RadioCSIRT - Your Daily Cyber Security Brief

Your Daily Cyber Security News for Saturday, November 1, 2025 (Ep.472)

Play Episode Pause Episode

Mute/Unmute Episode Rewind 10 Seconds 1x Fast Forward 30 seconds

00:00 /

RSS Feed

Share

Link

Embed

Welcome to your daily cybersecurity Podcast 💀🎃

🐉 Lanscope — Zero-Day Exploited by Chinese Threat Actors
Hackers linked to China have exploited a zero-day vulnerability in Lanscope, a Japanese network management software.
The flaw allowed unauthorized access to internal systems.
According to research from BleepingComputer, the campaign primarily targeted governmental and industrial organizations in Asia.

🐧 Linux — New Critical Vulnerability
A newly discovered vulnerability in the Linux kernel allows local privilege escalation.
Attackers could exploit it to compromise server systems.
Maintainers recommend immediate updates across all affected environments.

💀 Akira Ransomware — Ongoing Expansion
The Akira group continues to target organizations in the industrial and educational sectors.
Recent attacks exploit unpatched VPNs to infiltrate networks before encrypting systems.
Operators maintain an active dark web infrastructure to leak stolen data.

🧩 SonicWall — Multiple Vulnerabilities
CERT-FR warns of several critical flaws in SonicWall that may enable remote code execution and firewall compromise.
Multiple SonicOS versions are affected and must be patched immediately to prevent mass exploitation.

☁️ Red Hat — Important Security Fixes
Red Hat has released security updates for multiple critical components, including the kernel, systemd, and OpenSSL.
These patches address vulnerabilities that could lead to remote compromise or denial-of-service attacks.

📬 Dovecot — Authentication Flaw
A vulnerability in the Dovecot IMAP/POP3 server could allow attackers to bypass certain authentication checks in specific configurations.
Administrators are urged to update to the latest stable version without delay.

⚡️ Don’t think — just patch! 🎃

📚 Sources:

• BleepingComputer — https://www.bleepingcomputer.com/news/security/china-linked-hackers-exploited-lanscope-flaw-as-a-zero-day-in-attacks/
• CERT-FR — https://www.cert.ssi.gouv.fr/avis/CERTFR-2025-AVI-0946/
• CERT-FR — https://www.cert.ssi.gouv.fr/avis/CERTFR-2025-AVI-0942/
• CERT-FR — https://www.cert.ssi.gouv.fr/avis/CERTFR-2025-AVI-0950/
• CyberPress — https://cyberpress.org/akira-ransomware-group/
• CyberPress — https://cyberpress.org/linux-vulnerability/
  

📞 Share your feedback:
📧 radiocsirt@gmail.com
🌐 www.radiocsirt.com
📰 radiocsirt.substack.com

#CyberSecurity #Akira #Linux #RedHat #SonicWall #Dovecot #Lanscope #APT #CERTFR #RadioCSIRT #Ransomware #Infosec #SOC #CERT #CTI 🎧💀