ICYMI: 2025-10-07
Latest Headlines
BatShadow Group Uses New Go-Based ‘Vampire Bot’ Malware to Hunt Job Seekers
Google’s New AI Doesn’t Just Find Vulnerabilities — It Rewrites Code to Patch Them
New Research: AI Is Already the #1 Data Exfiltration Channel in the Enterprise
XWorm 6.0 Returns with 35+ Plugins and Enhanced Data Theft Capabilities
13-Year-Old Redis Flaw Exposed: CVSS 10.0 Vulnerability Lets Attackers Run Code Remotely
Microsoft Links Storm-1175 to GoAnywhere Exploit Deploying Medusa Ransomware
Oracle EBS Under Fire as Cl0p Exploits CVE-2025-61882 in Real-World Attacks
Hackers Stole Data From Public Safety Comms Firm BK Technologies
Cybersecurity M&A Roundup: 40 Deals Announced in September 2025
Security Firm Exposes Role of Beijing Research Institute in China’s Cyber Operations
Fortra GoAnywhere MFT Zero-Day Exploited in Ransomware Attacks
The Y2K38 Bug Is a Vulnerability, Not Just a Date Problem, Researchers Warn
Critical Vulnerability Puts 60,000 Redis Servers at Risk of Exploitation
Microsoft Warns of Hackers Abuse Teams Features and Capabilities to Deliver Malware
BK Technologies Data Breach – Hackers Compromise IT Systems and Exfiltrate Data
Ransomware Gangs Leverage Remote Access Tools to Gain Persistence and Evade Defenses
New Mic-E-Mouse Attack Let Hackers Exfiltrate Sensitive Data by Exploiting Mouse Sensors
Researchers Reversed Asgard Malware Protector to Uncover it’s Antivirus Bypass Techniques
CrowdStrike Warns of New Mass Exploitation Campaign Leveraging Oracle E-Business Suite 0-Day
Threat Actors Behind WARMCOOKIE Malware Added New Features to It’s Arsenal
Cisco ASA/FTD 0-Day Vulnerability Exploited for Authentication Bypass – PoC Released
Docker makes Hardened Images Catalog affordable for small businesses
DraftKings warns of account breaches in credential stuffing attacks
Clop exploited Oracle zero-day for data theft since early August
North Korean hackers stole over $2 billion in crypto this year
Electronics giant Avnet confirms breach, says stolen data unreadable
Microsoft kills more Microsoft Account bypasses in Windows 11
Redefining Security Validation with AI-Powered Breach and Attack Simulation
Google’s new AI bug bounty program pays up to $30,000 for flaws
– MTZ