Cyber Security Headlines Suspect arrested over airport attack, DDoS attack hits new record, BRICKSTORM backdoor steals IPs
8 snips
Sep 25, 2025 A suspect has been arrested for a ransomware attack that impacted airport systems. In an eye-popping incident, a record-breaking DDoS attack reached 22.2 Tbps, potentially linked to the Asuru botnet. Cybersecurity experts revealed the BRICKSTORM backdoor, targeting intellectual property theft, utilized by a China-linked group. Additionally, a weak password has led to the bankruptcy of a 158-year-old company, showcasing the dire consequences of poor credential practices. Also discussed are vulnerabilities in Cisco's iOS and a malicious NPM package that secretly steals browser credentials.
AI Snips
Chapters
Transcript
Episode notes
Airport Attack Leads To Arrest And Manual Check‑Ins
- A man was arrested in West Sussex over a cyber attack that disrupted several European airports including Heathrow.
- The suspect was released on bail while Collins Aerospace rebuilds systems and airlines expect at least another week of manual operations.
DDoS Attack Reaches Unprecedented Scale
- Cloudflare blocked a DDoS that peaked at 22.2 Tbps and 10.6 billion packets per second over 40 seconds.
- The attack used a UDP carpet bomb and over 404,000 unique IPs, showing IoT botnets still scale massively.
BrickStorm Backdoor Targets High‑Value IP
- Mandiant links a Linux backdoor called BrickStorm to suspected China-linked UNC-5221 targeting law firms and tech companies.
- Attackers persist for over a year and exploit appliances, routers, and zero-days to steal intellectual property.