Lightnews — Scholar-powered news

Weekly Security Sprint EP 130. The Evangelist has returned! Cybersecurity Awareness Month and more! | Gate 15

Gate 15 @gate15.bsky.social · 16h

Our latest edition of the Security Sprint is out now! In this episode, Andy is joined by Jennifer Walker and Sadie Anne Jones! They discuss Cybersecurity Awareness Month and more! Our podcast is available right now, check it out!
#cybersecurity
@andyjabbour.bsky.social
gate15.global/weekly-secur...

Russia, China and North Korea are using ChatGPT to influence you — here’s how

Gate 15 @gate15.bsky.social · 17h

Today in the SUN we feature an article from Straight Arrow News on Russia, China and North Korea using ChatGPT to influence you.

Read more below:
san.com/cc/russia-ch...

#cybersecurity
@andyjabbour.bsky.social

A new report from OpenAI found foreign adversaries are increasingly using artificial intelligence to power hacking and influencing operations.

san.com

Phishers target 1Password users with convincing fake breach alert

Gate 15 @gate15.bsky.social · 1d

Find the Malwarebytes article here:
www.malwarebytes.com/blog/news/20...

Attackers are using realistic-looking 1Password emails to trick users into handing over their vault logins.

www.malwarebytes.com

Gate 15 @gate15.bsky.social · 1d

@malwarebytes.com reports that in a well-targeted phishing attempt, scammers tried to get hold of credentials belonging to a Malwarebytes’ employee.

When you see something that doesn't seem right, take a 9 second pause. A short pause goes a long way.

Learn more below
pausetake9.org?utm_source=c...

1 2

Gate 15 @gate15.bsky.social · 1d

Today in the SUN we feature an article from @bleepingcomputer.com about Redis warning of a critical flaw impacting thousands of instances.

Read more below:
www.bleepingcomputer.com/news/securit...

#cybersecurity
@andyjabbour.bsky.social

Redis warns of critical flaw impacting thousands of instances

The Redis security team has released patches for a maximum severity vulnerability that could allow attackers to gain remote code execution on thousands of vulnerable instances.

Yet another shutdown and its impact on cybersecurity professionals

1 1 1

Reposted by Gate 15

andy jabbour @andyjabbour.bsky.social · 1d

Government shutdown. CISA expiration. ISACs. We'll be touching on all of this, and Cybersecurity Awareness Month, on today's recording of the @gate15.bsky.social Security Sprint as I'm joined by two excellent teammates & champion women in #cybersecurity. www.scworld.com/perspective/...

This year’s shutdown risk is especially troubling because Congress failed to reauthorize the Cybersecurity Information Sharing Act (CISA) of 2015.

www.scworld.com

Developing: Salesforce data leak site being seized? Looks like it. – DataBreaches.Net

Reposted by Gate 15

andy jabbour @andyjabbour.bsky.social · 1d

Salesforce data leak site: 'A whois lookup now shows that the name servers have been changed to hans.ns.cloudflare [.] com and surina.ns.cloudflare [.] com, which I am guessing are government accounts.' databreaches.net/2025/10/06/d... #cybersecurity #cybercrime @gate15.bsky.social

I am guessing that the breachforums[.]hn leak site for ScatteredLAPSUS$Hunters is in the process of being seized. A whois lookup now shows that the name servers

databreaches.net

Reposted by Gate 15

andy jabbour @andyjabbour.bsky.social · 1d

There's a lot of talk about CISA 2015 expiration. We discuss that in today's @gate15.bsky.social Security Sprint and I argue that maybe the worries are a little misplaced, and not for good reasons. Just recorded today's episode; it'll be out soon! And I may have H/T @colinwood.me... 🍕 #cybersecurity

The Y2K38 Bug Is a Vulnerability, Not Just a Date Problem, Researchers Warn

Reposted by Gate 15

andy jabbour @andyjabbour.bsky.social · 1d

We barely survived Y2K 😑 not sure we can handle this... The Y2K38 Bug Is a Vulnerability, Not Just a Date Problem, Researchers Warn; hackers could exploit it today against ICS and consumer devices. www.securityweek.com/the-y2k38-bu... #cybersecurity @gate15.bsky.social #Y2K38

The Year 2036/2038 problem is a bug that will be triggered in more than a decade, but hackers could exploit it today.

www.securityweek.com

XWorm malware resurfaces with ransomware module, over 35 plugins

Gate 15 @gate15.bsky.social · 2d

Today in the SUN we feature an article from @bleepingcomputer.com on the XWorm malware resurfacing with ransomware module.

