Good morning. Today's security briefing covers developments from Monday, November 17, 2025, with analysis of 2 articles. All attribution is by the article authors, and all article analysis is automated.
DeceptIQ has published a comprehensive technical guide on AWS EventBridge pattern matching. The guide, authored by founder Rad Kawar, covers complex rule creation including AND/OR logic, pattern operators like prefix and wildcard matching, and pattern expansion behavior for event filtering and routing.
Security researcher Hana disclosed a multi-stage iOS sandbox escape vulnerability affecting iOS 26.2b1 and earlier versions. The exploit leverages malicious SQLite databases processed by itunesstored and bookassetd to write crafted EPUB files to arbitrary paths, potentially enabling unauthorized system file modifications, though it requires either physical device access or prior compromise to deploy the initial malicious database.