0A9F E785 1857 50AD 05CA A188 A708 1DB6 7F35 2F2A

Infosec bits for 2025 week 43

Anele Siwela | Oct. 24, 2025, 3:34 p.m.

Cybersecurity News

  • The Cybersecurity Perception Gap: Why Executives and Practitioners See Risk Differently [The Hacker News, The Hacker News]
  • Students celebrate Cybersecurity Awareness Month [By Injy Wasfy, The Bradley Scout]
  • Africa Tech Festival 2025 Cybersecurity: Important Things To Know [Travel And Tour World, Travel And Tour World]
  • Cybersecurity Month perspective: Why AML and cybersecurity are critical to Africa’s crypto future [iol, iol]

    • Cyberattacks:

  • Volkswagen Allegedly Hit by Ransomware Attack as 8Base Claims Sensitive Data Theft [Guru Baran, Cyber Security News]
  • Infrastructure gaps expose SA firms to cyber attacks [Nicola Mawson, It Web]
  • New Fileless Remcos Attacks Bypassing EDRs Malicious Code into RMClient [Tushar Subhra Dutta, Cyber Securitynews]
  • Cybersecurity experts warn OpenAI’s ChatGPT Atlas is vulnerable to attacks that could turn it against a user—revealing sensitive data, downloading malware, or worse [Beatrice Nolan, Fortune]

    • Vulnerabilities & Patches:

  • Lanscope Endpoint Manager vulnerability exploited in zero-day attacks (CVE-2025-61932) [Zeljka Zorz, Help Net Security]
  • Microsoft Releases Emergency Patch For Windows Server Update Service RCE Vulnerability [https://cybersecuritynews.com/wsus-rce-vulnerability/, Cybersecurity News]
  • Samsung Galaxy S25 0-Day Exploit Enables Camera Access and Tracking [AnuPriya, Cyber Press]
  • Counter Ransomware Initiative stresses importance of supply-chain security [Alexander Martin, The Record]
  • Unmasking MuddyWater’s New Malware Toolkit Driving International Espionage [Mahmoud Zohdy, Mansour Alhmoud, Group IB]
  • Microsoft Digital Defense Report 2025: Extortion and Ransomware Drive Over Half of Cyberattacks [Jana Cvetko, News Microsoft]
  • Baohuo Android Malware Hijacks Telegram Accounts via Fake Telegram X [Waqas, Hack Read]
  • Ransomware Actors Targeting Global Public Sectors and Critical Infrastructure [Mayura Kathir, gbhackers]
  • Malware Detected on South Africa’s Treasury Infrastructure Portal Amid Growing Cybersecurity Risks [Kay-Lyne Wolfenden, Tech Africa News]

    • Contact Us:

    csirt {at} sanren.ac.za

    CSIRT:

    0xA7081DB67F352F2A

    Heloise:

    0xD367253D12C5BBBC

    Kgwadi:

    0xDD7E5C2E539972EB

    Maajied:

    0xEE9BE86AD16D89C2

    Zoya:

    0x14D11B78C23A3DEF

    Anele:

    0x14051F49DCC9C3DE