Notepad++ has addressed a critical bug in its WinGUp update tool that allowed attackers to push malicious update files. It was exploited to execute unauthorized commands and exfiltrate sensitive data, posing a significant security risk to users.

DroidLock is a newly discovered Android malware that locks devices and demands a ransom. It specifically targets Spanish-speaking users and is distributed through malicious websites promoting fake applications.

Ivanti has disclosed a critical vulnerability in its Endpoint Manager (EPM) solution, tracked as CVE-2025-10573. This flaw allows remote, unauthenticated attackers to execute arbitrary JavaScript code through cross-site scripting attacks.

Microsoft has released the Windows 10 KB5071546 extended security update, addressing 57 security vulnerabilities, including three zero-day flaws. This update is mandatory and will automatically install, prompting a restart.

Two malicious VSCode extensions, Bitcoin Black and Codo AI, have been identified on Microsoft's registry. These extensions, published under the developer name 'BigBlack', are designed to infect developers' machines with information-stealing malware.

The Aisuru botnet has launched over 1,300 DDoS attacks in just three months, with Cloudflare mitigating 2,867 attacks since the beginning of the year. The botnet's most significant attack peaked at 29.7 Tbps, setting a new record.

A high-severity Windows LNK vulnerability, tracked as CVE-2025-9491, has been exploited by multiple state-backed and cybercrime groups in zero-day attacks. This flaw allows attackers to hide malicious commands within Windows LNK files.

Freedom Mobile, a leading Canadian wireless carrier, disclosed a data breach on October 23, the same day it was detected. The breach involved unauthorized access to customer data through a subcontractor's account.

The Shai-Hulud 2.0 malware attack has compromised over 800 NPM packages, exposing up to 400,000 developer secrets. This attack has significant implications for software supply chain security.

The "ShadyPanda" campaign is a long-running malware operation involving browser extensions that have amassed over 4.3 million installations. Initially submitted in 2018, the first signs of malicious activity were observed in 2023.