Microsoft Oct 2025 Patch Tuesday is out with fixes for 3 actively exploited zero-days https://rawcdn.githack.com/campuscodi/Microsoft-Patch-Tuesday-Security-Reports/55b489e3398e0c216c7bfb81a05bc3c9119c0209/Reports/MSRC_CVEs2025-Oct.html -CVE-2025-24990 — Windows Agere Modem Driver Elevation of Privilege Vulnerability -CVE-2025-59230 — Windows Remote Access Connection Manager Elevation of Privilege Vulnerability -CVE-2025-47827 — Secure Boot bypass in IGEL OS before 11

I just realized this might screw up a lot of infostealers in the coming weeks. Chrome also does this regularly. Let's see how quick they adapt this time. View quoted note →

Research home page, if you wanna read the paper:

🛰️ SATCOM Security

Research project homepage for SATCOM Security: papers, source code, and recent satellite communications vulnerabilities.

View quoted note →

Firefox 144 is out with hardened encryption for locally stored passwords

Firefox

Firefox 144.0, See All New Features, Updates and Fixes

Infosec drama, part 283,293: FuzzingLabs accuses Gecko Security of stealing two CVEs and backdating blogs

X (formerly Twitter)

FuzzingLabs (@FuzzingLabs) on X

💣 We caught @ycombinator–backed @gecko_sec stealing two of our CVEs, one on @ollama , one on @Gradio. They copied our PoCs, claimed CVE IDs, ...

"Pixnapping is a new class of attacks that allows a malicious Android app to stealthily leak information displayed by other Android apps or arbitrary websites." Tested to steal data from Gmail, Google Accounts, Signal, Google Authenticator, Venmo, and Google Maps

Pixnapping Attack

Security firm DarkTower has discovered four different Telegram emoji packs that contain bank logos and are likely used in cybercrime channels as a way to order phishing pages.

DarkTower

Telegram Emoji Packs - DarkTower

Trevor Wilson Introduction A Telegram Emoji Pack is a collection of custom static or animated images that users can add to the messenger to persona...

Microsoft published last week a dedicated page for recommended Intune security configurations

Configure Microsoft Intune for increased security - Microsoft Intune

Learn how to improve your security posture with Microsoft Intune.

Argentina arrested its first suspect on an Interpol Red Notice ...it was a Nigerian romance scammer

X (formerly Twitter)

INTERPOL Red Notice Fugitives (@interpolwanted) on X

Argentina’s @PFAOficial and @seguridadpsa have captured Nigerian national Ikechukwu N., marking the country’s first arrest of a Red Notice fugi...

Clop's extortion streak: Accellion FTA platform (2020) SolarWinds Serv-U FTP (2021) GoAnywhere MFT platform (2023) MOVEit Transfer (2023) Cleo file transfer (2024) E-Business Suite (2025) via: https://www.orangecyberdefense.com/global/blog/cert-news/google-details-clop-extortion-campaign-leveraging-0-day-in-oracle-e-business-suite