0A9F E785 1857 50AD 05CA A188 A708 1DB6 7F35 2F2A

Infosec bits for 2025 week 46

Heloise Meyer | Nov. 14, 2025, 4:51 p.m.

Cybersecurity News:

  • Agentic AI in Cybersecurity: Beyond Triage to Strategic Threat Hunting [Pierluigi Paganini, Security Affairs]
  • Who Owns the Cybersecurity of Space? [Maryam Shoraka, Bank Info Security]
  • Why shadow AI could be your biggest security blind spot [Phil Muncaster, ESET]
  • How TTP-based Defenses Outperform Traditional IoC Hunting [Etay Maor, Security Week]
  • Automation can’t fix broken security basics [Anamarija Pogorelec, Help Net Security]

    • Vulnerabilities & Patches:

  • Sophisticated threat actor targeting zero-day flaws in Cisco ISE and Citrix [David Jones, Cybersecurity Dive]
  • Firefox 145 and Chrome 142 Patch High-Severity Flaws in Latest Releases [Ionut Arghire, Security Week]
  • Microsoft November 2025 Patch Tuesday fixes 1 zero-day, 63 flaws [Lawrence Abrams, Bleeping Computer]

    • Cyberattacks:

  • Quantum Route Redirect: Anonymous Tool Streamlining Global Phishing Attack [KnowBe4, KnowBe4]
  • Over 67,000 Fake npm Packages Flood Registry in Worm-Like Spam Attack [Ravie Lakshmanan, the Hacker News]
  • We opened a fake invoice and fell down a retro XWorm-shaped wormhole [Pieter Arntz, Malwarebytes Labs]

    • Malware:

  • New Danabot Windows version appears in the threat landscape after May disruption [Security Affairs]
  • How a CPU spike led to uncovering a RansomHub ransomware attack [Bleeping Computer, Bleeping Computer]

    • Tooling:

  • sqlmap: Open-source SQL injection and database takeover tool [Sinisa Markovic, Help Net Security]

    • Contact Us:

    csirt {a} sanren.ac.za

    CSIRT:

    0xA7081DB67F352F2A

    Heloise:

    0xD367253D12C5BBBC

    Kgwadi:

    0xDD7E5C2E539972EB

    Zoya:

    0x14D11B78C23A3DEF

    Anele:

    0x14051F49DCC9C3DE

    This website uses cookies to ensure you get the best experience on our site. Learn more