Breaking News – Cyber Threats (last 6h)
Generated: 2025-10-27 22:00 PDT
- Infocon: green
SANS ISC Diary (full) • 2025-10-27 21:55 • isc.sans.edu
ISC Stormcast For Tuesday, October 28th, 2025 https://isc.sans.edu/podcastdetail/9674
https://isc.sans.edu/diary.html?rss - SideWinder Adopts New ClickOnce-Based Attack Chain Targeting South Asian Diplomats
The Hacker News • 2025-10-27 21:01 • thehackernews.com
A European embassy located in the Indian capital of New Delhi, as well as multiple organizations in Sri Lanka, Pakistan, and Bangladesh, have emerged as the target of a new campaign orchestrated by a threat actor known as SideWinder in September 2025.
The activity “reveals a notable evolution in SideWinder’s TTPs, particularly the adoption of a novel PDF and ClickOnce-based infection chain, in
https://thehackernews.com/2025/10/sidewinder-adopts-new-clickonce-based.html - Crypto wasted: BlueNoroff’s ghost mirage of funding and jobs
Securelist • 2025-10-27 20:00 • securelist.com
Kaspersky GReAT experts dive deep into the BlueNoroff APT’s GhostCall and GhostHire campaigns. Extensive research detailing multiple malware chains targeting macOS, including a stealer suite, fake Zoom and Microsoft Teams clients and ChatGPT-enhanced images.
https://securelist.com/bluenoroff-apt-campaigns-ghostcall-and-ghosthire/117842/ - ISC Stormcast For Tuesday, October 28th, 2025 https://isc.sans.edu/podcastdetail/9674, (Tue, Oct 28th)
SANS ISC Diary (full) • 2025-10-27 19:00 • isc.sans.edu
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
https://isc.sans.edu/diary/rss/32426
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
