Breaking News – Cyber Threats – 2025-10-27 03:00 PDT

Breaking News – Cyber Threats (last 6h)

Generated: 2025-10-27 03:00 PDT

• Infocon: green
  SANS ISC Diary (full) • 2025-10-27 02:55 • isc.sans.edu
  Bytes over DNS
  https://isc.sans.edu/diary.html?rss
• Bytes over DNS, (Mon, Oct 27th)
  SANS ISC Diary (full) • 2025-10-27 02:10 • isc.sans.edu

  I was intrigued when Johannes talked about malware that uses BASE64 over DNS to communicate. Take a DNS request like this: label1.label2.tld. Labels in a request like this can only be composed with letters (not case-sensitive), digits and a hyphen character (-). While BASE64 is encoded with letters (uppercase and lowercase), digits and special characters + and /. And also a special padding character: =.

  
  https://isc.sans.edu/diary/rss/32420

• How We (Almost) Found Chromium's Bug via Crash Reports to Report URI
  Troy Hunt • 2025-10-27 02:09 • www.troyhunt.com

  Tracking down bugs in software is a pain that all of us who write code must bear. When we're talking about outright errors in a web page, you typically have something to get you started (such as output in the console), but that wasn't the case

  https://www.troyhunt.com/how-we-almost-found-chromiums-bug-via-crash-reports-to-report-uri/

• ChatGPT Atlas Browser Can Be Tricked by Fake URLs into Executing Hidden Commands
  The Hacker News • 2025-10-27 00:29 • thehackernews.com
  The newly released OpenAI Atlas web browser has been found to be susceptible to a prompt injection attack where its omnibox can be jailbroken by disguising a malicious prompt as a seemingly harmless URL to visit.
  “The omnibox (combined address/search bar) interprets input either as a URL to navigate to, or as a natural-language command to the agent,” NeuralTrust said in a report published Friday
  https://thehackernews.com/2025/10/chatgpt-atlas-browser-can-be-tricked-by.html

Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.