Cyber security news October 2025

This posting is here to collect cyber security news in October 2025.

I post links to security vulnerability news to comments of this article.

You are also free to post related links to comments.

68 Comments

  1. Tomi Engdahl says:

    449 miljardia sivua valtion dataa paloi poroksi – Ei varmuuskopiota
    Justus Vento8.10.202511:41|päivitetty8.10.202511:42PalvelimetKonesalit
    Datakeskus paloi, ja niin paloi serverien sisältökin.
    https://www.tivi.fi/uutiset/a/0702a00d-e32e-41b9-9693-b12e0b2f60fd

    Datakeskuspalo on voinut tuhota lähes petatavun (858 teratavua) verran valtion dataa Etelä-Koreassa, kertoo Data Center Dynamics -julkaisu. Daejeonissa

    Reply
  2. Tomi Engdahl says:

    Kyberturvakeskukselta vakava varoitus suositusta ohjelmistosta: ”Hyväksikäytön aikajana mitataan tunneissa, ei päivissä”
    Justus Vento8.10.202514:02|päivitetty8.10.202514:02HaavoittuvuudetTietoturva
    Redis-ohjelmiston vakava haavoittuvuus altistaa järjestelmän tietomurrolle ja mielivaltaisen koodin suorittamiselle.
    https://www.tivi.fi/uutiset/a/89311083-3920-4b43-a2a3-b37adb0fd35d

    Reply
  3. Tomi Engdahl says:

    This is future

    AWS crash causes $2,000 Smart Beds to overheat and get stuck upright
    https://www.dexerto.com/entertainment/aws-crash-causes-2000-smart-beds-to-overheat-and-get-stuck-upright-3272251/?fbclid=IwdGRjcANlmD9jbGNrA2WYCGV4dG4DYWVtAjExAAEeHo_YD_gjFt4N-ilyOoxI8vr6hYJp1tdtd2AOPq3Fwe4wTMYTR-w8oDoV7zs_aem_Hx1MopzUl_wBx0aEG0oFCw

    A major Amazon Web Services (AWS) outage on October 20 had the unexpected side effect of causing chaos in bedrooms across the US, as owners of Eight Sleep’s $2,000+ ‘Pod’ mattress covers found their smart beds had no offline mode and were stuck at high temperatures and odd positions in the night

    The outage began around 3 am ET, when AWS reported “increased error rates and latencies” in its US-EAST-1 region. By mid-morning, Downdetector had logged more than eight million reports of disruptions affecting apps, games, and banking platforms.

    “Backend outage means I’m sleeping in a sauna,” he wrote. “Eight Sleep confirmed there’s no offline mode yet, but they’re working on it.”

    Reply
  4. Tomi Engdahl says:

    Buffer Over-read when receiving improperly sized ICMPv6 packets
    https://aws.amazon.com/security/security-bulletins/rss/aws-2025-023/

    Reply
  5. Tomi Engdahl says:

    DDoS Botnet Aisuru Blankets US ISPs in Record DDoS
    https://krebsonsecurity.com/2025/10/ddos-botnet-aisuru-blankets-us-isps-in-record-ddos/

    The world’s largest and most disruptive botnet is now drawing a majority of its firepower from compromised Internet-of-Things (IoT) devices hosted on U.S. Internet providers like AT&T, Comcast and Verizon, new evidence suggests. Experts say the heavy concentration of infected devices at U.S. providers is complicating efforts to limit collateral damage from the botnet’s attacks, which shattered previous records this week with a brief traffic flood that clocked in at nearly 30 trillion bits of data per second.

    Since its debut more than a year ago, the Aisuru botnet has steadily outcompeted virtually all other IoT-based botnets in the wild, with recent attacks siphoning Internet bandwidth from an estimated 300,000 compromised hosts worldwide.

    Reply
  6. Tomi Engdahl says:

    Paniikki Kiinassa: Taivaalta satoi sadoittain palavia drooneja ihmisten päälle valtavana tulimyrskynä
    Tapaus sattui ”Kiinan ilotulitepääkaupungissa”, jonka lähiseudulla valmistetaan jopa puolet koko maailman ilotulitteista.
    https://www.tekniikkatalous.fi/uutiset/a/0a19b50a-45a5-4e26-a7f1-547900a61e93

    Reply
  7. Tomi Engdahl says:

    https://blog.xkcd.com/2009/09/02/urinal-protocol-vulnerability/

    Reply
  8. Tomi Engdahl says:

    https://www.iflscience.com/skynet-1a-military-spacecraft-launched-56-years-ago-has-been-moved-by-persons-unknown-81136

