Security news weekly round-up - 24th October 2025

Nation-state attackers are now using blockchains to distribute malware, a method called EtherHiding, making their operations harder to disrupt. Cybercriminals are also exploiting Google search ads to trick macOS users into downloading fake software that installs infostealing malware like AMOS. TikTok videos are another avenue for distributing malware, with users being prompted to run commands that can lead to infections. Security researchers have identified cache poisoning vulnerabilities in two DNS resolving applications, CVE-2025-40778 and CVE-2025-40780, which could redirect users to malicious sites. SnakeStealer, a sophisticated infostealer that first appeared in 2019, continues to be a threat, capable of stealing credentials and crypto wallet information. While AI-generated code offers speed and a similar density of vulnerabilities to human-written code, a lack of good judgment in its creation poses risks. Malicious browser extensions can impersonate AI sidebars in AI-powered browsers, leading to phishing and malware infections. Users are warned against running commands from untrusted sources, especially from social media or search results. Cybersecurity careers remain robust due to the evolving and sophisticated nature of these threats. The author acknowledges a human error in missing the previous week's publication.