TARmageddon Flaw in Async-Tar Rust Library Could Enable Remote Code Execution
https://thehackernews.com/2025/10/tarmageddon-flaw-in-async-tar-rust.html
Meta launches new anti-scam tools for WhatsApp and Messenger
https://www.bleepingcomputer.com/news/security/meta-launches-new-anti-scam-tools-for-whatsapp-and-messenger/
Prompt injection to RCE in AI agents -The Trail of Bits Blog
https://blog.trailofbits.com/2025/10/22/prompt-injection-to-rce-in-ai-agents/
Sharepoint ToolShell attacks targeted orgs across four continents
https://www.bleepingcomputer.com/news/security/sharepoint-toolshell-attacks-targeted-orgs-across-four-continents/
TP-Link Patches Four Omada Gateway Flaws, Two Allow Remote Code Execution
https://thehackernews.com/2025/10/tp-link-patches-four-omada-gateway.html
Russian APT Switches to New Backdoor After Malware Exposed by Researchers - SecurityWeek
https://www.securityweek.com/russian-apt-switches-to-new-backdoor-after-malware-exposed-by-researchers/
LADO B - EKOPARTY 2025 - DIA 1 - YouTube
https://www.youtube.com/live/RdihQH7uuss
CVE-2025-59287 WSUS Remote Code Execution | HawkTrace
https://hawktrace.com/blog/CVE-2025-59287
TP-Link warns of critical command injection flaw in Omada gateways
https://www.bleepingcomputer.com/news/security/tp-link-warns-of-critical-command-injection-flaw-in-omada-gateways/
Researchers Identify PassiveNeuron APT Using Neursite and NeuralExecutor Malware
https://thehackernews.com/2025/10/researchers-identify-passiveneuron-apt.html
Why nested deserialization is STILL harmful – Magento RCE (CVE-2025-54236) › Searchlight Cyber
https://slcyber.io/assetnote-security-research-center/why-nested-deserialization-is-still-harmful-magento-rce-cve-2025-54236/
PhantomCaptcha ClickFix attack targets Ukraine war relief orgs
https://www.bleepingcomputer.com/news/security/phantomcaptcha-clickfix-attack-targets-ukraine-war-relief-orgs/