InfoSec News 20251009
Top News
-
Azure outage blocks access to Microsoft 365 services, admin portals
"Microsoft is working to resolve an outage affecting its Azure Front Door content delivery network (CDN), which is preventing customers from accessing some Microsoft 365 services."
TLP1 : Green
-
New FileFix attack uses cache smuggling to evade security software
"A new variant of the FileFix social engineering attack uses cache smuggling to secretly download a malicious ZIP archive onto a victim’s system and bypassing security software."
TLP1 : Green
-
Crimson Collective hackers target AWS cloud instances for data theft
"The 'Crimson Collective' threat group has been targeting AWS (Amazon Web Services) cloud environments for the past weeks, to steal data and extort companies."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Hacktivists target critical infrastructure, hit decoy plant
"A pro-Russian hacktivist group called TwoNet pivoted in less than a year from launching distributed denial-of-service (DDoS) attacks to targeting critical infrastructure."
TLP1 : Green
-
From Phishing to Malware: AI Becomes Russia's New Cyber Weapon in War on Ukraine
"Russian hackers' adoption of artificial intelligence (AI) in cyber attacks against Ukraine has reached a new level in the first half of 2025 (H1 2025), the country's State Service for Special Communications and Information Protection (SSSCIP) said."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Qilin ransomware claims Asahi brewery attack, leaks data
"The Qilin ransomware group has claimed the attack on Japanese beer giant Asahi by adding the company to the list of victims on its data leak site."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Critical Exploit Lets Hackers Bypass Authentication in WordPress Service Finder Theme
"Threat actors are actively exploiting a critical security flaw impacting the Service Finder WordPress theme that makes it possible to gain unauthorized access to any account, including administrators, and take control of susceptible sites."
TLP1 : Green
-
Hackers Exploit WordPress Sites to Power Next-Gen ClickFix Phishing Attacks
"Cybersecurity researchers are calling attention to a nefarious campaign targeting WordPress sites to make malicious JavaScript injections that are designed to redirect users to sketchy sites."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Get lifetime access to 90+ cybersecurity training courses for $53
"Breaking into cybersecurity or leveling up your skill set doesn’t have to mean shelling out thousands of dollars or locking yourself into rigid class schedules. With InfoSec4TC’s Cyber Security Training, you’ll get lifetime access to a massive library of self-paced cybersecurity courses for just $52.97 (MSRP: $280) through November 2."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
The ClickFix Factory: First Exposure of IUAM ClickFix Generator
"Attackers are packaging a highly effective social engineering technique known as ClickFix into easy-to-use phishing kits, making it accessible to a wider range of threat actors. This technique tricks victims into bypassing security measures by manually executing malware, typically information stealers and remote access Trojans (RATs)."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.