/10/reaper-unified-application-security-testing-with-ai-support/
GlobalCVE — OpenSource Unified CVE Data from Around the World
https://www.reddit.com/r/netsec/comments/1oh4d5w/globalcve_opensource_unified_cve_data_from_around/
CoPHish: New OAuth phishing technique abuses Microsoft Copilot Studio chatbots to create convincing credential theft campaigns
https://www.reddit.com/r/netsec/comments/1oh8j4d/cophish_new_oauth_phishing_technique_abuses/
Vibecoding and the illusion of security
https://www.reddit.com/r/netsec/comments/1oh9mr4/vibecoding_and_the_illusion_of_security/
Jetty's addPath allows LFI in Windows - Traccar Unauthenticated LFI v5.8-v6.8.1
https://www.reddit.com/r/netsec/comments/1oh8zn4/jettys_addpath_allows_lfi_in_windows_traccar/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Hacking the World Poker Tour: Inside ClubWPT Gold’s Back Office
https://www.reddit.com/r/netsec/comments/1ogilto/hacking_the_world_poker_tour_inside_clubwpt_golds/
Using EDR-Redir To Break EDR Via Bind Link and Cloud Filter
https://www.reddit.com/r/netsec/comments/1oglfix/using_edrredir_to_break_edr_via_bind_link_and/
NetExec – Network Execution Toolkit for Windows and Active Directory
https://www.darknet.org.uk/2025/10/netexec-network-execution-toolkit-for-windows-and-active-directory/
New no nonsense platform for practice security learning
https://www.reddit.com/r/netsec/comments/1ogmqkl/new_no_nonsense_platform_for_practice_security/
YOLO detect security cameras
http://diablohorn.com/2025/10/26/yolo-detect-security-cameras/
Reaper – Unified Application Security Testing with AI Support
https://www.darknet.org.uk/2025/10/reaper-unified-application-security-testing-with-ai-support/
GlobalCVE — OpenSource Unified CVE Data from Around the World
https://www.reddit.com/r/netsec/comments/1oh4d5w/globalcve_opensource_unified_cve_data_from_around/
CoPHish: New OAuth phishing technique abuses Microsoft Copilot Studio chatbots to create convincing credential theft campaigns
https://www.reddit.com/r/netsec/comments/1oh8j4d/cophish_new_oauth_phishing_technique_abuses/
Vibecoding and the illusion of security
https://www.reddit.com/r/netsec/comments/1oh9mr4/vibecoding_and_the_illusion_of_security/
Jetty's addPath allows LFI in Windows - Traccar Unauthenticated LFI v5.8-v6.8.1
https://www.reddit.com/r/netsec/comments/1oh8zn4/jettys_addpath_allows_lfi_in_windows_traccar/
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Hacking the World Poker Tour: Inside ClubWPT Gold’s Back Office
Explore this post and more from the netsec community
Top Security News for Today
Active Water Saci Campaign Spreading Via WhatsApp Features Multi-Vector Persistence and Sophisticated C&C
https://www.trendmicro.com/en_us/research/25/j/active-water-saci-campaign-whatsapp-update.html
CISA releases warning about Windows Server Update Service bug, orders agencies to patch
https://therecord.media/wsus-vulnerability-cisa-late-friday-warning
Sweden’s power grid operator confirms data breach claimed by ransomware gang
https://therecord.media/sweden-power-grid-operator-data
CoPHish: New OAuth phishing technique abuses Microsoft Copilot Studio chatbots to create convincing credential theft campaigns
https://www.reddit.com/r/netsec/comments/1oh8j4d/cophish_new_oauth_phishing_technique_abuses/
Cities reverse course on automated license plate reader cameras amid privacy concerns
https://therecord.media/cities-reverse-course-on-automated-license-plate-reader-cameras
Louvre Jewel Heist
https://www.schneier.com/blog/archives/2025/10/louvre-jewel-heist.html
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Active Water Saci Campaign Spreading Via WhatsApp Features Multi-Vector Persistence and Sophisticated C&C
https://www.trendmicro.com/en_us/research/25/j/active-water-saci-campaign-whatsapp-update.html
CISA releases warning about Windows Server Update Service bug, orders agencies to patch
https://therecord.media/wsus-vulnerability-cisa-late-friday-warning
Sweden’s power grid operator confirms data breach claimed by ransomware gang
https://therecord.media/sweden-power-grid-operator-data
CoPHish: New OAuth phishing technique abuses Microsoft Copilot Studio chatbots to create convincing credential theft campaigns
https://www.reddit.com/r/netsec/comments/1oh8j4d/cophish_new_oauth_phishing_technique_abuses/
Cities reverse course on automated license plate reader cameras amid privacy concerns
https://therecord.media/cities-reverse-course-on-automated-license-plate-reader-cameras
Louvre Jewel Heist
https://www.schneier.com/blog/archives/2025/10/louvre-jewel-heist.html
Follow Top Cyber News at https://news.1rj.ru/str/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Trend Micro
Active Water Saci Campaign Spreading Via WhatsApp Features Multi-Vector Persistence and Sophisticated C&C
Continuous investigation on the Water Saci campaign reveals innovative email-based C&C system, multi-vector persistence, and real-time command capabilities that allow attackers to orchestrate coordinated botnet operations, gather detailed campaign intelligence…