News for September 21, 2025

News for September 21, 2025

By I_g_o_r | Some news | 20 Sep 2025


600 GB of Alleged Great Firewall of China Data Published in Largest Leak Yet

https://hackread.com/great-firewall-of-china-data-published-largest-leak/

 

'WhiteCobra' floods VSCode market with crypto-stealing extensions

https://www.bleepingcomputer.com/news/security/whitecobra-floods-vscode-market-with-crypto-stealing-extensions/

 

Mustang Panda Uses SnakeDisk USB Worm and Toneshell Backdoor to Target Air-Gap Systems

https://gbhackers.com/mustang-panda-uses-snakedisk-usb-worm-and-toneshell-backdoor/

 

Germany To Add More Than 100K Troops To Army In Preparation For War With Russia

https://www.zerohedge.com/military/germany-add-more-100k-troops-army-preparation-war-russia

 

Qrator Labs Mitigated Record L7 DDoS Attack from 5.76M-Device Botnet

https://hackread.com/qrator-labs-mitigate-l7-ddos-attack-5-76m-botnet/

 

Security Flaw on Base Chain Leads to $90,000 Loss

https://www.binance.com/en/square/post/09-14-2025-security-flaw-on-base-chain-leads-to-90-000-loss-29663656168106

 

'learning how to learn' will be next generation's most needed skill

https://techxplore.com/news/2025-09-google-ai-scientist-generation-skill.html

 

UK's Data Watchdog Warns Students Are Breaching Their Schools' IT Systems

https://news.slashdot.org/story/25/09/15/0150246/uks-data-watchdog-warns-students-are-breaching-their-schools-it-systems

 

AI Pentesting Tool ‘Villager’ Merges Kali Linux with DeepSeek AI for Automated Security Attacks

https://gbhackers.com/ai-pentesting-tool-villager-merges-kali-linux-with-deepseek-ai/

 

Unexplained Phenomena Caught on Camera Worldwide

https://www.youtube.com/watch?v=jtFEx2my6xY

https://www.youtube.com/watch?v=Y44qEes8ARU

 

Yala’s YU stablecoin fails to restore peg after ‘attempted attack’

https://cointelegraph.com/news/yala-yu-stablecoin-depegs-after-attack

 

Europe On "High Alert" As Polish Moms Train For War Against Russia

https://www.zerohedge.com/geopolitical/europe-high-alert-polish-moms-train-war-against-russia

 

Request Finance Security Breach Affects Single User

https://www.binance.com/en/square/post/09-15-2025-request-finance-security-breach-affects-single-user-29708501942609

 

AI Triggers 70% Collapse in Fresh Graduate Hiring at India's IT Giants That Employ 5.4 Million

https://slashdot.org/story/25/09/15/0718258/ai-triggers-70-collapse-in-fresh-graduate-hiring-at-indias-it-giants-that-employ-54-million

 

Your Complete Guide to the Best AI Web Scrapers in 2025

https://hasdata.com/blog/best-ai-web-scrapers

 

Trump GOP Redirected Essential Cybersecurity Funding To Give Rich Assholes More Tax Cuts

https://www.techdirt.com/2025/09/15/trump-gop-redirected-essential-cybersecurity-funding-to-give-rich-assholes-more-tax-cuts/

 

How to Spot Malicious Two-Factor Authentication Prompts

https://lifehacker.com/tech/spot-malicious-two-factor-authentication-prompts

 

INC ransom group claimed the breach of Panama’s Ministry of Economy and Finance

https://securityaffairs.com/182203/data-breach/panamas-ministry-of-economy-and-finance-data-breach.html

 

How UFOs Hack Our Reality | Grant Cameron

https://www.youtube.com/watch?v=X-aN3ANI_Vo

 

Starlink outage knocks tens of thousands offline worldwide

https://www.theregister.com/2025/09/15/starlink_outage/

 

Quantum Motion Delivers the Industry’s First Full-Stack Silicon CMOS Quantum Computer

https://thequantuminsider.com/2025/09/15/quantum-motion-delivers-the-industrys-first-full-stack-silicon-cmos-quantum-computer/

 

Denmark's Justice Minister calls encrypted messaging a false civil liberty

https://mastodon.social/@chatcontrol/115204439983078498

 