    Reply
  9. Tomi Engdahl says:

    AWS outage crashes Amazon, Prime Video, Fortnite, Perplexity and more
    https://www.bleepingcomputer.com/news/technology/aws-outage-crashes-amazon-prime-video-fortnite-perplexity-and-more/

    Reply
  10. Tomi Engdahl says:

    https://mjg59.dreamwidth.org/73625.html
    Where are we on XChat security?
    Oct. 20th, 2025 03:45 pm
    [personal profile] mjg59
    AWS had an outage today and Signal was unavailable for some users for a while. This has confused some people, including Elon Musk, who are concerned that having a dependency on AWS means that Signal could somehow be compromised by anyone with sufficient influence over AWS (it can’t). Which means we’re back to the richest man in the world recommending his own “X Chat”, saying The messages are fully encrypted with no advertising hooks or strange “AWS dependencies” such that I can’t read your messages even if someone put a gun to my head.

    Elon is either uninformed about his own product, lying, or both.

    Reply
  11. Tomi Engdahl says:

    End of the Road
    Man Launches “World’s First Waymo DDoS” by Ordering 50 Robotaxis to Dead End Street
    “That’s Waymo than they accounted for.”
    https://futurism.com/future-society/waymo-ddos-dead-end

    Reply
  12. Tomi Engdahl says:

    A safer way to break industrial systems (on purpose)
    Cybersecurity teams often struggle to test defenses for industrial control systems without risking disruption. A group of researchers from Curtin University has developed a way to make that easier. Their work introduces a container-based framework that lets researchers and practitioners simulate real control system environments and run cyberattacks on them safely.
    https://www.helpnetsecurity.com/2025/10/15/industrial-control-system-simulation-cybersecurity/

    Reply
  13. Tomi Engdahl says:

    Järkyttävä aukko löytyi suositusta tekoälystä – Toimii naurettavan helposti: Näin rikollinen voi saada kotisi haltuun, jopa avata ovat ja ikkunat
    Googlen Gemini-tekoälystä paljastui uudenlainen tekoälyn kielimallia hyödyntävä kehotehyökkäys. Sitä voitaisiin käyttää pahimmillaan jopa kotiin murtautumiseen.
    https://www.iltalehti.fi/digiuutiset/a/c7992562-6731-4f18-b1e9-2900ff478508

    Reply
  14. Tomi Engdahl says:

    Tutkimuksen kauhistuttava löydös: Tekoäly yhdistyy pelottavaan persoonallisuus­piirteeseen
    Tutkimuksen mukaan tekoälyn aktiivikäyttäjät eroavat muista persoonallisuuspiirteiltään.
    https://www.tivi.fi/uutiset/a/8b472a88-27ae-43d7-882c-42aa1ef580d2

    Reply
  15. Tomi Engdahl says:

    Eight Sleep apologized after an AWS outage made its $3,000 pods malfunction—blaring alarms, freezing users, and forcing some to the floor.
    https://www.facebook.com/share/p/1JpCpg92hF/
    #AWS #outage #malfunction #iot #CyberSecurity #2600net #irc #secnews

    Reply
  16. Tomi Engdahl says:

    Miten Louvren ryöstö oli mahdollinen? ”Kaikilla on leuka loksahtanut,” sanoo Suomen kansallismuseon museopalvelujohtaja
    Ryöstäjät murtautuivat Louvreen sen aukioloaikana ja onnistuivat viemään mittaamattoman arvokkaita jalokivikoruja
    https://yle.fi/a/74-20189242

    Reply
  17. Tomi Engdahl says:

    Nostinfirma julkaisi härskin mainoksen – somessa riemastuttiin
    https://www.is.fi/ulkomaat/art-2000011580531.html

    Reply
  18. Tomi Engdahl says:

    Videoanalyysi: Koko maailma ihmettelee, miten helposti Louvren ryöstö onnistui
    Louvren museon murto ja varkaus osoittavat, miten Ranska on laiminlyönyt museoidensa turvallisuutta, kirjoittaa Ylen Ranskan-toimittaja Miina Väisänen.
    Videoanalyysi: Koko maailma ihmettelee, miten helposti Louvren ryöstö onnistui | Uutisia lyhyesti | Yle https://share.google/YLSRzZnN0s5TzCPWb

    Reply

Leave a Comment

Your email address will not be published. Required fields are marked *

*

*