matlock.ca // THREAT INTELLIGENCE — 2025-11-13

89Articles

10Categories

2025-11-13Date

🚨

When Attacks Come Faster Than Patches: Why 2026 Will be the Year of Machine-Speed SecurityThe Race for Every New CVE Based on multiple 2025 industry reports: roughly 50 to 61 percent of newly disclosed vulnerabilities saw exploit code weaponized within 48 hours. Using the CISA Known Exploited Vulnerabilities Catalog as a reference, hundreds of software flaws are now c…

KEVTHEHACKERNEWS.COM — 13 Nov 2025

🐛

Active Exploitation of Cisco and Citrix 0-Day Vulnerabilities Allows Webshell Deployment

GBHACKERS.COM — 13 Nov 2025

🐛

Citrix NetScaler ADC and Gateway Flaw Allows Cross-Site Scripting (XSS) Attacks

GBHACKERS.COM — 13 Nov 2025

🐛

CISA Warns of Active Exploitation of WatchGuard Firebox Out-of-Bounds Write Flaw

KEVGBHACKERS.COM — 13 Nov 2025

🐛

Critical Dell Data Lakehouse Flaw Allows Remote Attackers to Escalate Privileges

GBHACKERS.COM — 13 Nov 2025

🐛

CISA Flags Critical WatchGuard Fireware Flaw Exposing 54,000 Fireboxes to No-Login Attacks

KEVTHEHACKERNEWS.COM — 13 Nov 2025

🐛

GitLab Vulnerabilities Expose Users to Prompt Injection Attacks and Data Theft

GBHACKERS.COM — 13 Nov 2025

🐛

Cisco ISE, CitrixBleed 2 Vulnerabilities Exploited as Zero-Days: Amazon

SECURITYWEEK.COM — 13 Nov 2025

🐛

Kibana Vulnerabilities Expose Systems to SSRF and XSS Attacks

GBHACKERS.COM — 13 Nov 2025

🐛

Zero-day exploits hit Cisco ISE and Citrix systems in an advanced campaign

CSOONLINE.COM — 13 Nov 2025

🐛

Critical WatchGuard Firebox Vulnerability Exploited in Attacks

SECURITYWEEK.COM — 13 Nov 2025

🐛

CISA Warns of Active Exploitation of Windows Kernel 0-Day Enabling Privilege Escalation

GBHACKERS.COM — 13 Nov 2025

🐛

Rust in Android: move fast and fix things

SECURITY.GOOGLEBLOG.COM — 2025-11-13

🐛

Chromium: CVE-2025-13042 Inappropriate implementation in V8

MSRC.MICROSOFT.COM — 13 Nov 2025

🐛

Privilege Escalation from lightdm Service User to root in KAuth Helper Service (CVE-2025-62876)

INFOSEC.PUB — 13 Nov 2025

⚠️

Google asks US court to shut down Lighthouse phishing-as-a-service operation

CSOONLINE.COM — 13 Nov 2025

⚠️

What CISOs need to know about new tools for securing MCP servers

CSOONLINE.COM — 13 Nov 2025

⚠️

New ClickFix Attack Targeting Windows and macOS Users to Deploy Infostealer Malware

GBHACKERS.COM — 13 Nov 2025

⚠️

CISA warns of WatchGuard firewall flaw exploited in attacks

KEVBLEEPINGCOMPUTER.COM — 13 Nov 2025

⚠️

ThreatsDay Bulletin: Cisco 0-Days, AI Bug Bounties, Crypto Heists, State-Linked Leaks and 20 More Stories

THEHACKERNEWS.COM — 13 Nov 2025

⚠️

Operation Endgame: Authorities Takedown 1,025 Servers Linked to Rhadamanthys, VenomRAT, and Elysium

GBHACKERS.COM — 13 Nov 2025

⚠️

Police disrupts Rhadamanthys, VenomRAT, and Elysium malware operations

BLEEPINGCOMPUTER.COM — 13 Nov 2025

⚠️

Operation Endgame Dismantles Rhadamanthys, Venom RAT, and Elysium Botnet in Global Crackdown

THEHACKERNEWS.COM — 13 Nov 2025

⚠️

CISA warns feds to fully patch actively exploited Cisco flaws

KEVBLEEPINGCOMPUTER.COM — 13 Nov 2025

⚠️

OpenAI Sora 2 Vulnerability Allows Exposure of Hidden System Prompts from Audio Data

GBHACKERS.COM — 13 Nov 2025

⚠️

Rogue MCP servers can take over Cursor’s built-in browser

CSOONLINE.COM — 13 Nov 2025

⚠️

Phishing Emails Alert: How Spam Filters Can Steal Your Email Logins in an Instant

