Microsoft to force install Microsoft 365 companion apps in October
https://www.bleepingcomputer.com/news/microsoft/microsoft-to-force-install-microsoft-365-companion-apps-in-october/
protections-artifacts/behavior/rules/windows/lateral_movement_potential_remote_execution_via_imsiserver.toml at 7c3ccfaa21b88ae633c47210f0cd60ec09bffab5 · elastic/protections-artifacts · GitHub
https://github.com/elastic/protections-artifacts/blob/7c3ccfaa21b88ae633c47210f0cd60ec09bffab5/behavior/rules/windows/lateral_movement_potential_remote_execution_via_imsiserver.toml#L8
UK makes new attempt to access Apple cloud data
https://www.ft.com/content/d101fd62-14f9-4f51-beff-ea41e8794265?accessToken=zwAGQBl4pP6YkdPRAf1iFPlPUdO-_-pB6HlCZQ.MEYCIQDqJlwcbpQ4rrKlgeSJtbcTgqpW4uTX3yGMCHf2gdS0fQIhAMtU15LHqeHwAXTZ3wWJLDzI72kjsauSKc8OEDpim1Gx&sharetype=gift&token=3767767d-fe68-4911-a97e-c067715e061e
F-Droid project threatened by Google's new dev registration rules
https://www.bleepingcomputer.com/news/security/f-droid-project-threatened-by-googles-new-dev-registration-rules/
Ukraine Warns of CABINETRAT Backdoor + XLL Add-ins Spread via Signal ZIPs
https://thehackernews.com/2025/10/ukraine-warns-of-cabinetrat-backdoor.html
NIST Publishes Guide for Protecting ICS Against USB-Borne Threats - SecurityWeek
https://www.securityweek.com/nist-publishes-guide-for-protecting-ics-against-usb-borne-threats/
Red Hat OpenShift AI Flaw Exposes Hybrid Cloud Infrastructure to Full Takeover
https://thehackernews.com/2025/10/critical-red-hat-openshift-ai-flaw.html
GhostSocks: From Initial Access to Residential Proxy | Synthient
https://synthient.com/blog/ghostsocks-from-initial-access-to-residential-proxy
Allianz Life says July data breach impacts 1.5 million people
https://www.bleepingcomputer.com/news/security/allianz-life-says-july-data-breach-impacts-15-million-people/
New WireTap Attack Extracts Intel SGX ECDSA Key via DDR4 Memory-Bus Interposer
https://thehackernews.com/2025/10/new-wiretap-attack-extracts-intel-sgx.html
OneLogin Bug Let Attackers Use API Keys to Steal OIDC Secrets and Impersonate Apps
https://thehackernews.com/2025/10/onelogin-bug-let-attackers-use-api-keys.html
Apple Updates iOS and macOS to Prevent Malicious Font Attacks - SecurityWeek
https://www.securityweek.com/apple-updates-ios-and-macos-to-prevent-malicious-font-attacks/
Detour Dog: DNS Malware Powers Strela Stealer Campaigns
https://blogs.infoblox.com/threat-intelligence/detour-dog-dns-malware-powers-strela-stealer-campaigns/
Introduction to Windows shellcode development – Part 2 – Security Café
https://securitycafe.ro/2015/12/14/introduction-to-windows-shellcode-development-part-2
Introduction to Windows shellcode development – Part 1 – Security Café
https://securitycafe.ro/2015/10/30/introduction-to-windows-shellcode-development-part1