Major October 2025 Cyber Attacks Your SOC Can't Ignore

Oct. 29, 2025, 8:18 p.m.

Description

October 2025 saw a surge in sophisticated cyber attacks, including phishing campaigns exploiting Google Careers and ClickUp, abuse of Figma for credential theft, the emergence of LockBit 5.0 targeting ESXi and Linux systems, and the discovery of TyKit, a new phishing kit. Attackers increasingly abused legitimate cloud platforms and employed multi-stage redirection techniques to evade detection. These threats pose significant risks to corporate credentials, infrastructure, and data across various sectors. Security teams must enhance visibility, harden access controls, ensure resilience, and leverage advanced threat intelligence tools to detect and respond to these evolving threats effectively.

External References

https://any.run/cybersecurity-blog/cyber-attacks-october-2025
https://otx.alienvault.com/pulse/69025ee7917597f98b6a8309
Tags
phishing
ransomware
lockbit
credential theft
cloud abuse
lockbit 5.0
2025-10-29
tykit
clickup
google careers
figma

Date

  • Created: Oct. 29, 2025, 6:37 p.m.
  • Published: Oct. 29, 2025, 6:37 p.m.
  • Modified: Oct. 29, 2025, 8:18 p.m.

Indicators

  • 9a4c7dcf25e9590654694063bc4958d58bcbe57e5e95d9469189db6873c4bb2c
  • a7184bef39523bef32683ef7af440a5b2235e83e7fb83c6b7ee5f08286731892
  • ecd3c834148d12af878fd1decd27bbbe2b532b5b48787bad1bde7497f98c2cc8
  • hire.gworkmatch.com
  • satoshicommands.com
  • hire.yt
  • segy2.cc
  • segy.shop
  • segy.xyz
  • segy.cc
Download all indicators here!

Attack Patterns

Additional Informations

  • Real Estate
  • Professional Services
  • Consulting
  • Construction
  • Technology
  • Education
  • Finance
  • Telecommunications
  • Government
  • Central African Republic
  • South Africa
  • Canada
  • United States of America