Hackers Hide RMM Installs as Fake Chrome Updates and Teams Invites

https://hackread.com/hackers-rmm-installs-fake-chrome-updates-teams-invite/

 

Google AI Quantum Chip Just Unlocked a New State of Matter (Parallel Worlds Confirmed!?)

https://www.youtube.com/watch?v=Fz8EL1F9vWA

 

Eight Ways to Make Your Old iPhone Feel New Again

https://lifehacker.com/tech/make-old-iphone-feel-new-again

 

New Censors and Old Decentralized Internet Dreams

https://hackernoon.com/new-censors-and-old-decentralized-internet-dreams

 

Bigme HiBreak Pro Color is a smartphone with an E Ink color display, Android 14, and 5G

https://liliputing.com/bigme-hibreak-pro-color-is-a-smartphone-with-an-e-ink-color-display-android-14-and-5g/

 

Sidewinder Hackers Weaponize Nepal Protests to Spread Cross-Platform Malware

https://gbhackers.com/sidewinder-hackers-2/

 

DiDuLa - "Unique Instrumental Show"

https://www.youtube.com/watch?v=E_9alTXsi_U

 

West Virginia Credit Union Notifying 187,000 People Impacted by 2023 Data Breach

https://www.securityweek.com/west-virginia-credit-union-notifying-187000-people-impacted-by-2023-data-breach/

 

GMOs VS GENETICS

https://gizadeathstar.com/2025/09/gmos-vs-genetics/

 

Generative AI Meets Quantum Advantage in Google’s Latest Study

https://thequantuminsider.com/2025/09/15/generative-ai-meets-quantum-advantage-in-googles-latest-study/

 

K9 Finance offers $23K bounty after $2.4M Shibarium exploit

https://cointelegraph.com/news/k9-finance-23k-bounty-shibarium-bridge-exploit

 

Flamenco, Violin & Accordion

https://www.youtube.com/watch?v=yubipIW_dqs

 

IBM QRadar SIEM Vulnerability Allows Unauthorized Actions by Attackers

https://gbhackers.com/ibm-qradar-siem-vulnerability/

 

The FBI Destroyed an Internet Weapon, but Criminals Picked Up the Pieces

https://www.wsj.com/tech/cybersecurity/the-fbi-destroyed-an-internet-weapon-but-criminals-picked-up-the-pieces-6a278c07

 

China-Linked AI Pentest Tool ‘Villager’ Raises Concern After 10K Downloads

https://hackread.com/china-ai-pentest-tool-villager-10k-downloads/

 

FinWise insider breach impacts 689K American First Finance customers

https://www.bleepingcomputer.com/news/security/finwise-insider-breach-impacts-689k-american-first-finance-customers/

 

Rust-style safety model for C++ 'rejected' as profiles take priority

https://www.theregister.com/2025/09/16/safe_c_proposal_ditched/

 

300 Shocking Moments Of Idiots In Cars Got Instant Karma

https://www.youtube.com/watch?v=IWaIRiI0EJo

 

Self Propagating NPM Malware Compromises over 40 Packages

https://www.stepsecurity.io/blog/ctrl-tinycolor-and-40-npm-packages-compromised

 

Writing an operating system kernel from scratch in Zig

https://www.osnews.com/story/143343/writing-an-operating-system-kernel-from-scratch-in-zig/

 

Windows Secure Boot certificates are expiring, here is everything you need know

https://www.neowin.net/news/windows-secure-boot-certificates-are-expiring-here-is-everything-you-need-know/

 

'FileFix' attacks use fake Facebook security alerts to trick victims into running infostealers

https://www.theregister.com/2025/09/16/filefix_attacks_facebook_security_alert/

 

From Walled Gardens to World Grid: A Short History of How We Centralized the Internet

https://hackernoon.com/from-walled-gardens-to-world-grid-a-short-history-of-how-we-centralized-the-internet

 

Gucci, Balenciaga and Alexander McQueen Breach Linked to ShinyHunters

https://hackread.com/gucci-balenciaga-alexander-mcqueen-breach-shinyhunters/

 

Israel Seizes Wallets Linked to Iranian Revolutionary Guard

https://www.binance.com/en/square/post/09-16-2025-israel-seizes-wallets-linked-to-iranian-revolutionary-guard-29750898775665

