RomHack 2025 - James “albinowax” Kettle - HTTP/1.1 Must Die! The Desync Endgame - YouTube
https://www.youtube.com/watch?v=zr5y6Bapbnw
Salesforce refuses to pay ransom over widespread data theft attacks
https://www.bleepingcomputer.com/news/security/salesforce-refuses-to-pay-ransom-over-widespread-data-theft-attacks/
An Insider Look At The IRGC-linked APT35 Operations | CloudSEK
https://www.cloudsek.com/blog/an-insider-look-at-the-irgc-linked-apt35-operations
Wiz Finds Critical Redis RCE Vulnerability: CVE‑2025‑49844 | Wiz Blog
https://www.wiz.io/blog/wiz-research-redis-rce-cve-2025-49844
Hackers exploit auth bypass in Service Finder WordPress theme
https://www.bleepingcomputer.com/news/security/hackers-exploit-auth-bypass-in-service-finder-wordpress-theme/
ShinyHunters Wage Broad Corporate Extortion Spree – Krebs on Security
https://krebsonsecurity.com/2025/10/shinyhunters-wage-broad-corporate-extortion-spree/
2025年に確認されたBlackTechのマルウェアKivarsの亜種 – IIJ Security Diary
https://sect.iij.ad.jp/blog/2025/10/blacktech-malware-kivars-2025/
Attacks on Palo Alto PAN-OS Global Protect Login Portals Surge from 2,200 IPs
https://cybersecuritynews.com/attacks-on-palo-alto-global-protect-surge/
LockBit, Qilin, and DragonForce Join Forces to Dominate the Ransomware Ecosystem
https://thehackernews.com/2025/10/lockbit-qilin-and-dragonforce-join.html
OpenAI Disrupts Russian, North Korean, and Chinese Hackers Misusing ChatGPT for Cyberattacks
https://thehackernews.com/2025/10/openai-disrupts-russian-north-korean.html
APT Hackers Exploit ChatGPT to Create Sophisticated Malware and Phishing Emails
https://cybersecuritynews.com/chatgpt-malware-and-phishing/
London police arrests suspects linked to nursery breach, child doxing
https://www.bleepingcomputer.com/news/security/london-police-arrests-suspects-linked-to-nursery-breach-child-doxing/
Polymorphic Python Malware - SANS Internet Storm Center
https://isc.sans.edu/diary/32354
Agenda — CYBERWARCON
https://www.cyberwarcon.com/agenda-25
Analysis Ship Informations_pdf.rar (MD5: 8A1B34EC77A585ABC6CFF1AF50F46768) Malicious activity - Interactive analysis ANY.RUN
https://app.any.run/tasks/b39b3d0e-ecb5-4fef-915a-bb570ce5f321
Cyberattack Leads to Beer Shortage as Asahi Recovers
https://www.darkreading.com/ics-ot-security/cyberattack-beer-shortage-asahi-recovers
Patch Diffing CVE-2024-23265: An iOS Kernel Memory Corruption Vulnerability - 8kSec
https://8ksec.io/patch-diffing-ios-kernel/
GitHub - JGoyd/iOS-Attack-Chain-CVE-2025-31200-CVE-2025-31201: CVE-2025-31200 is a zero-day, zero-click RCE in iOS CoreAudio’s AudioConverterService, triggered by a malicious audio file via iMessage/SMS. Exploitation bypassed Blastdoor, enabled kernel escalation (CVE-2025-31201), and allowed token theft until patched in iOS 18.4.1 (Apr 16, 2025).
https://github.com/JGoyd/iOS-Attack-Chain-CVE-2025-31200-CVE-2025-31201
Microsoft 365 outage blocks access to Teams, Exchange Online
https://www.bleepingcomputer.com/news/microsoft/microsoft-365-outage-blocks-access-to-teams-exchange-online/
Microsoft Warns of Hackers Abuse Teams Features and Capabilities to Deliver Malware
https://cybersecuritynews.com/hackers-abuse-teams-features/