Read more below:
www.bleepingcomputer.com/news/securit...

#cybersecurity
@andyjabbour.bsky.social

New versions of the XWorm backdoor are being distributed in phishing campaigns after the original developer, XCoder, abandoned the project last year.

ENISA 2025 Threat Landscape report highlights EU faces escalating hacktivist attacks and state-aligned cyber threats - Industrial Cyber

Reposted by Gate 15

Catalin Cimpanu @campuscodi.risky.biz · 3d

-Violent riot erupts at Cambodian scam compound
-Australia fines man for AI deepfake pr0n
-Cisco brute-forcing campaign
-PAN reconnaissance campaign
-WhatsApp worm in Brazil
-SideWinder's Operation SouthNet
-PRISONBREAK info op linked to Israel
-New ZeroDay Cloud hacking contest
-New Zimbra zero-day

1 1 5

Gate 15 @gate15.bsky.social · 5d

Today in the SUN, we feature an article from Industrial Cyber on the ENISA 2025 Threat Landscape report highlighting that the EU faces escalating hacktivist attacks and state-aligned cyber threats.

Read more below:
industrialcyber.co/reports/enis...

#cybersecurity
@andyjabbour.bsky.social

ENISA 2025 Threat Landscape report highlights EU faces escalating hacktivist attacks and state-aligned cyber threats.

industrialcyber.co

1 4

Gate 15 @gate15.bsky.social · 5d

In the SUN, we cover the Tribal-ISAC releasing its first-ever report, featuring cybersecurity insights, trends and more gathered from three key sources, including our very own CHIEF and NATIVE reports!

Read more below:
www.indiangaming.com/tribal-isac-...

#cybersecurity
@andyjabbour.bsky.social

Tribal-ISAC Unveils Cybersecurity Report

The Tribal Information Sharing and Analysis Center (Tribal-ISAC) released its first-ever report, The Pulse – The State of Cybersecurity Within Tribal Nations.

www.indiangaming.com

1 1 3

Reposted by Gate 15

andy jabbour @andyjabbour.bsky.social · 5d

The new @gate15.bsky.social page on Ransomware Resilience is live! Learn more about how our team can help you prepare for and fight against ransomware and check out our blog posts and related risk mitigation info! gate15.global/blog/ransomw... #ransomware #resilience #cybersecurity

Ransomware | Gate 15

The Evolution of Qilin RaaS

Reposted by Gate 15

andy jabbour @andyjabbour.bsky.social · 5d

New from @bushidotoken.net via SANS: In this blog, we will discuss the evolution of Qilin, a well-known RaaS platform that has been linked to several high-profile ransomware attacks... www.sans.org/blog/evoluti... @gate15.bsky.social #cybersecurity #ransomware

Qilin represents one of the most dangerous and adaptive RaaS threats active today.

www.sans.org

Clop extortion emails claim theft of Oracle E-Business Suite data

Gate 15 @gate15.bsky.social · 6d

Today in the SUN we feature an article from @bleepingcomputer.com on Clop extortion emails claiming theft of Oracle E-Business Suite data.

Read more below:
www.bleepingcomputer.com/news/securit...