 

Windows Users Hit by VenomRAT in AI-Driven RevengeHotels Attack

https://gbhackers.com/venomrat-in-ai-driven/

 

New FileFix attack uses steganography to drop StealC malware

https://www.bleepingcomputer.com/news/security/new-filefix-attack-uses-steganography-to-drop-stealc-malware/

 

Cybercrime group accessed Google Law Enforcement Request System

https://securityaffairs.com/182266/security/cybercrime-group-accessed-google-law-enforcement-request-system-lers.html

 

Disco Songs 80s 90s

https://www.youtube.com/watch?v=cBUDIWYANMo

 

Security Industry Skeptical of Scattered Spider-ShinyHunters Retirement Claims

https://www.securityweek.com/security-industry-skeptical-of-scattered-spider-shinyhunters-retirement-claims/

 

Ongoing FileFix Attack Installs StealC Infostealer Via Fake Facebook Pages

https://hackread.com/filefix-attack-stealc-infostealer-fake-facebook-pages/

 

Criminals broke into the system Google uses to share info with cops

https://www.theregister.com/2025/09/16/google_confirms_crims_accessed_lers/

 

Self-propagating supply chain attack hits 187 npm packages

https://www.bleepingcomputer.com/news/security/self-propagating-supply-chain-attack-hits-187-npm-packages/

 

OQC and Digital Realty Team With NVIDIA to Launch Quantum-AI Data Centre in New York City

https://thequantuminsider.com/2025/09/16/oqc-and-digital-realty-team-with-nvidia-to-launch-quantum-ai-data-centre-in-new-york-city/

 

LG WebOS TV Vulnerability Enables Full Device Takeover by Bypassing Authentication

https://gbhackers.com/lg-webos-tv-vulnerability/

 

How to measure the returns on R&D spending

https://www.technologyreview.com/2025/09/17/1123760/how-to-measure-the-returns-to-rd-spending/

 

The Super Soldiers Defending the Kuiper Belt

https://www.youtube.com/watch?v=XLhMi6YEhsQ

 

MuddyWater Deploys Custom Multi-Stage Malware Hidden Behind Cloudflare

https://gbhackers.com/muddywater/

 

Microsoft Shuts Down RaccoonO365 Phishing Ring, Seizes 338 Websites

https://hackread.com/microsoft-shuts-down-raccoono365-phishing-seizes-sites/

 

Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker

https://www.securityweek.com/details-emerge-on-chinese-hacking-operation-impersonating-us-lawmaker/

 

Microsoft OneDrive Auto-Sync Flaw Leaks Enterprise Secrets from SharePoint Online

https://gbhackers.com/microsoft-onedrive-auto-sync-flaw/

 

The Baseball Card Bubble

https://dailyreckoning.com/the-baseball-card-bubble/

 

Google nukes 224 Android malware apps behind massive ad fraud campaign

https://www.bleepingcomputer.com/news/security/google-nukes-224-android-malware-apps-behind-massive-ad-fraud-campaign/

 

'Self-dealing, dressed up as capital deployment': Crypto treasury craze divides the industry

https://www.theblock.co/post/366625/self-dealing-dressed-up-as-capital-deployment-crypto-treasury-craze-divides-the-industry

 

New Shai-hulud Worm Infecting npm Packages With Millions of Downloads

https://hackread.com/shai-hulud-worm-infecting-npm-packages-download/

 

BeaverTail Malware Delivered Through Malicious Repositories Targets Retailers

https://gbhackers.com/beavertail-malware/

 

SonicWall warns customers to reset credentials after breach

https://www.bleepingcomputer.com/news/security/sonicwall-warns-customers-to-reset-credentials-after-MySonicWall-breach/

 

How to Motivate Yourself To Do A Thing You Don't Want to Do

https://ashleyjanssen.com/how-to-motivate-yourself-to-do-a-thing-you-dont-want-to-do/

 

Cyber attack on an association of mountain guides in France

https://www.ledauphine.com/faits-divers-justice/2025/08/16/une-cyberattaque-cible-la-compagnie-des-guides-le-jour-de-sa-fete

 

UK telco Colt’s recovery from August cyberattack pushes into November

https://www.theregister.com/2025/09/17/uk_telco_colts_cyberattack_recovery/

 

