☘️ Cloudflare Down LIVE☘️ Cloudflare has confirmed that it has resolved the global outage which led to many popular platforms like X, ChatGPT, Claude, Perplexity and others going down. In a status page, Cloudflare claimed that it has fixed the issue and is continuing to monitor for errors. “A fix has been implemented and we believe the incident is now resolved. We are continuing to monitor for errors to ensure all services are back to normal.” the company wrote. ☘️ EU probes Amazon, Microsoft's cloud services for potential curbs☘️ The European Commission has launched three market investigations on cloud computing services by Amazon and Microsoft under the Digital Markets Act (DMA), which aims to curb the power of Big Tech and ensure a level playing field for smaller rivals. It opened two probes to assess if the companies should be designated as gatekeepers for their cloud services, and a third investigation to assess if the DMA can effectively tackle anticompetitive practices in the cloud computing sector. ☘️WhatsApp Vulnerability Exposes Phone Numbers of 3.5 Billion Users☘️ The vulnerability exposed far more than just phone numbers. Researchers retrieved public profile pictures, status messages, business account information, device details, encryption keys, and timestamps for discovered accounts. Most alarmingly, they successfully downloaded 77 million public profile pictures from accounts with US phone numbers, with facial recognition analysis revealing that 66 percent contained detectable human faces. ☘️Spain investigates Meta over alleged 'massive' spying case on Android users☘️ The international investigation found that Meta, the parent company of Instagram, Facebook and WhatsApp, used a hidden mechanism to track the web history of Android users from September 2024 until this summer. Spain's President announced that he will deploy a series of measures to combat "disinformation", protect minors, eradicate "hate speech" and curb the violation of citizens' privacy.

☘️ Cloudflare outage ongoing..☘️ Cloudflare is currently experiencing a major global network outage that has disrupted access to numerous websites and online services Impact on Services: The outage has affected high-profile platforms such as X, OpenAI's ChatGPT, and Perplexity, with users reporting service disruptions across multiple regions including India, Europe, the US, and Southeast Asia. ☘️ Microsoft Azure Hit by 15.72 Tbps DDoS Attack☘️ Microsoft reported that its Azure network was targeted by a 15.72 terabits per second (Tbps) DDoS attack, attributed to the Aisuru botnet and launched from over 500,000 IP addresses. This ranks among the largest distributed denial-of-service attacks ever recorded, emphasizing the growing scale of botnet-driven threats ☘️IT incident at Washington Post: Data of almost 10,000 people leaked☘️ Cybercriminals have penetrated the renowned Washington Post through a security vulnerability in the Oracle E-Business Suite and copied data from almost 10,000 people. The cyber gang cl0p is likely behind this. This includes, for example, names, bank details, social security numbers, or tax IDs. The Post began informing affected individuals via traditional mail starting November 12. ☘️Payroll System Hijacking☘️ Cybercriminals are targeting universities and other U.S. organizations with a campaign to divert salary payments from employees to accounts controlled by the attackers. Dubbed “payroll pirates,” the hackers are using phishing emails to gain access to third-party platforms like Workday ☘️Cat's Got Your Files: Lynx Ransomware☘️ Lynx Ransomware Surge: Threat actors are exploiting compromised RDP logins to deploy Lynx ransomware, often deleting server backups before encryption. A defining tactic is the targeted deletion of backups before encryption. Attackers use tools like Veeam Backup & Replication to erase backup jobs, eliminating recovery options and forcing ransom payments.

Some tips from Sir Wildred: 1. Master fundamentals: Linux, computer networking, etc. every 'complex/big'(cloud, cybersecurity) is built on foundation. 2. Repetition > marathon study. 15min daily beats 4hrs once a week. 3. write summary of what you learn. 4. Learn in public: share your journey and take feedback From Mr. Blessed: 1. Frog and Eagle analogy. 2. Attention = Currency. 3. Position yourself so well that people know you before you meet them(or reach out to them for connection) 4. you should have 3-4 solid "nodes/connections/friends", the people who know everyone. 5. dont chase every connection. Not every connection matters. If I missed or misquoted any point, then please add it below. Which insight hit you the most?

📰 International cybersecurity skills competition: International Cybersecurity Challenge 2025📰 Team Europe clinched first place in the 2025 edition of the International Cybersecurity Challenge held in Tokyo, underscoring the growing importance of global talent development and cross-region cooperation in cyber defence. 📰Major law-enforcement win: Europol’s “Operation Endgame” dismantles cyber-crime networks📰 The operation took down infrastructure behind the Rhadamanthys infostealer, VenomRAT, and the Elysium botnet. Hundreds of thousands of infected computers and millions of stolen credentials were linked to these networks. 📰Costly cyber breaches surge across Africa📰 African businesses are grappling with an increase in costly cyber incidents, with a growing number of firms reporting financial losses exceeding US$1 million from breaches over the past three years, according to PwC’s latest Global Digital Trust Insights Survey. Based on responses from 3,887 executives across 72 countries, the survey identified AI as the top investment priority for cybersecurity amid escalating threats. 📰India & Central Asia: Strategic Cyber Exercise Completed📰 India, together with Central Asian partners, concluded a multi-day cyber-exercise to boost technical capacities in transnational cyber-threat hunting and incident response. The successful conclusion of the exercise marks a significant milestone in the collective security journey of India and Central Asia, transitioning from individual national defenses to an interconnected and resilient cyber ecosystem. ☘️Stay tuned for the next Cyberbrief.

📰CISA Warns: Akira Ransomware Has Extracted $42M After Targeting Hundreds📰 Akira ransomware has escalated globally, hitting organizations across North America, Europe & Australia - amassing $244M+ since 2023. Threat actors linked to Conti now use Windows, Linux, ESXi & even Nutanix AHV encryptors. Targets include SMBs + critical sectors: manufacturing, education, IT, healthcare, finance & agriculture. Latest Akira_v2 variant shows stronger encryption + advanced evasion. 📰 AI-driven hacking: Anthropic says Chinese state-sponsored hackers used its Claude model📰 Anthropic, the artificial intelligence has disclosed that a Chinese state-sponsored hacker group manipulated its Claude AI system in order to conduct a large-scale cyber espionage campaign targeting some major corporations and government agencies worldwide. The attackers reportedly used Claude's autonomous capabilities to execute sophisticated cyberattacks with minimal human oversight. 📰 United Kingdom proposes tough new cyber-defence laws for critical services 📰 The UK has unveiled a new Cyber Security and Resilience Bill aimed at strengthening cyber standards for critical infrastructure like healthcare, water, transport, and energy. Under the bill, managed service providers will be more tightly regulated, and there will be stronger penalties for major cybersecurity failures. 📰 “Landfall” Spyware Exploits WhatsApp-Delivered Images📰 A spyware called Landfall exploited a zero-day (CVE-2025-21042) in Samsung phones by embedding malicious DNG image files in WhatsApp messages. The malware had capabilities like audio recording, accessing contacts, photos, location, and call logs. Affected devices were from the Middle East region, and the exploit was active from mid-2024 to April 2025 before the patch. 📰 Dutch Broadcaster RTV Noord Hit by Cyberattack📰 RTV Noord, a regional Dutch TV & radio broadcaster, was hacked; digital systems were disrupted, forcing hosts to play music from CDs and vinyl. The attackers left a message on the network, strongly suggesting a ransomware attack. This broadcaster also serves as an emergency communication channel, raising concerns about resilience.