IT Security News Daily Summary 2025-10-28

168 posts were published in the last hour

• 22:34 : MY TAKE: Have you noticed how your phone’s AI assistant is starting to remap what you trust?
• 21:34 : Microsoft WSUS Remote Code Execution (CVE-2025-59287) Actively Exploited in the Wild (Updated October 28)
• 21:34 : Aisuru botnet is behind record 20Tb/sec DDoS attacks
• 21:34 : Threat Actors Merging FileFix and Cache Smuggling Attacks to Evade Security Controls
• 21:4 : Introducing Red Hat’s STIG-hardened UBI for NVIDIA GPUs on Red Hat OpenShift
• 20:5 : IT Security News Hourly Summary 2025-10-28 21h : 4 posts
• 20:4 : HTTPS by default
• 20:4 : Check Point Allies with NVIDIA to Secure AI Platforms
• 20:4 : New TEE.Fail Side-Channel Attack Extracts Secrets from Intel and AMD DDR5 Secure Enclaves
• 19:34 : Building Secure Software: Integrating Risk, Compliance, and Trust
• 19:4 : Check Point AI Cloud Protect, Powered by NVIDIA BlueField, Now Available for Enterprise Deployment
• 19:4 : CyDeploy wants to create a replica of a company’s system to help it test updates before pushing them out — catch it at Disrupt 2025
• 18:34 : AI Misfire: Teen Handcuffed After AI Mistakes Doritos for Gun
• 18:34 : LayerX Exposes Critical Flaw in OpenAI’s ChatGPT Atlas Browser
• 18:34 : Securing the Mission: Why Container Deployment Scanning Is Essential for the DoD
• 18:34 : Agentic Commerce Is Here. Is Your Business Ready to Accept AI-Driven Transactions?
• 18:34 : Prosper Data Breach Exposes 17.6 Million Users’ Personal Information — Company Offers Free Credit Monitoring
• 18:34 : The Fragile Internet: How Small Failures Trigger Global Outages
• 18:4 : US Teen Indicted in 764 Network Case Involving Exploitation Crimes
• 18:4 : Secure the AI Factory with Palo Alto Networks & NVIDIA
• 18:4 : BlueNoroff Hackers Adopts New Infiltration Strategies To Attack C-Level Executives, and Managers
• 18:4 : Stragglers From Myanmar Scam Center Raided by Army Cross Into Thailand as Buildings are Blown Up
• 18:4 : NDSS 2025 – CHAOS: Exploiting Station Time Synchronization in 802.11 Networks
• 18:4 : New Android Trojan ‘Herodotus’ Outsmarts Anti-Fraud Systems by Typing Like a Human
• 17:34 : PoC code drops for remotely exploitable BIND 9 DNS flaw (CVE-2025-40778)
• 17:5 : Keys to the Kingdom: A Defender’s Guide to Privileged Account Monitoring
• 17:5 : How Threat Intelligence Feeds Help Organizations Quickly Mitigate Malware Attacks
• 17:5 : IT Security News Hourly Summary 2025-10-28 18h : 11 posts
• 17:5 : XWiki RCE Vulnerability Actively Exploted In Wild To Deliver Coinminer
• 17:4 : Mozilla Wants All New Firefox Extensions to Disclose Data Collection Policies
• 17:4 : Smart Devices Redefining Productivity in the Home Workspace
• 17:4 : GlassWorm Malware Exploits Invisible Unicode to Infect VS Code Extensions
• 17:4 : Microsoft’s Copilot Actions in Windows 11 Sparks Privacy and Security Concerns
• 17:4 : Investment Scams Spread Across Asia With International Reach
• 16:34 : Schneider Electric EcoStruxure
• 16:34 : CISA Releases Three Industrial Control Systems Advisories
• 16:34 : Vertikal Systems Hospital Manager Backend Services
• 16:34 : KnowBe4 Honours 2025 EMEA Partner Programme Award Winners
• 16:34 : Researchers Expose GhostCall and GhostHire: BlueNoroff’s New Malware Chains
