Cyber Security News ®

💻 Windows 11 24H2/25H2 Update Causes Task Manager to be Active After Closure | Read more: https://lnkd.in/gj_SX8S9 Microsoft has released a non-security update for Windows 11 versions 24H2 and 25H2 that introduces an unusual bug affecting one of the operating system's most essential utilities. The update, designated as KB5067036, is causing Task Manager to continue running in the background even after users close the application. This issue has been officially acknowledged by Microsoft as a known problem in the latest optional update. The KB5067036 update is part of Microsoft's routine maintenance releases designed to improve functionality, performance, and reliability across Windows 11 systems. #cybersecuritynews #windows

🛠️ New BOF Tool Exploits Microsoft Teams' Cookie Encryption to Access User Chats | Read more: https://lnkd.in/gCggSVsM A specialized Beacon Object File (BOF) is designed to extract authentication cookies from Microsoft Teams without disrupting the application. This development highlights vulnerabilities in how Teams stores sensitive access tokens, potentially enabling attackers to impersonate users. Microsoft Teams uses the msedgewebview2.exe process for authentication, storing cookies in a SQLite database, which contains access tokens for Teams, Skype, and the Microsoft Graph API. Modern Chromium browsers enhance security with a COM-based IElevator service, requiring either execution within the browser or admin access to decrypt cookie values. To Get Daily Security Updates, add Cyber Security News ® as your preferred source on Google -> https://lnkd.in/gtssq6QX #cybersecuritynews

🛡️ New EDR-Redir V2 Blinds Windows Defender on Windows 11 With Fake Program Files | Read more: https://lnkd.in/gGFXvHJj An upgraded release of tool EDR-Redir V2, designed to evade Endpoint Detection and Response (EDR) systems by exploiting Windows bind link technology in a novel way. The new version targets the parent directories of EDR installations, such as Program Files, to create redirection loops that blind security software without disrupting legitimate applications. EDR-Redir V2 queries all subfolders in the target parent, like Program Files, and mirrors them in a controlled directory, such as C:\TMP\TEMPDIR. It then establishes bidirectional bind links between these mirrors and originals, forming loops that maintain normal access for non-EDR software. To Get Daily Security Updates, add Cyber Security News ® as your preferred source on Google -> https://lnkd.in/gtssq6QX #cybersecuritynews

Cybersecurity News Weekly Newsletter – EY Data Leak, Bind 9, Chrome Vulnerability, and Aardvar ChatGPT Agent

🚨 New Agent Session Smuggling Attack Let Malicious AI Agents Hijack Victim Agents | Read more: https://lnkd.in/gzzFX9m5 A sophisticated attack technique that exploits the trust relationships built into AI agent communication systems. The attack, termed agent session smuggling, allows a malicious AI agent to inject covert instructions into established cross-agent communication sessions, effectively taking control of victim agents without user awareness or consent. This discovery highlights a critical vulnerability in multi-agent AI ecosystems that operate across organizational boundaries. #cybersecuritynews

🔐 OpenAI’s New Aardvark GPT-5 Agent that Detects and Fixes Vulnerabilities Automatically | Read more: https://lnkd.in/gJNztWVv OpenAI has unveiled Aardvark, an autonomous AI agent powered by its cutting-edge GPT-5 model, designed to detect software vulnerabilities and automatically propose fixes. This tool aims to entrust developers and security teams by scaling human-like analysis across vast codebases, addressing the escalating challenge of protecting software in an era where over 40,000 new Common Vulnerabilities and Exposures (CVEs) were reported in 2024 alone. By integrating advanced reasoning and tool usage, Aardvark shifts the balance toward defenders, enabling proactive threat mitigation without disrupting development workflows. To Get Daily Security Updates, add Cyber Security News ® as your preferred source on Google -> https://lnkd.in/gtssq6QX #cybersecuritynews

How Hackers can Hijack Your Phone Using a Customer Support Call!

WAF vs DDoS 😂

🚨 Akira Ransomware Allegedly Claims Theft of 23GB in Apache OpenOffice Breach | Read more: https://lnkd.in/dtiSyyQm The notorious Akira ransomware group announced on October 29, 2025, that it successfully breached the systems of Apache OpenOffice, exfiltrating a staggering 23 gigabytes of sensitive corporate data. The group, known for its aggressive double-extortion tactics, posted details on its dark web leak site, threatening to release the information unless a ransom is paid. This incident underscores the escalating risks facing even non-profit software foundations in an era of sophisticated cyber threats. #cybersecuritynews