Capitalism is Finished & a "Blackout Shock" is Coming | E.B. Tucker

https://www.youtube.com/watch?v=O3SRV06v-68

 

From ClickFix to MetaStealer: Dissecting Evolving Threat Actor Techniques

https://www.bleepingcomputer.com/news/security/from-clickfix-to-metastealer-dissecting-evolving-threat-actor-techniques/

 

These Sights Are Getting Crazier And No One Can Explain

https://www.youtube.com/watch?v=clrebuZLf0w

 

Crypto whale loses $6M to sneaky phishing scheme targeting staked Ethereum

https://cryptoslate.com/crypto-whale-loses-6m-to-sneaky-phishing-scheme-targeting-staked-ethereum/

 

New Raven Stealer Malware Hits Browsers for Passwords and Payment

https://hackread.com/raven-stealer-malware-browsers-passwords-payment-data/

 

VC giant Insight Partners warns thousands after ransomware breach

https://www.bleepingcomputer.com/news/security/vc-giant-insight-partners-warns-thousands-after-ransomware-breach/

 

The Scouring Of The American Middle Class

https://www.zerohedge.com/personal-finance/scouring-american-middle-class

 

Insight Partners confirms ransomware hit, more than 12,000 caught in data dragnet

https://www.theregister.com/2025/09/18/vc_giant_insight_partners_confirms/

 

ShinyHunters claims 1.5 billion Salesforce records stolen in Drift hacks

https://www.bleepingcomputer.com/news/security/shinyhunters-claims-15-billion-salesforce-records-stolen-in-drift-hacks/

 

Bragg Gaming Group Announces Cyber Security Incident

https://investors.bragg.group/pr/news-details/2025/Bragg-Gaming-Group-Announces-Cyber-Security-Incident/default.aspx

 

Snowballing Lotte Card hack puts millions at risk

https://www.koreaherald.com/article/10577697

 

Startup wisdom: Why resilience is the most underrated metric in startup success

https://thenextweb.com/news/startup-wisdom-resilience-importance

 

Scattered Spider gang feigns retirement, breaks into bank instead

https://www.theregister.com/2025/09/17/scattered_spider_bank_attack/?td=rt-3a

 

Scammers are faking cell towers now; Americans bad at spotting scams

https://9to5mac.com/2025/09/18/scammers-are-faking-cell-towers-now-americans-bad-at-spotting-scams/

 

Online Ratings And Reviews Have Lost Trust, My View As A Product Person

https://hackernoon.com/online-ratings-and-reviews-have-lost-trust-my-view-as-a-product-person

 

The Intel Backdoor Nobody Can Remove

https://www.youtube.com/watch?v=ZpXkJqTAY5Y

 

Cybercriminals Have a Weird New Way to Target You With Scam Texts

https://www.wired.com/story/sms-blasters-scam-texts/

 

BMW Reportedly Hit by Everest Ransomware, Internal Files Stolen

https://gbhackers.com/bmw-reportedly-hit-by-everest-ransomware/

 

Fake Empire Podcast Invites Target Crypto Industry with macOS AMOS Stealer

https://hackread.com/fake-empire-podcast-invites-crypto-macos-amos-stealer/

 

Iranian State APT Blitzes Telcos & Satellite Companies

https://www.darkreading.com/cyberattacks-data-breaches/iranian-state-apt-telcos-satellite-companies

 

Threat Actor Infests Hotels With New RAT

https://www.securityweek.com/threat-actor-infests-hotels-with-new-rat/

 

WatchGuard warns of critical vulnerability in Firebox firewalls

https://www.bleepingcomputer.com/news/security/watchguard-warns-of-critical-vulnerability-in-firebox-firewalls/

 

Qilin Ransomware Attack Impacts 104 Organizations in August

https://gbhackers.com/qilin-ransomware/

 

Tiffany Data Breach Impacts Thousands of Customers

https://www.securityweek.com/tiffany-data-breach-impacts-thousands-of-customers/

 

A new study finds AI tools are often unreliable, overconfident and one-sided

https://techxplore.com/news/2025-09-ai-tools-unreliable-overconfident-sided.html

 

