Breaking News – Cyber Threats (last 6h)
Generated: 2025-10-24 03:00 PDT
- Infocon: green
SANS ISC Diary (full) • 2025-10-24 02:55 • isc.sans.edu
ISC Stormcast For Friday, October 24th, 2025 https://isc.sans.edu/podcastdetail/9670
https://isc.sans.edu/diary.html?rss - Windows Server emergency patches fix WSUS bug with PoC exploit
BleepingComputer • 2025-10-24 00:27 • www.bleepingcomputer.com
Microsoft has released out-of-band (OOB) security updates to patch a critical-severity Windows Server Update Service (WSUS) vulnerability with publicly available proof-of-concept exploit code. […]
https://www.bleepingcomputer.com/news/security/microsoft-releases-windows-server-emergency-updates-for-critical-wsus-rce-flaw/ - Self-Spreading 'GlassWorm' Infects VS Code Extensions in Widespread Supply Chain Attack
The Hacker News • 2025-10-24 00:00 • thehackernews.com
Cybersecurity researchers have discovered a self-propagating worm that spreads via Visual Studio Code (VS Code) extensions on the Open VSX Registry and the Microsoft Extension Marketplace, underscoring how developers have become a prime target for attacks.
The sophisticated threat, codenamed GlassWorm by Koi Security, is the second such supply chain attack to hit the DevOps space within a span
https://thehackernews.com/2025/10/self-spreading-glassworm-infects-vs.html - Hackers earn $1,024,750 for 73 zero-days at Pwn2Own Ireland
BleepingComputer • 2025-10-23 23:36 • www.bleepingcomputer.com
The Pwn2Own Ireland 2025 hacking competition has ended with security researchers collecting $1,024,750 in cash awards after exploiting 73 zero-day vulnerabilities. […]
https://www.bleepingcomputer.com/news/security/hackers-earn-1-024-750-for-73-zero-days-at-pwn2own-ireland/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
