-The F5 hack -EU MEP files criminal complaint against Hungary PM over hacking -Bulletproof hoster shuts down due to political reasons -PowerSchool hacker sentenced to four years -Four airports hacked across NA -Capita fined £14m for ransomware attack -Ransomware attack at MuniOS -LocalMind still down 10 days after hack -Breaches at Prosper, Mango -The FBI's secret Group 78 task force -UK denies report of Chinese hack Newsletter:
Risky.Biz
F5 says an APT stole source code, vulnerability reports
In other news: EU MEP files criminal complaint against Hungary PM over hacking; bulletproof hoster shuts down due to political reasons; PowerSchool...
 Podcast:
Risky Bulletin: F5 says an APT stole source code, vulnerability reports - Risky Business Media
F5 (formerly F5 Networks), one of the largest US tech companies and a member of the S&P 500, has disclosed a security breach this week [Read More]
 image
AI startup Localmind has been down for 11 days because of a security breach
Localmind Security – Localmind Incident Update
The Tor Browser will remove all of the Firefox AI features that Mozilla has been recently adding
New Alpha Release: Tor Browser 15.0a4 | Tor Project
Tor Browser 15.0a4 is now available from the Tor Browser download page and also from our distribution directory.
Microsoft revokes 200 certs that were being used to sign malware used in attacks with the Ryhisida ransomware This is another way to disrupt ransomware operations without going through the courts... cheaper too
Bluesky Social
Microsoft Threat Intelligence (@threatintel.microsoft.com)
In early October 2025, Microsoft disrupted a Vanilla Tempest campaign by revoking over 200 certificates that the threat actor had fraudulently sign...
I would have expected EtherHiding to be more popular, but two years later, it's just ClearFake, a botnet I haven't heard anything about in ages, and now some North Korean hackers https://cloud.google.com/blog/topics/threat-intelligence/dprk-adopts-etherhiding
I thought I was having a light day at work... but I just forgot to open my email client 😑
CPU side-channel research is so off into the distance that I only understand 30% of the words now New Training Solo attack here:
vusec
Training Solo - vusec
On the Limitations of Domain Isolation Against Spectre-v2 Attacks TL;DR We present Training Solo, the first systematic analysis of self-training Sp...
Russian bulletproof hosting provider BearHost, aka Voodoo Servers, has exit-scammed and cited "political reasons"
Resecurity | Qilin Ransomware and the Ghost Bulletproof Hosting Conglomerate
According to CISA, this Adobe Experience Manager bug detailed here is now under active exploitation:
Struts Devmode in 2025? Pre-Auth Bugs in AEM Forms | Searchlight
MEP targeted by spyware files complaint against Hungary’s Viktor Orbán “There are indications that the Hungarian secret service is behind the attack,” German MEP Daniel Freund said.
MEP targeted by spyware files complaint against Hungary’s Viktor Orbán – POLITICO