Welcome to your RadioCSIRT daily cybersecurity briefing β‘οΈ
π±βπ€ Apache Tomcat β Multiple Vulnerabilities
Several flaws affect Tomcat (10.1.x < 10.1.47, 11.0.x < 11.0.12, 9.0.x < 9.0.110), potentially leading to code execution, denial of service (DoS), and security policy bypass. Updates required.
π§ Kali Linux β 2025.3
New snapshot featuring 10 new tools, major wireless improvements (including Nexmon on Raspberry Pi), and refreshed images/VMs.
𧩠WordPress β CVE-2025-4665 (CFDB7)
A vulnerability in the Contact Form CFDB7 plugin allows SQL Injection and PHP Object Injection. Update or disable the plugin if itβs no longer maintained.
π AISURU β Record-Breaking DDoS Attacks
The AISURU botnet has been linked to DDoS attacks peaking at 20 Tbps against consumer targets, operating under a βDDoS-for-hireβ model. Strengthen your scrubbing/anycast capabilities.
π£ Phishing β Invisible Character Obfuscation
Recent campaigns use invisible characters in subject lines to evade filters and detection. Review normalization and detection rules at the gateway level.
ποΈ United Nations β Cybercrime Treaty
The United States declined to sign the new UN cybercrime treaty, despite over 70 countries signing it in Hanoi. This may impact international cooperation and mutual legal assistance.
π CISA KEV β Additions from October 28, 2025
Two vulnerabilities in Dassault Systèmes DELMIA Apriso were added to the KEV catalog: CVE-2025-6204 (code injection) and CVE-2025-6205 (missing authorization). Prioritize patching.
β‘οΈ Donβt think, just patch!
π Sources:
https://www.cert.ssi.gouv.fr/avis/CERTFR-2025-AVI-0933/
https://www.linuxjournal.com/content/kali-linux-20253-lands-enhanced-wireless-capabilities-ten-new-tools-infrastructure-refresh
https://cvefeed.io/vuln/detail/CVE-2025-4665
https://securityaffairs.com/183969/malware/aisuru-botnet-is-behind-record-20tb-sec-ddos-attacks.html
https://cyberpress.org/phishing-attack/
https://therecord.media/us-declines-signing-cybercrime-treaty
https://www.cisa.gov/news-events/alerts/2025/10/28/cisa-adds-two-known-exploited-vulnerabilities-catalog
π Share your feedback:
π§ radiocsirt@gmail.com
π www.radiocsirt.com
π° radiocsirtinl.substack.com
#CyberSecurity #ApacheTomcat #KaliLinux #WordPress #CFDB7 #AISURU #Phishing #CybercrimeTreaty #CISA #CVE20256204 #CVE20256205 #CVE202555752 #CVE202555754 #CVE202561795 #CVE20254665 #RadioCSIRT