External News

Krebs On Security

• Aisuru Botnet Shifts from DDoS to Residential Proxies
  October 29, 2025
  Aisuru, the botnet responsible for a series of record-smashing distributed denial-of-service (DDoS) attacks this year, recently was overhauled to support a more low-key, lucrative and […]
• Canada Fines Cybercrime Friendly Cryptomus $176M
  October 22, 2025
  Financial regulators in Canada this week levied $176 million in fines against Cryptomus, a digital payments platform that supports dozens of Russian cryptocurrency exchanges and […]
• Email Bombs Exploit Lax Authentication in Zendesk
  October 17, 2025
  Cybercriminals are abusing a widespread lack of authentication in the customer service platform Zendesk to flood targeted email inboxes with menacing messages that come from […]
• Patch Tuesday, October 2025 ‘End of 10’ Edition
  October 14, 2025
  Microsoft today released software updates to plug a whopping 172 security holes in its Windows operating systems, including at least three vulnerabilities that are already […]
• DDoS Botnet Aisuru Blankets US ISPs in Record DDoS
  October 10, 2025
  The world's largest and most disruptive botnet is now drawing a majority of its firepower from compromised Internet-of-Things (IoT) devices hosted on U.S. Internet providers […]
• ShinyHunters Wage Broad Corporate Extortion Spree
  October 7, 2025
  A cybercriminal group that used voice phishing attacks to siphon more than a billion records from Salesforce customers earlier this year has launched a website […]

Secure World

• Shifting Healthcare Security from Assets to Systemic Function
  October 30, 2025
  The cybersecurity mandate in the Healthcare and Public Health (HPH) sector has fundamentally changed. It's no longer enough to secure […]
• Beyond FUD: The Economist's Guide to Defending Your Cybersecurity Budget
  October 29, 2025
  Cybersecurity leaders enter 2025 navigating a different kind of threat landscape, one defined as much by economic pressure as by […]
• IBM Breakthroughs: Quantum Error Correction and Digital Asset Security
  October 28, 2025
  IBM delivered a one-two punch of major announcements today, reinforcing its position at the intersection of future computing and modern […]
• Jaguar Land Rover Cyber Attack Most Expensive in UK History
  October 28, 2025
  The cyberattack that hit Jaguar Land Rover (JLR) in the late summer of 2025 serves as a chilling case study […]
• 2025 Risk Reality Check: Cybersecurity at a Crossroads
  October 27, 2025
  The newly-released Riskonnect 2025 New Generation of Risk Report paints a clear picture of progress and peril in enterprise risk […]
• In IoT Security, AI Can Make or Break
  October 24, 2025
  Connected devices are now the fabric of modern operations, from smart buildings and retail endpoints to hospital equipment and factory […]

Dark Reading

• Critical Claroty Authentication Bypass Flaw Opened OT to Attack
  October 30, 2025
  CVE-2025-54603 gave attackers an opening to disrupt critical operational technology (OT) environments and critical infrastructure, plus steal data from them.
• LotL Attack Hides Malware in Windows Native AI Stack
  October 30, 2025
  Security programs trust AI data files, but they shouldn't: they can conceal malware more stealthily than most file types.
• Data Leak Outs Hacker Students of Iran's MOIS Training Academy
  October 30, 2025
  Ravin Academy, a school for the Iranian state hackers of tomorrow, has itself, ironically, been hacked.
• Malicious NPM Packages Disguised With 'Invisible' Dependencies
  October 29, 2025
  In the "PhantomRaven" campaign, threat actors published 126 malicious npm packages that have flown under the radar, while collecting 86,000 […]
• AI Search Tools Easily Fooled by Fake Content
  October 29, 2025
  New research shows AI crawlers like Perplexity, Atlas, and ChatGPT are surprisingly easy to fool.
• Dentsu Subsidiary Breached, Employee Data Stolen
  October 29, 2025
  A subsidiary of Japanese marketing and PR giant Dentsu lost sensitive data to unidentified threat actors, the parent company said.