SystemBC malware turns infected VPS systems into proxy highway

https://www.bleepingcomputer.com/news/security/systembc-malware-turns-infected-vps-systems-into-proxy-highway/

 

CZ sounds alarm as ‘SEAL’ team uncovers 60 fake IT workers linked to North Korea

https://cointelegraph.com/news/cz-crypto-seal-60-north-korean-hackers

 

Luxury Jeweler Tiffany Reports Data Breach Exposing User Personal Data

https://gbhackers.com/luxury-jeweler-tiffany-reports-data-breach/

 

China Seeks to Replace USD in Hong Kong

https://www.zerohedge.com/news/2025-09-18/news-china-seeks-replace-usd-hong-kong

 

British Citizen Charged in Extensive Cybercrime Case Involving U.S. Entities

https://www.binance.com/en/square/post/09-19-2025-british-citizen-charged-in-extensive-cybercrime-case-involving-u-s-entities-29878384091705

 

Target-rich environment: Why Microsoft 365 has become the biggest risk

https://www.bleepingcomputer.com/news/security/target-rich-environment-why-microsoft-365-has-become-the-biggest-risk/

 

ShadowLeak: Radware Uncovers Zero-Click Attack on ChatGPT

https://securityaffairs.com/182334/hacking/shadowleak-radware-uncovers-zero-click-attack-on-chatgpt.html

 

Scattered Spider teen cuffed after buying games and meals with extortion bitcoin

https://www.theregister.com/2025/09/19/scattered_spider_teen_cuffed/

 

HubSpot’s Jinjava Engine Flaw Exposes Thousands of Sites to RCE Attacks

https://gbhackers.com/hubspots-jinjava-engine-flaw/

 

Classical Music for Brain Power

https://www.youtube.com/watch?v=B7y6Usivc0k

 

U.S. Government Shutdown Likely, Market Predicts

https://www.binance.com/en/square/post/09-19-2025-u-s-government-shutdown-likely-market-predicts-29901745825394

 

Cyber Expert Warns China Could Remotely Detonate Aussie EVs In Hybrid Warfare Campaign

https://www.zerohedge.com/technology/cyber-expert-warns-china-could-remotely-detonate-aussie-evs-hybrid-warfare-campaign

 

Dark patterns killed my wife’s Windows 11 installation

https://www.osnews.com/story/143376/dark-patterns-killed-my-wifes-windows-11-installation/

 

A business-ready, thin LG laptop for just $390 while stock lasts

https://www.bleepingcomputer.com/offer/deals/a-business-ready-thin-lg-laptop-for-just-390-while-stock-lasts/

 

Bank of Italy Official Warns of Stablecoin Risks to EU Financial Stability

https://www.binance.com/en/square/post/09-19-2025-bank-of-italy-official-warns-of-stablecoin-risks-to-eu-financial-stability-29896207590513

 

NIST Cybersecurity Center Outlines Roadmap for Secure Migration

https://thequantuminsider.com/2025/09/19/nist-cybersecurity-center-outlines-roadmap-for-secure-migration/

 

DID THE USA BOMB IRANIAN KLEPTO-CURRENCY SITES?

https://gizadeathstar.com/2025/09/did-the-usa-bomb-iranian-klepto-currency-sites/

 

Canadian police seize $40 million in crypto from unregistered exchange TradeOgre

https://www.theblock.co/post/371395/canadian-police-seizes-40-million-crypto-tradeogre

 

Meta Accused of Torrenting Porn to Advance Its Goal of AI ‘Superintelligence’

https://www.wired.com/story/meta-lawsuit-strike-3-porn-copyright-ai/

 

Cloudflare DDoSed itself with React useEffect hook blunder

https://www.theregister.com/2025/09/18/cloudflare_ddosed_itself/

 

Nations Weigh Crypto Rules as Investors Demand Safety and Trust

https://hackernoon.com/nations-weigh-crypto-rules-as-investors-demand-safety-and-trust

 

Quantum Security Defense

https://www.youtube.com/watch?v=GMzDP7oZ7GU

https://www.youtube.com/watch?v=x6APfqw-s4Y

 

Solana Co-Founder Urges Bitcoin Community to Prepare for Quantum Computing Threat

https://www.binance.com/en/square/post/09-19-2025-solana-co-founder-urges-bitcoin-community-to-prepare-for-quantum-computing-threat-29886070011562

