[tl;dr sec] #293 - MCP Security, AWS Enumeration, North Korean Hacker's Files Leaked
Critical vulnerabilities in MCPs, stealthily enumerating AWS resources, a North Korean government hacker's computer was pwned, backdoors & campaigns leaked
Microsoft asks customers for feedback on SSD failure issues
​Microsoft is seeking further information from customers who reported failure and data corruption issues affecting their solid-state drives (SSDs) and hard disk drives (HDDs) after installing the August 2025 security update.
'Rapper Bot' hit the Pentagon in at least 3 cyberattacks | DefenseScoop
The powerful “Rapper Bot” DDoS-for-hire botnet impacted the Department of Defense Information Network (DODIN) in at least three attacks between April and August, two officials told DefenseScoop.
Florida man gets 10 years in prison in first Scattered Spider sentencing | CyberScoop
Noah Michael Urban, 20, of Palm Coast, Florida, pleaded guilty to conspiracy, wire fraud and aggravated identity theft charges in two separate federal cases spanning Florida and California.
Why Certified VMware Pros Are Driving the Future of IT
From hybrid cloud to AI, IT complexity and security risks are accelerating. Certified VMware pros bring clarity and resilience that keep teams ahead. See why CIOs are making certification a workforce strategy with VMUG.
Russian Espionage Group Static Tundra Targets Legacy Cisco Flaw
Russian state-backed hackers are exploiting a seven-year-old Cisco Smart Install vulnerability (CVE-2018-0171) in end-of-life devices, prompting warnings from the FBI and Cisco Talos
Marci Rossell to Deliver Keynote on Navigating Economic Turbulence at 2025 Supply Chain Risk Intelligence Summit - interos.ai
As economic pressure mounts, global supply chains are under extraordinary strain. Shifting tariffs and trade disputes are forcing companies to rethink sourcing strategies. Geopolitical tensions are introducing costly delays and unpredictable bottlenecks. It’s clear that the ability to anticipate and adapt is no longer optional. Business leaders need a clear-eyed, forward-looking view of where supply....
Scattered Spider affiliate given 10 year sentence, ordered to pay $13 million in restitution
A Florida judge ignored prosecutors’ request for an eight-year sentence and gave Noah Michael Urban 10 years in prison with three years of supervised release, and ordered him to pay $13 million in restitution to more than 30 victims.
FBI warns of Russian hackers exploiting 7-year-old Cisco flaw
The Federal Bureau of Investigation (FBI) has warned that hackers linked to Russia's Federal Security Service (FSB) are targeting critical infrastructure organizations in attacks exploiting a 7-year-old vulnerability in Cisco devices.
Jim Sanborn Is Auctioning Off the Solution to Part Four of the Kryptos Sculpture - Schneier on Security
Well, this is interesting: The auction, which will include other items related to cryptology, will be held Nov. 20. RR Auction, the company arranging the sale, estimates a winning bid between $300,000 and $500,000. Along with the original handwritten plain text of K4 and other papers related to the coding, Mr. Sanborn will also be providing a 12-by-18-inch copper plate that has three lines of alphabetic characters cut through with a jigsaw, which he calls “my proof-of-concept piece” and which he kept on a table for inspiration during the two years he and helpers hand-cut the letters for the project. The process was grueling, exacting and nerve wracking. “You could not make any mistake with 1,800 letters,” he said. “It could not be repaired.”...
Scattered Spider hacker gets sentenced to 10 years in prison
Noah Michael Urban, a key member of the Scattered Spider cybercrime collective, was sentenced to 10 years in prison on Wednesday after pleading guilty to charges of wire fraud and conspiracy in April.
Orange Belgium discloses data breach impacting 850,000 customers
Orange Belgium, a subsidiary of telecommunications giant Orange Group, disclosed on Wednesday that attackers who breached its systems in July have stolen the data of approximately 850,000 customers.