• 16:4 : 100,000 WordPress Sites Affected by Arbitrary File Read Vulnerability in Anti-Malware Security and Brute-Force Firewall WordPress Plugin
• 16:4 : Chrome Zero-Day Actively Exploited in Attacks by Mem3nt0 mori
• 16:4 : Google probes exploitation of critical Windows service CVE
• 15:35 : CBP Searched a Record Number of Phones at the US Border Over the Past Year
• 15:35 : Everest group claimed the hack of Sweden’s power grid operator Svenska kraftnät
• 15:35 : Nation-State Cyber Ecosystems Weakened by Sanctions, Report Reveals
• 15:34 : F5 expects nation-state hack to curb revenues
• 15:5 : Gmail-Linked Credentials Exposed in Massive Breach
• 15:5 : Ubuntu’s Kernel Vulnerability Let Attackers Escalate Privileges and Gain Root Access
• 15:5 : Water Saci Hackers Leverage WhatsApp to Deliver Multi-Vector Persistent SORVEPOTEL Malware
• 15:5 : Around 70 countries sign new UN Cybercrime Convention—but not everyone’s on board
• 15:5 : QNAP NetBak PC Agent Affected by Recent ASP.NET Core Vulnerability
• 15:5 : Critical Microsoft WSUS Security Flaw is Being Actively Exploited
• 15:5 : Cobalt transforms ad-hoc security testing into a continuous, managed program
• 15:5 : Censys delivers internet intelligence to accelerate SOC triage and response
• 14:34 : RedTiger Malware Steals Data, Discord Tokens and Even Webcam Images
• 14:34 : The Shadow War: Predatory Sparrow vs. Iran’s Infrastructure
• 14:34 : Agent Fatigue Is Real and Your Security Stack Is to Blame
• 14:34 : Clearview AI faces criminal heat for ignoring EU data fines
• 14:34 : SimSpace Raises $39 Million for Cyber Range Platform
• 14:34 : Palo Alto Networks Extends Scope and Reach of AI Capabilities
• 14:34 : Nozomi Networks enhances OT security with latest Arc release
• 14:5 : Brida Introduces New Release Offering Complete Support for Latest Frida Integration
• 14:5 : IT Security News Hourly Summary 2025-10-28 15h : 18 posts
• 14:5 : The Agentic AI Platform for the Agentic Workforce of the Future
• 14:5 : Prisma AIRS 2.0 Is Powering the Next Wave of Secure AI Innovation
• 14:4 : AI-Driven, Quantum-Ready Network Security
• 14:4 : TurboMirai-Class ‘Aisuru’ Botnet Blamed for 20+ Tbps DDoS Attacks
• 14:4 : A Major Leap Forward: FireTail Unveils New UI and Expansive AI Model Support to Secure & Enable Enterprise AI Adoption – FireTail Blog
• 14:4 : Italian-made spyware Dante linked to Chrome zero-day exploitation campaign
• 13:34 : New Phishing Attack Using Invisible Characters Hidden in Subject Line Using MIME Encoding
• 13:34 : Herodotus: New Android Malware Mimics Human Behavior to Bypass Biometric Security
• 13:34 : 183M Gmail-Linked Credentials Exposed in Massive Breach
• 13:34 : Critical ASP.NET flaw hits QNAP NetBak PC Agent
• 13:34 : New Gamaredon Phishing Attack Targeting Govt Entities Exploiting WinRAR Vulnerability
• 13:34 : Critical .NET Vulnerability Lets Attacker Bypass Security in QNAP Backup Software
• 13:34 : X to Phase Out Twitter Domain – Users Advised to Re-enroll in 2FA Keys
• 13:34 : Open-Source Firewall IPFire 2.29 With New Reporting For Intrusion Prevention System
• 13:34 : Sublime Security Raises $150 Million for Email Security Platform
• 13:5 : Microsoft October Patch Tuesday Is Huge With 170+ Fixes
• 13:5 : MuddyWater’s Phoenix Backdoor Infects More Than 100 Government Organizations