 

I believe TikTok poses a national security risk, says former CISA director Chris Krebs

https://www.cnbc.com/video/2025/09/19/i-believe-tiktok-poses-a-national-security-risk-says-former-cisa-director-chris-krebs.html

 

Known. Emerging. Unstoppable? Ransomware Attacks Still Evade Defenses

https://www.bleepingcomputer.com/news/security/known-emerging-unstoppable-ransomware-attacks-still-evade-defenses/

 

Understanding the Risks of Second-Hand Binance Accounts

https://www.binance.com/en/square/post/09-19-2025-understanding-the-risks-of-second-hand-binance-accounts-29899796856434

 

In Other News: 600k Hit by Healthcare Breaches, Major ShinyHunters Hacks, DeepSeek’s Coding Bias

https://www.securityweek.com/in-other-news-600k-hit-by-healthcare-breaches-major-shinyhunters-hacks-deepseeks-coding-bias/

 

A Dangerous Worm Is Eating Its Way Through Software Packages

https://www.wired.com/story/a-dangerous-worm-is-eating-its-way-through-software-packages/

 

SEEQC And NQCC Announce Digital Interface System For Scalable Quantum Error Correction in Collaboration with NVIDIA

https://thequantuminsider.com/2025/09/19/seeqc-and-nqcc-announce-digital-interface-system-for-scalable-quantum-error-correction-in-collaboration-with-nvidia/

 

Chinese Network Selling Thousands of Fake US and Canadian IDs

https://hackread.com/chinese-network-ofake-us-canadian-ids/

 

FBI warns of cybercriminals using fake FBI crime reporting portals

https://www.bleepingcomputer.com/news/security/fbi-warns-of-fake-fbi-crime-complaint-portals-used-for-cybercrime/

 

Russian regional airline disrupted by suspected cyberattack

https://therecord.media/russia-krasavia-airline-disrupted-suspected-cyberattack

 

US Treasury Department seeks public comment on applying GENIUS Act stablecoin rules

https://www.theblock.co/post/371490/us-treasury-department-seeks-public-comment-on-applying-genius-act-stablecoin-rules

 

The Mathematical Foundation of Fairness: Proving Key Principles in an Economic Model

https://hackernoon.com/the-mathematical-foundation-of-fairness-proving-key-principles-in-an-economic-model

 

Passengers stranded at Heathrow, other European airports after cyberattack

https://www.reuters.com/en/cyberattack-causes-flight-delays-cancellations-brussels-airport-2025-09-20/

 

Big Tech Dreams of Putting Data Centers in Space

https://www.wired.com/story/data-centers-gobble-earths-resources-what-if-we-took-them-to-space-instead/

 

LastPass Warns of Fake Repositories Infecting macOS with Atomic Infostealer

https://thehackernews.com/2025/09/lastpass-warns-of-fake-repositories.html

 

CircuitHub Is Hiring Operations Research Engineers (UK/Remote)

https://www.ycombinator.com/companies/circuithub/jobs/UM1QSjZ-operations-research-engineer

 

Dynamo AI Is Hiring a Senior Kubernetes Engineer

https://www.ycombinator.com/companies/dynamo-ai/jobs/fU1oC9q-senior-kubernetes-engineer

 

Tropical Chill Reggae

https://www.youtube.com/watch?v=2XRLZDDOepk

 

P.S. For those who want to have a list of annotations, here is the link to the article on how to do it with ChatGPT and Zapier

https://zapier.com/blog/how-to-use-chatgpt-to-summarize-an-article/

 

Some links:

Get highly discounted domains

Get public DPG for mobile devices

Get free XNO

Get an offline public DPG

Get your passwords and private keys to be prepared for the Q day

How to estimate time for the Q-day, in a simple way?

How to to protect your cryptos from zero-click attacks?

How do you rate this article?

25


I_g_o_r
I_g_o_r

I am curious about science, technologies and their applications to solving real problems.


Some news
Some news

News on cyber security, data breaches, crypto security, trends, etc. Image of Suzy Hazelwood from pexels.com

Publish0x

Send a $0.01 microtip in crypto to the author, and earn yourself as you read!

20% to author / 80% to me.
We pay the tips from our rewards pool.