WatchGuard Fireware OS users, beware! A critical vulnerability named CVE-2025-9242 could let cyber villains remotely execute code. Affecting mobile user VPN and BOVPN with IKEv2, this flaw has a CVSS score of 9.3. Over 71,000 devices might be vulnerable, so stay vigilant and consider WatchGuard’s temporary workaround if you can’t upgrade yet.

Uncle Sam’s cyber wardens sound the alarm: a high-severity flaw in Microsoft’s Windows SMB client is being actively exploited, months after being patched. Tracked as CVE-2025-33073, it has entered CISA’s Known Exploited Vulnerabilities catalogue. Is it a bird? Is it a plane? Nope, just another patch party.

More than 73,000 WatchGuard Firebox devices remain unpatched against a critical-severity vulnerability, CVE-2025-9242. Despite being designed to fortify networks, these devices could become a hacker’s playground if left unpatched. It’s like leaving the front door open with a welcome mat for cybercriminals. Time to patch up before it’s too late!

Myanmar’s military recently busted a major online scam hub near the Thai border, arresting over 2,000 people and confiscating dozens of Starlink satellite internet terminals. Myanmar is notorious for hosting cyberscam operations. These operations lured workers in with fake job offers, only to trap them in illegal activities.

Coldriver, a Russian-linked hacking group, has traded its old malware for a new comedic trilogy: NoRobot, YesRobot, and MaybeRobot. These malware families employ fake CAPTCHAs to trick users into proving they’re “not a robot,” but the real punchline is their complex delivery chain, making Coldriver’s schemes harder to detect.

Malware vaccines aim to outsmart cybercriminals by deploying clever decoys that trick ransomware into avoiding infection. At the ONE Conference, experts discussed these innovative tactics, emphasizing the need for vaccines targeting multiple malware families. While promising, the concept remains underdeveloped, with researchers advocating for open-source collaboration to combat cyber threats effectively.

CISA confirms Oracle E-Business Suite vulnerability CVE-2025-61884 has been exploited in the wild. Cybercriminals, likely FIN11, are behind this campaign involving data theft and extortion. Oracle patched the flaw, but the timing suggests attackers were a step ahead. Federal agents, start your patching engines by November 10th!

CISA confirms Oracle E-Business Suite vulnerability CVE-2025-61884 has been exploited in the wild. Cybercriminals, likely FIN11, are behind this campaign involving data theft and extortion. Oracle patched the flaw, but the timing suggests attackers were a step ahead. Federal agents, start your patching engines by November 10th!

Microsoft quickly addressed a bug that turned Windows Recovery Environment (WinRE) into a high-tech paperweight post-October 2025 updates. USB mice and keyboards stopped working in recovery mode, but Microsoft’s out-of-band update (KB5070773) restores order, making WinRE functional again. Remember, always keep your system updated, even if it means saving WinRE from a tech tantrum.

Scammers are targeting job-seekers in a sluggish US labour market with fake Social Media Manager roles, exploiting trust in brands like KFC and Red Bull. Their goal? To swipe your Facebook login details quicker than you can say “You’re hired!” Remember, if it seems too good to be true, it probably is.

Lumma Stealer’s infamy has taken a hit with a doxxing campaign that exposed core members like a bad reality TV show. Leaked details include passport numbers and bank accounts, leaving the cyber-villains more exposed than a cat meme gone viral. Trend Micro believes rivals are behind this cyber soap opera.

Salt Typhoon, a notorious China-linked cyber espionage group, has targeted a European telecom company. Exploiting a Citrix NetScaler Gateway, the group sneaked in like a raccoon through an open trash can. Known for stealth and persistence, Salt Typhoon’s crafty use of legitimate tools keeps defenders on their toes—and possibly a bit queasy.

The Russia-linked hacking group COLDRIVER is speeding up its game, upgrading its malware arsenal with NOROBOT, YESROBOT, and MAYBEROBOT. These digital mischief-makers are a step up from their predecessor, LOSTKEYS, and have evolved to make detection a cat-and-mouse game. Google’s Threat Intelligence Group is on high alert!

Cifas, the anti-fraud nonprofit, ironically exposed dozens of email addresses while trying to set up a fraud-prevention meeting. It seems the only thing that wasn’t protected from exposure was their own invite list. Remember folks, if you want to avoid a “reply-all” catastrophe, BCC is your BFF!

Russian hackers from the Lynx group have pulled off a “catastrophic” cyberattack, stealing sensitive files on eight RAF and Navy bases. The breach, via Dodd Group, exposed staff data and more, leaving everyone to wonder: Did they really need four terabytes, or were they just downloading the internet for fun?

House Democrats are questioning Kristi Noem about why DHS reassigned cybersecurity staff to Trump-era immigration roles, sparking concerns over U.S. cyberdefenses. They argue the move violates the Antideficiency Act, putting American lives at risk for political gain. Reassigning cybersecurity experts during a shutdown isn’t just wrong—it’s illegal and dangerous.

The DNS0.EU non-profit DNS service has abruptly shut down due to time and resource constraints, leaving European users searching for alternatives. The team recommends switching to DNS4EU or NextDNS, both offering robust security features. Alas, DNS0.EU’s valiant crusade against malicious domains and annoying ads has been discontinued, but the quest for a safer internet continues.

A massive AWS outage turned the internet into a digital ghost town, impacting everything from banking to binge-watching. The culprit? A DNS hiccup in Virginia. It’s like if one Jenga block topples and the whole tower falls, except this time the tower was the internet. AWS infrastructure failure strikes again!

Microsoft’s latest update has left users in a pickle by disabling USB mice and keyboards in the Windows Recovery Environment. While your mouse and keyboard can still party with the main Windows system, they’re benched when it comes to recovery mode. Time to dust off those old PS/2 connectors or go Bluetooth, folks!

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has confirmed a vulnerability impacting Oracle E-Business Suite is actively exploited. Known as CVE-2025-61884, this server-side request forgery flaw could allow unauthorized data access. It’s like leaving the office back door open during a raccoon convention—chaos guaranteed.