🚨 Chrome users: a new zero-day is under active attack. CVE-2025-10585 targets Chrome’s V8 engine—Chrome’s 6th zero-day of 2025. Details → thehackernews.com/2025/09/google… ⚡ Update now: 140.0.7339.185/.186 (Win/macOS), 140.0.7339.185 (Linux). If you use Edge/Brave/Opera/Vivaldi,

The DoD’s new rules are here, and every business, large or small, in the defense supply chain will soon need to prove it can protect sensitive data. More below: buff.ly/iaKgHty

⚠️ Warning — One hidden email could trick ChatGPT’s Deep Research into stealing your Gmail inbox. Dubbed “ShadowLeak,” this stealth attack hides commands in invisible HTML, making the AI grab and exfiltrate your data—without a single click. Details → thehackernews.com/2025/09/shadow…

#Microsoft has patched a critical vulnerability (CVE-2025-55241) in #Entra ID that enabled global admin impersonation across tenants; the new EDR-Freeze tool exploits #Windows Error Reporting to suspend security processes. More below: buff.ly/GzVxVuv

IT team stretched thin? Our #vCISO service handles strategy, reporting, and #compliance so your team can stay focused on operations.

Cisco warns of IOS zero-day vulnerability exploited in attacks - Sergiu Gatlan bleepingcomputer.com/news/security/… bleepingcomputer.com/news/security/…

UNC5221 is using the BRICKSTORM backdoor to infiltrate U.S. legal, tech, and #SaaS sectors with year-long persistence; Shai-Hulud, a new worm in 180+ #NPM packages, steals developer credentials and spreads by infecting popular libraries. More below: buff.ly/IaEmcBw

This month’s #vulnerability review is out: the Netizen SOC flagged five critical flaws, from Cisco SNMP RCE to GoAnywhere and Chrome, urgent patching is needed. buff.ly/8rZxrbi

#Microsoft warns of AI-crafted phishing campaigns using malicious SVG files to bypass defenders; researchers uncovered #Malterminal, the earliest known GPT-4 malware capable of generating reverse shells. More below: netizen.net/news/post/7060…

Static audits are out; the new CSRMC shifts defense to continuous monitoring, ensuring mission resilience against cyber threats. More below: netizen.net/news/post/7065…

Do posters really protect data? Posters remind people to think, but it’s controls, segmentation, and governance that turn awareness into protection. More below: buff.ly/io4mb7L

Did you see last month's #cybersecurity bulletin? In it, we covered UNC5221's BRICKSTORM campaign against legal and tech firms and the Shai-Hulud worm that infected 180+ NPM packages. More below: buff.ly/8MdYgoJ

Did you see last month's #vulnerability review? Five flaws surfaced, including a Cisco SNMP bug enabling RCE, a serious deserialization issue in Fortra’s GoAnywhere, and multiple high-severity vulnerabilities in Google Chrome and Sitecore. More below: buff.ly/fXdxeAI

Is your business running #Oracle E-Business Suite? A critical flaw is under active attack by Cl0p, prompting urgent patching across industries. buff.ly/nAtq5J2

The move to Security-as-a-Service reflects a simple reality: modern threats demand 24×7 detection and response that most on-premises teams can’t sustain alone. More below: buff.ly/5jhwxln

October 2025 is here, and PCI DSS 4.0 #compliance is now mandatory; organizations still transitioning are already behind. More below: buff.ly/S3Xs44y

Weak passwords, exposed service accounts, and permissive ACLs let attackers escalate from a standard user to Domain Admin far faster than most teams expect. More below: buff.ly/dVyMokF

#Oracle warns of a critical vulnerability in its E-Business Suite, allowing unauthorized data access; over 100 #SonicWall accounts face a major compromise. More below: buff.ly/c4OLj19

#Microsoft’s October 2025 Patch Tuesday delivers fixes for 172 vulnerabilities, including six zero-days affecting Windows, AMD processors, and Secure Boot, marking the final free security update for Windows 10. More below: buff.ly/chGJHG6

Starting November 10, 2025, #CMMC 2.0 becomes a contract reality, defense contractors that aren’t ready risk losing eligibility across the DoD supply chain. More below: buff.ly/BepZRnm