Cyber Attack News - Risk Roundup - October 2025
The monthly cyber risk roundup highlighting key news, attacks, and actionable insights from the world of cybersecurity.| Xage Security
The monthly cyber risk roundup highlighting key news, attacks, and actionable insights from the world of cybersecurity.| Xage Security
In the time it takes to read this paragraph—less than a minute—thousands of cyberattacks will have struck systems across the world. Financial institutions remain among the most targeted, facing roughly a third of all global DDoS and web application attacks. For Chief Information Security Officers (CISOs) across Europe’s banking, financial services, and insurance (BFSI) sector, the mission is no longer limited to defending against known threats. It’s about anticipating t...| Cyble Podcast | Cybersecurity & Threat Intelligence Insights
The South Korea-aligned cyber espionage group APT-C-60 continued its aggressive targeting of Japanese organizations throughout Q3 2025, deploying three updated versions of its SpyGlace backdoor with enhanced capabilities and improved evasion techniques. JPCERT/CC's latest analysis reveals that attacks between June and August employed refined delivery mechanisms, more sophisticated victim tracking methods, and modified encryption schemes designed to complicate detection and analysis. Unl...| Cyble Podcast | Cybersecurity & Threat Intelligence Insights
Europe's ransomware problem isn't getting better! Q3 2025 saw 288 attacks hammer organizations across the region, with Qilin claiming 65 victims and cementing its position as the most aggressive threat actor targeting the continent. But it's SafePay's meteoric rise to second place—and a devastating airport attack that rippled across multiple countries—that has security teams particularly worried about what's coming next. The numbers tell a sobering story in Cyble's latest report, “E...| Cyble Podcast | Cybersecurity & Threat Intelligence Insights
The F5 breach is the latest proof that legacy VPNs and jump servers can’t secure OT. Learn how Zero Trust access helps critical infrastructure stay resilient.| Xage Security
Europol disrupts SIM-box fraudsters, Jingle Thief exploits cloud identities for gift card theft, and PhantomCaptcha targets Ukrainian NGOs.| SentinelOne
DOJ seizes $15B in crypto, DPRK hackers steal cryptocurrency via EtherHiding, and Microsoft Defender flaws could lead to theft of sensitive data.| SentinelOne
Teens arrested for doxing children, Crimson Collective steals cloud data to extort victims, 5.5M Discord accounts face public leak threat.| SentinelOne
Discover how Xage helps maritime operators meet new U.S. Coast Guard cybersecurity requirements. Learn how to secure IT-OT systems, ensure compliance, and maintain operations even in disconnected environments.| Xage Security
Learn how Xage Security enables fast, verifiable NIS2 compliance through identity-first Zero Trust access, segmentation, and tamper-proof audit logging.| Xage Security
CISA’s latest emergency directive on Cisco ASA VPNs highlights the growing risks of legacy remote access. Learn why VPNs and jump servers continue to fail, and how organizations are embracing Zero Trust Access to build secure, future-ready OT architectures.| Xage Security
UK convicts "Bitcoin Queen", threat actors exploit cellular routers in Smishing campaigns, and trio of flaws in Gemini turn AI into attack vehicle.| SentinelOne
Cops make quick arrest after attack on airports, DPRK adversaries team up to weaponize developer identities, and PRC targets edge devices in US companies.| SentinelOne
Courts jail BreachForums operator, China’s TA415 ramps up phishing espionage, and Chaos Mesh flaws risk full Kubernetes cluster takeovers.| SentinelOne
U.S. makes major arrests and sanctions, GhostAction steals 1000s of GitHub secrets, China-linked hackers target political communications.| SentinelOne
