ICYMI: 2025-10-10
Latest Headlines
Stealit Malware Abuses Node.js Single Executable Feature via Game and VPN Installers
Microsoft Warns of ‘Payroll Pirates’ Hijacking HR SaaS Accounts to Steal Employee Salaries
From Detection to Patch: Fortra Reveals Full Timeline of CVE-2025-10035 Exploitation
The AI SOC Stack of 2026: What Sets Top-Tier Platforms Apart?
175 Malicious npm Packages with 26,000 Downloads Used in Credential Phishing Campaign
From LFI to RCE: Active Exploitation Detected in Gladinet and TrioFox Vulnerability
CL0P-Linked Hackers Breach Dozens of Organizations Through Oracle Software Flaw
Apple Announces $2 Million Bug Bounty Reward for the Most Dangerous Exploits
In Other News: Gladinet Flaw Exploitation, Attacks on ICS Honeypot, ClayRat Spyware
Cisco, Fortinet, Palo Alto Networks Devices Targeted in Coordinated Campaign
Juniper Networks Patches Critical Junos Space Vulnerabilities
ZDI Drops 13 Unpatched Ivanti Endpoint Manager Vulnerabilities
Apple Bug Bounty Update: Top Payout $2 Million, $35 Million Paid to Date
Sophisticated Malware Deployed in Oracle EBS Zero-Day Attacks
New Chaosbot Leveraging CiscoVPN and Active Directory Passwords to Execute Network Commands
Threat Actors Exploiting SonicWall SSL VPN Devices in Wild to Deploy Akira Ransomware
RondoDox Botnet Exploits 50+ Vulnerabilities to Attack Routers, CCTV Systems and Web Servers
Microsoft Defender Incorrectly Flags SQL Server Software as End-of-life
Critical GitHub Copilot Vulnerability Let Attackers Exfiltrate Source Code From Private Repos
New Android Malware ClayRat Mimic as WhatsApp, Google Photos to Attack Users
LLM-enabled MalTerminal Malware Leverages GPT-4 to Generate Ransomware Code
SnakeKeylogger via Weaponized E-mails Leverage PowerShell to Exfiltrate Sensitive Data
Windows 11 23H2 Home and Pro reach end of support in 30 days
Hackers exploiting zero-day in Gladinet file sharing software
Cybersecurity For Dummies, 3rd Edition eBook FREE for a Limited Time
Google Chrome to revoke notification access for inactive sites
Apple now offers $2 million for zero-click RCE vulnerabilities
Copilot on Windows can now connect to email, create Office docs
From Lab to Leadership: How VMware Certification Transformed My Career
FBI takes down BreachForums portal used for Salesforce extortion
– MTZ