IT Security Weekend Catch Up – October 19, 2025

Comments
close searching

19.10.2025 | 13:44

IT Security Weekend Catch Up – October 19, 2025
avatar

badcyber

comments

IT Security Weekend Catch Up – October 19, 2025

Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Airports across North America hacked to play pro-Palestine, anti-Trump messages
  2. WestJet data breach exposes travel details of 1.2 million customers
  3. China imposes one-hour reporting rule for major cyber incidents
  4. FBI takes down BreachForums portal used for Salesforce extortion
  5. A small number of samples can poison LLMs of any size
  6. Chrome will automatically disable web notifications you don’t care about

For the more technical

  1. Desktop application security standard: Introducing DASVS
  2. Why Signal’s post-quantum makeover is an amazing engineering achievement
  3. October 2025 Patch Tuesday: Two publicly disclosed, three zero-days, and eight critical vulnerabilities among 172 CVEs
  4. Denial of fuzzing: Rust in the Windows kernel
  5. Operation Zero Disco: Attackers exploit Cisco SNMP vulnerability to deploy rootkits
  6. RMPocalypse how a catch-22 breaks AMD SEV-SNP
  7. BombShell: The signed backdoor hiding in plain sight on Framework devices
  8. CamoLeak: Critical GitHub Copilot vulnerability leaks private source code
  9. Pixnapping attack
  10. GhostBat RAT: Inside the resurgence of RTO-themed Android malware
  11. WhatsApp worm targets Brazilian banking customers
  12. Astaroth: Banking trojan abusing GitHub for resilience
  13. A taxonomy of Mac stealers: Distinguishing Atomic, Odyssey, and Poseidon
  14. Defrosting PolarEdge’s backdoor
  15. DDoS botnet Aisuru blankets US ISPs in record DDoS
  16. 100,000+ IP botnet launches coordinated RDP attack wave against US infrastructure
  17. Operation Silk Lure: Scheduled tasks weaponized for DLL side-loading (drops ValleyRAT)
  18. When the monster bytes: tracking TA585 and its arsenal
  19. BeaverTail and OtterCookie evolve with a new Javascript module
  20. North Korea’s contagious interview campaign escalates: 338 malicious npm packages, 50,000 downloads
  21. DPRK adopts EtherHiding: Nation-state malware hiding on blockchains
  22. Jewelbug: Chinese APT group widens reach to Russia

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.


Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy! For the less technical Airports across North America hacked to play pro-Palestine, anti-Trump messages WestJet data brea 2025-10-19T13:44:31+02:00

Comments