GBHACKERS.COM — 13 Nov 2025

⚠️

1,000+ Servers Hit in Law Enforcement Takedown of Rhadamanthys, VenomRAT, Elysium

SECURITYWEEK.COM — 13 Nov 2025

⚠️

ChatGPT Vulnerability Exposed Underlying Cloud Infrastructure

SECURITYWEEK.COM — 13 Nov 2025

⚠️

CISA and Partners Release Advisory Update on Akira Ransomware

CISA.GOV — Thu, 13 Nov 25 1

⚠️

CISA warns federal agencies to patch flawed Cisco firewalls amid ‘active exploitation’ across the US government

KEVTECHCRUNCH.COM — 13 Nov 2025

⚠️

EOL-Software gefährdet Unternehmenssicherheit

CSOONLINE.COM — 13 Nov 2025

⚠️

CISA Releases 18 Industrial Control Systems Advisories

CISA.GOV — Thu, 13 Nov 25 1

⚠️

RCE flaw in ImunifyAV puts millions of Linux-hosted sites at risk

BLEEPINGCOMPUTER.COM — 13 Nov 2025

⚠️

Vulnerability Management: Tackling the Wrong Problem

YOUTUBE.COM — 2025-11-13

⚠️

Fortinet FortiWeb flaw with public PoC exploited to create admin users

KEVBLEEPINGCOMPUTER.COM — 13 Nov 2025

⚠️

DoorDash hit by yet another data breach this October

BLEEPINGCOMPUTER.COM — 13 Nov 2025

⚠️

DoorDash hit by new data breach in October exposing user information

BLEEPINGCOMPUTER.COM — 13 Nov 2025

📋

Going Around EDR - PSW #900

YOUTUBE.COM — 2025-11-13

📢

Hackers Using RMM Tools LogMeIn and PDQ Connect to Deploy Malware as Legitimate Software

GBHACKERS.COM — 13 Nov 2025

📢

BreachLock and Vanta Bridge the Gap Between Continuous Security Testing and Compliance with New Integration

GBHACKERS.COM — 13 Nov 2025

📢

Operation Endgame schaltet Schadsoftware ab

CSOONLINE.COM — 13 Nov 2025

📢

Webinar Today: The Future of Industrial Network Security

SECURITYWEEK.COM — 13 Nov 2025

📢

Drupal security advisory (AV25-750)

CYBER.GC.CA — 2025-11-13

📢

CISA Updates Guidance on Patching Cisco Devices Targeted in China-Linked Attacks

SECURITYWEEK.COM — 13 Nov 2025

📢

GitLab security advisory (AV25-751)

CYBER.GC.CA — 2025-11-13

📢

CISA, FBI and Partners Unveil Critical Guidance to Protect Against Akira Ransomware Threat

CISA.GOV — Thu, 13 Nov 25 1

📢

[Control systems] Rockwell Automation security advisory (AV25-753)

CYBER.GC.CA — 2025-11-13

📢

[Control systems] Schneider Electric security advisory (AV25-752)

CYBER.GC.CA — 2025-11-13

📢

CISA warns of Akira ransomware Linux encryptor targeting Nutanix VMs

BLEEPINGCOMPUTER.COM — 13 Nov 2025

🔥

Operation Endgame 3.0 - 2,046,030 breached accounts

HAVEIBEENPWNED.COM — 13 Nov 2025

🔥

Synnovis Confirms Patient Information Stolen in Disruptive Ransomware Attack

SECURITYWEEK.COM — 13 Nov 2025

🔥

NHS Investigating Oracle EBS Hack Claims as Hackers Name Over 40 Alleged Victims

SECURITYWEEK.COM — 13 Nov 2025

🔥

Fake Chrome Extension “Safery” Steals Ethereum Wallet Seed Phrases Using Sui Blockchain

THEHACKERNEWS.COM — 13 Nov 2025

🔥

Washington Post data breach impacts nearly 10K employees, contractors

BLEEPINGCOMPUTER.COM — 13 Nov 2025

🔥

H&M and Adidas yarn supplier breached, hackers claim | Cybernews

SH.ITJUST.WORKS — 13 Nov 2025

🔥

Kraken ransomware benchmarks systems for optimal encryption choice

BLEEPINGCOMPUTER.COM — 13 Nov 2025

🔥

How password managers can be hacked – and how to stay safe

WELIVESECURITY.COM — 13 Nov 2025

🕵️

ISC Stormcast For Thursday, November 13th, 2025 https://isc.sans.edu/podcastdetail/9698, (Thu, Nov 13th)