• 13:5 : AI browsers face a security flaw as inevitable as death and taxes
• 13:5 : IRISSCON 2025 to address the human impact on cybersecurity
• 13:5 : Why Early Threat Detection Is a Must for Long-Term Business Growth
• 13:4 : A Quarter of Scam Victims Have Considered Self-Harm
• 13:4 : Vibra Hospital Data Breach Probe
• 13:4 : Google Contractor Steals Play Files
• 13:4 : Chrome Zero Day Delivers LeetAgent
• 13:4 : ChatGPT Atlas Browser Fooled By Fake Url
• 13:4 : Fake LastPass Death Claims Breach Vaults
• 12:34 : IPFire 2.29 Released with Enhanced Intrusion Prevention System Reporting
• 12:34 : UN’s First Global Cybercrime Treaty Sparks Debate Over Privacy and Surveillance
• 12:34 : Industrial Giants Schneider Electric and Emerson Named as Victims of Oracle Hack
• 12:34 : New Corero SmartWall ONE capability blocks encrypted DDoS threats without latency
• 12:34 : Sublime Security secures $150 million to accelerate AI-driven, automated email protection
• 12:5 : Active Directory at Risk Due to Domain-Join Account Misconfigurations
• 12:5 : Anivia Stealer Peddled on Dark Web with UAC Bypass
• 12:5 : NSFW ChatGPT? OpenAI plans “grown-up mode” for verified adults
• 12:5 : Beatings, killings, and lasting fear: The human toll of MoD’s Afghan data breach
• 11:34 : How to keep your data safe when transferring large files
• 11:34 : FileFix + Cache Smuggling: A New Evasion Combo
• 11:34 : CISA Warns Of Critical Veeder-Root Vulnerabilities Let Attackers Execute System-level Commands
• 11:34 : First Zero Click Attack Exploits MCP and Connected Popular AI Agents To Exfiltrate Data Silently
• 11:34 : Google Denies Claims of Gmail Security Breach Impacting Millions
• 11:34 : Swedish Power Grid Operator Confirms Data Breach Following Everest Ransomware Gang Claim
• 11:34 : Beware of Free Video Game Cheats That Delivers Infostealer Malwares
• 11:34 : Cybercriminals Trade 183 Million Stolen Credentials on Telegram, Dark Forums
• 11:5 : IT Security News Hourly Summary 2025-10-28 12h : 9 posts
• 11:5 : Zero-Click Exploit Targets MCP and Linked AI Agents to Stealthily Steal Data
• 11:4 : Google says reports of a Gmail breach have been greatly exaggerated
• 11:4 : Is Your Google Workspace as Secure as You Think it is?
• 10:34 : Qualcomm Shares Soar On AI Chip Plans
• 10:34 : Mass Attack Targets WordPress via GutenKit and Hunk Companion Plugins
• 10:34 : Ransomware payments hit record low: only 23% Pay in Q3 2025
• 10:34 : Chatbots parrot Putin’s propaganda about the illegal invasion of Ukraine
• 10:5 : A phishing with invisible characters in the subject line, (Tue, Oct 28th)
• 10:5 : US Judge Decertifies Apple Class-Action Lawsuit
• 10:4 : Hackers Target Swedish Power Grid Operator
• 10:4 : Actively Exploited WSUS Bug Added to CISA KEV List
• 9:34 : Amazon To Cut Up To 30,000 Corporate Jobs
• 9:34 : BlueNoroff Shifts Tactics: Targets C-Suite and Managers with New Infiltration Methods
• 9:34 : New GhostGrab Android Malware Silently Steals Banking Login Details and Intercept SMS for OTPs
• 9:34 : Chrome Zero-Day Exploited to Deliver Italian Memento Labs’ LeetAgent Spyware
• 9:5 : Myanmar Military Raids Notorious Scam Centre
• 9:5 : Critical QNAP .NET Flaw Lets Attackers Bypass Security Protections
• 9:5 : This Is the Nuclear-Powered Ship Deployed in Trump’s War on Drug Boats