#ransomware
@andyjabbour.bsky.social

Mandiant and Google are tracking a new extortion campaign where executives at multiple companies received emails claiming that sensitive data was stolen from their Oracle E-Business Suite systems

Texting and Messaging Scam Attempts Have Increased by 50 Percent, a Consumer Reports Survey Finds - Consumer Reports

1 3

Reposted by Gate 15

Consumer Reports @consumerreports.org · 7d

A key finding: texting and messaging scam attempts have increased by 50 percent, according to a nationally representative CR survey of 2,158 U.S. adults conducted in April 2025. Here’s how to protect yourself:

Texting and messaging scam attempts have increased by 50 percent, according to Consumer Reports' 2025 Cyber Readiness Report

www.consumerreports.org

1 7 6

Reposted by Gate 15

Joe Tidy BBC News @joetidy.bsky.social · 7d

Exclusive: Even in the cut throat world of cyber crime, it seems - there is a line. Hackers delete children's pictures and data after nursery attack backlash. www.bbc.co.uk/news/article...

Hackers delete data stolen in nursery cyber-attack after backlash

The hackers tell the BBC they are sorry for their actions - but experts say it's a practical rather than moral move.

www.bbc.co.uk

3 5 19

Reposted by Gate 15

BleepingComputer @bleepingcomputer.com · 7d

Mandiant and Google are tracking a new extortion campaign where executives at multiple companies received emails claiming that sensitive data was stolen from their Oracle E-Business Suite systems

Emails claim Oracle data theft in new Clop-linked extortion campaign

Mandiant and Google are tracking a new extortion campaign where executives at multiple companies received emails claiming that sensitive data was stolen from their Oracle E-Business Suite systems

U.S. cybersecurity was bad during the first Trump administration. Somehow, it’s getting worse

2 7 14

Reposted by Gate 15

andy jabbour @andyjabbour.bsky.social · 6d

“I think our adversaries are having a field day.” - @k8em0.bsky.social speaking with
@robpegoraro.com in @fastcompany.com, 'U.S. cybersecurity was bad during the first Trump administration. Somehow, it's getting worse' www.fastcompany.com/91411935/cyb... #cybersecurity @gate15.bsky.social

Workforce cuts and vindictive treatment of former cyber officials have experts worried.

www.fastcompany.com

1 3

Reposted by Gate 15

andy jabbour @andyjabbour.bsky.social · 6d

Today is Yom Kippur; the holiest day in the Jewish calendar. Two dead in Manchester synagogue attack, with suspect also believed to have been killed - police. www.bbc.com/news/live/cx... cc @gate15.bsky.social #Manchester #YomKippur #Jewish #faith #security

Manchester synagogue: Two dead in Manchester synagogue attack, with suspect also believed to have been killed - police

Keir Starmer says the attack happening on Yom Kippur - the holiest day in the Jewish calendar - makes it

www.bbc.com

A Bullet Crashed the Internet in Texas

Reposted by Gate 15

andy jabbour @andyjabbour.bsky.social · 6d

At @gate15.bsky.social we use the term 'blended threats' to describe threats from one domain that can have x-over impacts to another. We tend to think of cyber to physical, but it goes both & in other, ways. New from @mjgault.bsky.social: A Bullet Crashed the Internet www.404media.co/a-bullet-cra...

A ‘stray bullet’ 25,000 people offline near Dallas.

www.404media.co

1 2

Gate 15 @gate15.bsky.social · 7d

Today in the SUN we feature an article from Trustwave on SpiderLabs ransomware tracker update for September 2025.

Read more below:
www.trustwave.com/en-us/resour...

#cybersecurity
@andyjabbour.bsky.social

SpiderLabs Ransomware Tracker Update September 2025: Qilin, Akira Top Ransomware Attackers

The threat groups Qilin and Akira together conducted about one-quarter of the 402 ransomware attacks tracked by Trustwave SpiderLabs in September.

www.trustwave.com

1 2

Gate 15 @gate15.bsky.social · 8d

Our latest edition of Nerd Out is out now! In this episode, Dave and Alec discuss a series of hostile events and what it means for outdoor events! Our podcast is available right now on streaming services, go check it out!

#cybersecurity
@andyjabbour.bsky.social
gate15.global/nerd-out-ep-62

Nerd Out EP 62. A series of hostile events and what it means for outdoor events and facilities | Gate 15