ICYMI: 2025-09-25
Latest Headlines
Urgent: Cisco ASA Zero-Day Duo Under Attack; CISA Triggers Emergency Mitigation Directive
Threatsday Bulletin: Rootkit Patch, Federal Breach, OnePlus SMS Leak, TikTok Scandal & More
Vane Viper Generates 1 Trillion DNS Queries to Power Global Malware and Ad Fraud Network
Salesforce Patches Critical ForcedLeak Bug Exposing CRM Data via AI Prompt Injection
North Korean Hackers Use New AkdoorTea Backdoor to Target Global Crypto Developers
Tech Overtakes Gaming as Top DDoS Attack Target, New Gcore Radar Report Finds
Malicious Rust Crates Steal Solana and Ethereum Keys — 8,424 Downloads Confirmed
Cisco Warns of Actively Exploited SNMP Vulnerability Allowing RCE or DoS in IOS Software
Perspective: Why Politics in the Workplace is a Cybersecurity Risk
Chinese Hackers Lurked Nearly 400 Days in Networks With Stealthy BrickStorm Malware
CSA Unveils SaaS Security Controls Framework to Ease Complexity
Living Security Unveils HRMCon 2025 Speakers as Report Finds Firms Detect Just 19% of Human Risk
Salesforce AI Agent Vulnerability Allows Let Attackers Exfiltration Sensitive Data
Hackers Leverage GitHub Notifications to Mimic as Y Combinator to Steal Funds from Wallets
New LNK Malware Uses Windows Binaries to Bypass Security Tools and Execute Malware
New LockBit 5.0 Ransomware Variant Attacking Windows, Linux, and ESXi Systems
ZendTo Vulnerability Let Attackers Bypass Security Controls and Access Sensitive Data
SetupHijack Tool Exploits Race Conditions and Insecure File Handling in Windows Installer Processes
New BRICKSTORM Stealthy Backdoor Attacking Tech and Legal Sectors
COLDRIVER APT Group Uses ClickFix To Deliver a New PowerShell-Based Backdoor BAITSWITCH
Cisco IOS and XE Vulnerability Let Remote Attacker Bypass Authentication and Access Sensitive Data
Microsoft warns of new XCSSET macOS malware variant targeting Xcode devs
Co-op says it lost $107 million after Scattered Spider attack
CISA orders agencies to patch Cisco flaws exploited in zero-day attacks
Amazon pays $2.5 billion to settle Prime memberships lawsuit
Malicious Rust packages on Crates.io steal crypto wallet keys
How secure are passkeys, really? Here’s what you need to know
Teen suspected of Vegas casino cyberattacks released to parents
Microsoft will offer free Windows 10 extended security updates in Europe
– MTZ