• 9:5 : Marks & Spencer swaps out TCS for fresh helpdesk deal
• 9:4 : Incode Agentic Identity links AI agents to verified humans
• 9:4 : Mastercard unveils Threat Intelligence to fight cyber-enabled payment fraud
• 8:34 : US Works With AMD On Two Supercomputers
• 8:34 : Water Saci Hackers Use WhatsApp to Deploy Persistent SORVEPOTEL Malware
• 8:34 : Sweden’s Power Grid Operator Admits Data Breach Linked to Everest Ransomware Gang
• 8:34 : Elastic Streams uses agentic AI to simplify log parsing and accelerate issue resolution for SREstic
• 8:34 : AI Service Assist expands TeamDynamix ITSM platform with integrated intelligence
• 8:5 : IT Security News Hourly Summary 2025-10-28 09h : 6 posts
• 8:4 : Chinese EV Maker Seres Set For Hong Kong IPO
• 7:34 : X warns users to re-enroll passkeys and YubiKeys for 2FA by Nov 10
• 7:34 : OpenVPN Vulnerability Exposes Linux, macOS Systems to Script Injection Attacks
• 7:34 : Managing legacy medical devices that can no longer be patched
• 7:34 : FS launches PicOS AI Switch System to power large-scale AI and HPC workloads
• 7:34 : Atlas browser hijacked, Bye, bye Twitter birdie, Dante spyware surfaces
• 7:4 : CISA Alerts on Critical Veeder-Root Flaws Allowing Attackers to Execute System Commands
• 7:4 : Chain of security weaknesses found in smart air compressor model
• 6:35 : Gamaredon Phishing Campaign Exploits WinRAR Vulnerability to Target Government Agencies
• 6:35 : Surprised, Not Surprised, Ransomware Attacks Have Ticked Up
• 6:4 : Building Tomorrow’s Security Team: The Skills Crisis No One Talks About
• 6:4 : Review: The Wireless Cookbook
• 5:34 : OpenAI Atlas Browser Vulnerability Lets Attackers Execute Malicious Scripts in ChatGPT
• 5:34 : Beware of Free Video Game Cheats that Deliver Infostealer Malwares
• 5:34 : Apache Tomcat Flaws Allow Remote Code Execution on Vulnerable Servers
• 5:34 : Is it Time to Put Your SIEM on a Diet?
• 5:34 : When Chatbots Go Rogue: Securing Conversational AI in Cyber Defense
• 5:34 : Cybersecurity jobs available right now: October 28, 2025
• 5:34 : How to stop third-party risk from becoming your biggest headache
• 5:5 : Active Water Saci Campaign Spreading Via WhatsApp Features Multi-Vector Persistence and Sophisticated C&C
• 5:5 : Google Denies Major Gmail Password Leak, Calls Reports “False”
• 5:5 : IT Security News Hourly Summary 2025-10-28 06h : 1 posts
• 4:34 : SideWinder Adopts New ClickOnce-Based Attack Chain Targeting South Asian Diplomats
• 4:4 : Apache Tomcat Security Vulnerabilities Expose Servers to Remote Code Execution Attacks
• 3:4 : Crypto wasted: BlueNoroff’s ghost mirage of funding and jobs
• 2:36 : ISC Stormcast For Tuesday, October 28th, 2025 https://isc.sans.edu/podcastdetail/9674, (Tue, Oct 28th)
• 0:34 : Department of Know: Promoting passphrases, questioning international security conferences, gift card hackers
• 0:4 : WSUS attacks hit ‘multiple’ orgs as Google and other infosec sleuths ring Redmond’s alarm bell
• 23:34 : Reaper – Unified Application Security Testing with AI Support
• 23:34 : Innovative Strategies for NHI Security
• 23:34 : Secrets Security That Delivers Business Value
• 23:34 : Assured Compliance Through Effective IAM
• 23:5 : IT Security News Hourly Summary 2025-10-28 00h : 3 posts
• 22:55 : IT Security News Daily Summary 2025-10-27