October, 2025 - Cybernoz

Multiple Jenkins Vulnerability SAML Authentication Bypass And MCP Server Plugin Permissions

The Jenkins project released Security Advisory 2025-10-29 on October 28, 2025, disclosing multiple vulnerabilities across 13 plugins that power the popular open-source automation server. These…

October 30, 2025 Cybernoz 3 min read

GBHackers

Lampion Stealer Resurfaces with ClickFix Attack to Steal User Credentials Stealthily

A Brazilian cybercriminal group has refined its long-running malware distribution campaign by incorporating innovative social engineering techniques and multi-stage infection chains to deliver the Lampion…

October 30, 2025 Cybernoz 3 min read

Cyber Security Ventures

The Edge Is A Hacker’s Delight, A Dream Come True For Cybercriminals

Cybersecurity Ventures predicts that the world will store 200 zettabytes of data in 2025. Half of enterprise data will be produced and processed at the edge within this…

October 30, 2025 Cybernoz 1 min read

MalwareBytes

Fake PayPal invoice from Geek Squad is a tech support scam

One of our employees received this suspicious email and showed it to me. Although it’s a pretty straightforward attempt to lure targets into calling the…

October 30, 2025 Cybernoz 4 min read

ComputerWeekly

US senators seek to prohibit minors from using AI chatbots

Legislation introduced in the US Congress could require artificial intelligence (AI) chatbot operators to put in place age verification processes and stop under 18s from…

October 30, 2025 Cybernoz 4 min read

GBHackers

Jenkins Flaws Expose SAML Authentication Bypass and MCP Server Plugin Weaknesses

Jenkins automation server users face critical security threats following the disclosure of 14 distinct vulnerabilities spanning multiple plugins. The security advisory reveals a widespread pattern…

October 30, 2025 Cybernoz 3 min read

HackRead

Russian Hackers Exploit Adaptix Pentesting Tool in Ransomware Attacks – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and More

Silent Push researchers have identified Russian-linked ransomware groups abusing Adaptix, a legitimate penetration testing tool now used to deliver malware targeting infrastructure worldwide. The investigation…

October 30, 2025 Cybernoz 2 min read

BAS Is the Power Behind Real Defense

Security doesn’t fail at the point of breach. It fails at the point of impact. That line set the tone for this year’s Picus Breach…

October 30, 2025 Cybernoz 6 min read

ComputerWeekly

Equinix acquires DC01UK’s mega-datacentre site in Hertfordshire and plots £3.9bn investment

DC01UK has confirmed that colocation giant Equinix has acquired the 85-acre plot of green belt land in Hertfordshire it secured planning permission for transforming into…

October 30, 2025 Cybernoz 3 min read

DarkReading

Vinomofo Failed To Protect Customer Data: Privacy Watchdog

Australia’s Privacy Commissioner Carly Kind has issued a determination against online wine wholesaler Vinomofo Pty Ltd, finding the company interfered with the privacy of almost…

October 30, 2025 Cybernoz 6 min read

Bleeping Computer

Microsoft promises more Copilot features in Microsoft 365 companion apps

Microsoft 365 companion apps will be getting more Copilot features in the coming weeks. Right now, Copilot works only inside two companion apps, People and Files. In…

October 30, 2025 Cybernoz 2 min read

CyberSecurityNews

Microsoft Windows Cloud Files Minifilter Privilege Escalation Vulnerability Exploited

Microsoft has patched a critical race condition vulnerability in its Windows Cloud Files Minifilter driver, known as CVE-2025-55680, which enables local attackers to escalate privileges…

October 30, 2025 Cybernoz 3 min read