ISC.SANS.EDU — 13 Nov 2025

🕵️

ThreatBook Peer-Recognized as a Strong Performer in the 2025 Gartner® Peer Insights™ Voice of the Customer for Network Detection and Response — for the Third Consecutive Year

GBHACKERS.COM — 13 Nov 2025

🕵️

News Alert: Gartner ranks ThreatBook a ‘strong performer’ in NDR for the third consecutive year

LASTWATCHDOG.COM — 13 Nov 2025

🕵️

Google Sues “Lighthouse” Over Massive Phishing Attacks

GBHACKERS.COM — 13 Nov 2025

🕵️

Firefox 145 and Chrome 142 Patch High-Severity Flaws in Latest Releases

SECURITYWEEK.COM — 13 Nov 2025

🕵️

Beware of Fake Bitcoin Tools Concealing DarkComet RAT Malware

GBHACKERS.COM — 13 Nov 2025

🕵️

Formbook Delivered Through Multiple Scripts, (Thu, Nov 13th)

ISC.SANS.EDU — 13 Nov 2025

🕵️

Malicious Chrome Extension Grants Full Control Over Ethereum Wallet

GBHACKERS.COM — 13 Nov 2025

🕵️

GUEST ESSAY: How to defend against decision mimicry — a practical AI-era checklist for leaders

LASTWATCHDOG.COM — 13 Nov 2025

🕵️

Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm

SECURITYWEEK.COM — 13 Nov 2025

🕵️

Hackers Infiltrate npm Registry with 43,000 Spam Packages, Linger for Nearly Two Years

GBHACKERS.COM — 13 Nov 2025

🕵️

Threat Actors Use JSON Storage for Hosting and Delivering Malware via Trojanized Code

GBHACKERS.COM — 13 Nov 2025

🕵️

Microsoft rolls out screen capture prevention for Teams users

BLEEPINGCOMPUTER.COM — 13 Nov 2025

🕵️

SmartApeSG Uses ClickFix to Deploy NetSupport RAT

GBHACKERS.COM — 13 Nov 2025

🕵️

Case Study: University of West England uses Sophos solutions to protect thousands of students across multiple campuses

SOPHOS.COM — 13 Nov 2025

🕵️

Malicious npm Package with 206K Downloads Targeting GitHub Repositories to Steal Tokens

GBHACKERS.COM — 13 Nov 2025

🕵️

Tycoon 2FA Phishing Kit Grows More Sophisticated

KNOWBE4.COM — 13 Nov 2025

🕵️

Increase in Lumma Stealer Activity Coincides with Use of Adaptive Browser Fingerprinting Tactics

TRENDMICRO.COM — 13 Nov 2025

🕵️

Printer Driver Updater Flaws Could Usher in Poisoned Updates

SH.ITJUST.WORKS — 13 Nov 2025

🕵️

Over 67,000 Fake npm Packages Flood Registry in Worm-Like Spam Attack

SH.ITJUST.WORKS — 13 Nov 2025

🕵️

Cyber-Insurance Payouts Soar 230% in UK - Infosecurity Magazine

SH.ITJUST.WORKS — 13 Nov 2025

🌐

Popular Android-based photo frames download malware on boot

BLEEPINGCOMPUTER.COM — 13 Nov 2025

🌐

Police take down three cybercrime operations in latest round of ‘whack-a-mole’

TECHCRUNCH.COM — 13 Nov 2025

🎙️

Smashing Security podcast #443: Tinder’s camera roll and the Buffett deepfake

GRAHAMCLULEY.COM — 13 Nov 2025

📡

Over 46,000 Fake npm Packages Flood Registry in Worm-Like Spam Attack

THEHACKERNEWS.COM — 13 Nov 2025

📡

Book Review: The Business of Secrets

SCHNEIER.COM — 2025-11-13

📡

Sophos named a Leader in the KuppingerCole 2025 Leadership Compass for Email Security

SOPHOS.COM — 13 Nov 2025

📡

Google Sues to Disrupt Chinese SMS Phishing Triad

KREBSONSECURITY.COM — 13 Nov 2025

📡

Kerberoasting in 2025: How to protect your service accounts

BLEEPINGCOMPUTER.COM — 13 Nov 2025

📡

How a fake AI sidebar can steal your data | Kaspersky official blog

KASPERSKY.COM — 13 Nov 2025

📡

New ‘IndonesianFoods’ worm floods npm with 100,000 packages

BLEEPINGCOMPUTER.COM — 13 Nov 2025