F5 signing certificate and key rotation, October 2025
https://my.f5.com/manage/s/article/K000157005
Two New Windows Zero-Days Exploited in the Wild — One Affects Every Version Ever Shipped
https://thehackernews.com/2025/10/two-new-windows-zero-days-exploited-in.html
Over 100 VS Code Extensions Exposed Developers to Hidden Supply Chain Risks
https://thehackernews.com/2025/10/over-100-vs-code-extensions-exposed.html
Microsoft: Sept Windows Server updates cause Active Directory issues
https://www.bleepingcomputer.com/news/microsoft/microsoft-september-2025-windows-server-updates-cause-active-directory-issues/
F5 Security Incident
https://my.f5.com/manage/s/article/K000154696
Microsoft October 2025 Patch Tuesday fixes 6 zero-days, 172 flaws
https://www.bleepingcomputer.com/news/microsoft/microsoft-october-2025-patch-tuesday-fixes-6-zero-days-172-flaws/
F5 Security Incident
https://my.f5.com/manage/s/article/K000154696?ref=thestack.technology#ai-recommendations-54
XBRL Viewer
https://www.sec.gov/ix?doc=%2FArchives%2Fedgar%2Fdata%2F1048695%2F000104869525000149%2Fffiv-20251015.htm
Chinese Threat Group 'Jewelbug' Quietly Infiltrated Russian IT Network for Months
https://thehackernews.com/2025/10/chinese-threat-group-jewelbug-quietly.html
Clipboard Pictures Exfiltration in Python Infostealer
https://isc.sans.edu/diary/32372
F5 Breach Exposes BIG-IP Source Code — Nation-State Hackers Behind Massive Intrusion
https://thehackernews.com/2025/10/f5-breach-exposes-big-ip-source-code.html
Maverick: a new banking trojan abusing WhatsApp in a massive scale distribution | Securelist
https://securelist.com/maverick-banker-distributing-via-whatsapp/117715/
Finding vulnerabilities in modern web apps using Claude Code and OpenAI Codex | Semgrep
https://semgrep.dev/blog/2025/finding-vulnerabilities-in-modern-web-apps-using-claude-code-and-openai-codex/
Analyzing LummaC2 stealer’s novel Anti-Sandbox technique
https://outpost24.com/blog/lummac2-anti-sandbox-technique-trigonometry-human-detection/
BloodHound Query Library
https://queries.specterops.io/
Windows Privilege Escalation - Juggernaut Pentesting Blog
https://juggernaut-sec.com/category/windows-privilege-escalation
PowerSchool hacker gets sentenced to four years in prison
https://www.bleepingcomputer.com/news/security/powerschool-hacker-gets-sentenced-to-four-years-in-prison/
A small number of samples can poison LLMs of any size \ Anthropic
https://www.anthropic.com/research/small-samples-poison
New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login
https://thehackernews.com/2025/10/new-sap-netweaver-bug-lets-attackers.html
Objective-See Foundation - YouTube
https://youtube.com/channel/UCQycc8VDhHuNkZlKSSTDHzw
APT28 Operation Phantom Net Voxel - Sekoia.io Blog
https://blog.sekoia.io/apt28-operation-phantom-net-voxel/
Artificial Intelligence in Cybersecurity: Using AI for Port Scanning - Hackers Arise
https://hackers-arise.com/artificial-intelligence-in-cybersecurity-using-ai-for-port-scanning/
Phishing for Primary Refresh Tokens and Windows Hello keys - dirkjanm.io
https://dirkjanm.io/phishing-for-microsoft-entra-primary-refresh-tokens/
Security Engineer 4 - Oracle Careers
https://careers.oracle.com/en/sites/jobsearch/job/310049
F5 releases BIG-IP patches for stolen security vulnerabilities
https://www.bleepingcomputer.com/news/security/f5-releases-big-ip-patches-for-stolen-security-vulnerabilities/
Weaponizing WDAC: Killing the Dreams of EDR
https://beierle.win/2024-12-20-Weaponizing-WDAC-Killing-the-Dreams-of-EDR
F5 says hackers stole undisclosed BIG-IP flaws, source code
https://www.bleepingcomputer.com/news/security/f5-says-hackers-stole-undisclosed-big-ip-flaws-source-code/