RadioCSIRT – Your Cybersecurity update for Wednesday, November 12, 2025 (Ep.484) cover art

RadioCSIRT – Your Cybersecurity update for Wednesday, November 12, 2025 (Ep.484)

RadioCSIRT – Your Cybersecurity update for Wednesday, November 12, 2025 (Ep.484)

Listen for free

View show details

About this listen

 🧩 Welcome Everyone –Today 8 essential stories you can’t miss! 🐧 Curly COMrade: a Russian group abuses Hyper-V to hide Linux malware inside an Alpine VM, effectively bypassing EDR detection. 🇦🇺 ASIO Warning: Australia’s spy chief warns of high-impact cyber sabotage as authoritarian states prepare attacks on power, telecom, and water systems. 💻 OWASP Top 10 (2025): Broken Access Control remains the top web app risk, followed by security misconfiguration and software supply-chain failures. ☁️ Google Private AI Compute: secure AI processing in the cloud with hardware-level encryption, offering on-device privacy and Gemini-scale power. 🧰 Synology BeeStation (CVE-2025-12686): critical RCE flaw patched after its Pwn2Own Ireland 2025 demo — users urged to update immediately. 🧩 SAP SQL Anywhere Monitor (CVE-2025-42890): hard-coded credentials rated CVSS 10/10 — SAP advises disabling the module and deleting existing instances. 📶 TP-Link Ban Proposal: U.S. authorities consider banning TP-Link over national security concerns tied to Chinese influence and device vulnerabilities. 🕵️ Rhadamanthys Infostealer: operation disrupted, with cybercriminals losing server access — likely linked to Operation Endgame takedowns. 💻 Windows 11: Microsoft fixes Task Manager bug in KB5068861 update — background instances caused severe performance slowdowns. ⚡️ Don’t think twice — just patch! 🚀 📚 Sources: 🔗 Linux Magazine – https://www.linux-magazine.com/Online/News/Another-Linux-Malware-Discovered 🔗 The Register (ASIO) – https://www.theregister.com/2025/11/12/asio_cyber_sabotage_warnings/ 🔗 The Register (OWASP) – https://www.theregister.com/2025/11/11/new_owasp_top_ten_broken/ 🔗 The Hacker News (Google) – https://thehackernews.com/2025/11/google-launches-private-ai-compute.html 🔗 Security Affairs (Synology) – https://securityaffairs.com/184528/security/synology-patches-critical-beestation-rce-flaw-shown-at-pwn2own-ireland-2025.html 🔗 Security Affairs (SAP) – https://securityaffairs.com/184500/security/sap-fixed-a-maximum-severity-flaw-in-sql-anywhere-monitor.html 🔗 KrebsOnSecurity – https://krebsonsecurity.com/2025/11/drilling-down-on-uncle-sams-proposed-tp-link-ban/ 🔗 BleepingComputer (Rhadamanthys) – https://www.bleepingcomputer.com/news/security/rhadamanthys-infostealer-disrupted-as-cybercriminals-lose-server-access/ 🔗 BleepingComputer (Microsoft) – https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-windows-task-manager-bug-affecting-performance/ 📞 Share your feedback: 📧 radiocsirt@gmail.com 🌐 www.radiocsirt.com 📰 radiocsirtintl.substack.com #CyberSecurity #Samsung #LinkedIn #Clop #Allianz #NSO #Pegasus #RadioCSIRT 🎧🔥
No reviews yet
In the spirit of reconciliation, Audible acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.