Microsoft has issued its November 2025 Patch Tuesday, fixing 63 vulnerabilities, including a high-priority zero-day flaw that’s currently exploited. This crucial update provides five critical and 64 important fixes, vital for organizations to strengthen their defenses. The updates span key products like SQL Server, Windows Hyper-V, Visual Studio, Windows Kernel, …
Read More »Cisco Warns Actively Exploiting ASA and FTD 0-day RCE Vuln
Cisco alerted the customer that hackers are exploiting a serious remote code execution flaw in its Secure Firewall ASA and Threat Defense software. First disclosed on September 25, 2025, the vulnerability tracked as CVE-2025-20333 poses a severe risk to organizations relying on these firewalls for VPN access. With a CVSS …
Read More »HackedGPT: 7 New Vulns in GPT-4o and GPT-5 Enables 0-Click Attacks
Tenable researchers found 7 new vulnerabilities in OpenAI’s ChatGPT, putting users at risk of data theft and safety breaches through new attacks on AI systems dubbed HackedGPT. Flaws known as HackedGPT were found during testing of OpenAI’s ChatGPT-4o and some persist in ChatGPT-5. OpenAI has fixed some issues, but others …
Read More »IBM to Cut Thousand Jobs in Q4 Amid AI-Driven Restructuring
IBM is planning to lay off thousands of employees this year. Many Big Tech companies are making similar job cuts as they adapt to the AI era. Bloomberg reported on the 4th (local time) that IBM is reviewing workforce adjustments in the fourth quarter to focus on its software sector. …
Read More »“SesameOp” Malware Abuses OpenAI Assistants API for C2
Microsoft reports that a threat actor exploited the OpenAI Assistants API to communicate between a command-and-control server and a hidden backdoor. The backdoor called SesameOp was used in a complex attack, allowing the attacker to access the compromised system for months through a network of web shells. The commands, Microsoft says, …
Read More »Windows,VMware zero day and Linux flaw exploited: Australia warn unpatched Cisco IOS XE devices
In recent time, Hacker exploited Windows, VMware and Linux flaw. On another side, Australia warn about of BadCandy infections on unpatched Cisco devices. VMware:Â CISA added a serious security flaw affecting Broadcom VMware Tools and VMware Aria Operations to its Known Exploited Vulnerabilities list after reports of ongoing exploitation. The …
Read More »OpenAI to offer ChatGPT Go free for a year in India
OpenAI will provide its ChatGPT Go subscription for free to users in India for one year starting November 4. This move aims to increase adoption in the country’s second-largest market. OpenAI’s budget plan, launched in India in August, costs 399 rupees ($4.54) monthly. ChatGPT Go offers 10 times more usage …
Read More »Hackers exploited Samsung Galaxy S25 0-day vuln allowing camera access and location tracking
At Pwn2Own Ireland 2025, researchers Ben R. and Georgi G. from Interrupt Labs demonstrated their success in exploiting a zero-day vulnerability in the Samsung Galaxy S25. They gained complete control of the device, allowing them to activate the camera and track the user’s location. The exploit, revealed on the event’s final …
Read More »Hackers Exploited 34 Zero-Day Vulns In Pwn2Own Ireland 2025
During the first day of the Pwn2Own Ireland 2025 hacking contest by Trend Micro’s Zero Day Initiative, participants earned $522,500 for their exploits. 34 new vulnerabilities have been used to hack printers, NAS devices, routers, and smart home products. The top prize of $100,000 was given in the ‘SOHO Smashup’ …
Read More »NSO to be acquired by U.S. investors, ending Israeli control of Pegasus
NSO is to be acquired by U.S. investors, ending Israeli control of the Pegasus maker. Hollywood producer Robert Simonds is leading the deal, which is awaiting regulatory approval from Israel and the U.S. Control of NSO Group will soon shift from Israeli ownership to American investors led by Hollywood producer …
Read More »
InfoSecBulletin Cybersecurity for mankind