Stadtwerke Detmold von Hackerangriff betroffen
CSO Online 18.11.2025 13:03
Auf der Website der Stadtwerke Detmold befindet sich aktuell ein Banner mit einem Hinweis zu einer IT-Störung.Stadtwerke Detmold – Screenshot
Die Stadtwerke Detmold informieren ihre Kunden aktuell über einen großflächigen IT-Ausfall. Demnach funktionieren derzeit weder die Online-Services noch ist das Versorgungsunternehmen per Telefon oder E-Mail erreichbar. Laut einem Bericht des Westdeutschen Rundfunk WDR wurden die Stadtwerke Ziel eines Hackerangriffs. Deshalb mussten alle IT-Systeme abgeschaltet werden.
Roblox: Sicherheitschef Matt Kaufman über Gefahren, teure Preise und Alterskontrollen
Spiegel Online 18.11.2025 12:15
Millionen Kinder sammeln auf Roblox erste Gamingerfahrungen. Kritiker aber beklagen: Die Plattform tut zu wenig, um Minderjährige zu schützen. Was sagt der Sicherheitschef zu der Kritik?
Fortinet’s silent patch sparks alarm as a critical FortiWeb flaw is exploited in the wild
CSO Online 18.11.2025 12:05
Security researchers are warning about two critical vulnerabilities in Fortinet’s FortiWeb appliances, now tracked under CVE-2025-64446, being actively exploited in the wild.
According to findings published by watchTowr, one flaw allows unauthenticated actors to access internal CGI endpoints via relative path traversal, while the other authentication bypass issue lets them impersonate any administrator by abusing the “HTTP_CGIINFO” header.
IT-Vorfall: Stadtwerke Detmold nicht mehr erreichbar
Heise Security 18.11.2025 11:37
Die Stadtwerke Detmold sind Opfer eines IT-Angriffs geworden. Sie sind derzeit nicht mehr erreichbar. Die Versorgung soll gesichert sein.
Azure blocks record 15 Tbps DDoS attack as IoT botnets gain new firepower
CSO Online 18.11.2025 11:01
Azure has blocked its largest DDoS attack to date, a 15.72 Tbps strike linked to the Aisuru IoT botnet that also surged to nearly 3.64 billion packets per second and targeted a single cloud endpoint in Australia, Microsoft said.
“The attack involved extremely high-rate UDP floods targeting a specific public IP address, launched from over 500,000 source IPs across various regions,” the company wrote in a blog. “These sudden UDP bursts had minimal source spoofing and used random source ports, which helped simplify traceback and facilitated provider enforcement.”
Beyond IAM Silos: Why the Identity Security Fabric is Essential for Securing AI and Non-Human Identities
The Hacker News 18.11.2025 11:00
Identity security fabric (ISF) is a unified architectural framework that brings together disparate identity capabilities. Through ISF, identity governance and administration (IGA), access management (AM), privileged access management (PAM), and identity threat detection and response (ITDR) are all integrated into a single, cohesive control plane.
Building on Gartner’s definition of “identity
GenAI and Deepfakes Drive Digital Forgeries and Biometric Fraud
Infosecurity Magazine 18.11.2025 10:45
Entrust says AI is helping fraudsters open new accounts and bypass biometric checks
Seven npm Packages Use Adspect Cloaking to Trick Victims Into Crypto Scam Pages
The Hacker News 18.11.2025 10:37
Cybersecurity researchers have discovered a set of seven npm packages published by a single threat actor that leverages a cloaking service called Adspect to differentiate between real victims and security researchers to ultimately redirect them to sketchy crypto-themed sites.
The malicious npm packages, published by a threat actor named "dino_reborn" between September and November 2025, are