🚨 CISA KEV 1[−]
13 Nov KEVWhen Attacks Come Faster Than Patches: Why 2026 Will be the Year of Machine-Speed SecurityThe Race for Every New CVE Based on multiple 2025 industry reports: roughly 50 to 61 percent of newly disclosed vulnerabilities saw exploit code weaponized within 48 hours. Using the CISA Known Exploited Vulnerabilities Catalog as a reference, hundreds of software flaws are now c…THEHACKERNEWS.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 14[−]
13 NovActive Exploitation of Cisco and Citrix 0-Day Vulnerabilities Allows Webshell DeploymentAmazon’s threat intelligence team has uncovered a sophisticated cyber campaign exploiting previously undisclosed zero-day vulnerabilities in critical enterprise infrastructure. Advanced threat actors are actively targeting Cisco Identity Service Engine (ISE) and Citrix syst…GBHACKERS.COM
13 NovCitrix NetScaler ADC and Gateway Flaw Allows Cross-Site Scripting (XSS) AttacksCloud Software Group has disclosed a cross-site scripting (XSS) vulnerability affecting NetScaler ADC and NetScaler Gateway platforms. The flaw, tracked as CVE-2025-12101, poses a moderate security risk to organizations relying on these network appliances for authentication and s…GBHACKERS.COM
13 Nov KEVCISA Warns of Active Exploitation of WatchGuard Firebox Out-of-Bounds Write FlawThe Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting WatchGuard Firebox firewalls to its Known Exploited Vulnerabilities (KEV) catalog, warning of active exploitation in the wild. The flaw, tracked as CVE-2025-9242, poses severe…GBHACKERS.COM
13 NovCritical Dell Data Lakehouse Flaw Allows Remote Attackers to Escalate PrivilegesDell Technologies has disclosed a critical security vulnerability affecting its Data Lakehouse platform that could allow attackers with high-level privileges to escalate their access and compromise system integrity. The flaw, tracked as CVE-2025-46608, carries a maximum CVSS seve…GBHACKERS.COM
13 Nov KEVCISA Flags Critical WatchGuard Fireware Flaw Exposing 54,000 Fireboxes to No-Login AttacksThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical security flaw impacting WatchGuard Fireware to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerability in question is CVE-2025-924…THEHACKERNEWS.COM
13 NovGitLab Vulnerabilities Expose Users to Prompt Injection Attacks and Data TheftGitLab has released critical security patches addressing nine vulnerabilities across Community Edition (CE) and Enterprise Edition (EE), including a concerning prompt injection flaw in GitLab Duo that could expose sensitive information from confidential issues. The company is urg…GBHACKERS.COM
13 NovCisco ISE, CitrixBleed 2 Vulnerabilities Exploited as Zero-Days: AmazonAmazon has seen a threat actor exploiting CVE-2025-20337 and CVE-2025-5777, two critical Cisco and Citrix vulnerabilities, as zero-days. The post Cisco ISE, CitrixBleed 2 Vulnerabilities Exploited as Zero-Days: Amazon appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovKibana Vulnerabilities Expose Systems to SSRF and XSS AttacksElastic has released a security advisory addressing an origin validation error in Kibana that could expose systems to Server-Side Request Forgery (SSRF) attacks. The vulnerability, tracked as CVE-2025-37734, affects multiple versions of the popular data visualization and explorat…GBHACKERS.COM
13 NovZero-day exploits hit Cisco ISE and Citrix systems in an advanced campaignThe Amazon Threat Intelligence team has now disclosed an advanced persistent threat (APT) campaign that exploited vulnerabilities in Citrix systems and Cisco’s Identity Service Engine (ISE), allowing hackers to breach critical identity infrastructure even before the flaws were ma…CSOONLINE.COM
13 NovCritical WatchGuard Firebox Vulnerability Exploited in AttacksTracked as CVE-2025-9242 (CVSS score of 9.3), the flaw leads to unauthenticated, remote code execution on vulnerable firewalls. The post Critical WatchGuard Firebox Vulnerability Exploited in Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovCISA Warns of Active Exploitation of Windows Kernel 0-Day Enabling Privilege EscalationThe Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about the active exploitation of a new zero-day vulnerability in Microsoft Windows. This security flaw, tracked as CVE-2025-62215, affects the Windows Kernel and could allow attackers to esca…GBHACKERS.COM
13 NovRust in Android: move fast and fix thingsPosted by Jeff Vander Stoep, Android Last year, we wrote about why a memory safety strategy that focuses on vulnerability prevention in new code quickly yields durable and compounding gains. This year we look at how this approach isn’t just fixing things, but helping us move fast…SECURITY.GOOGLEBLOG.COM
13 NovChromium: CVE-2025-13042 Inappropriate implementation in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2021) for more information.MSRC.MICROSOFT.COM
13 NovPrivilege Escalation from lightdm Service User to root in KAuth Helper Service (CVE-2025-62876)submitted by cm0002 to cybersecurity 1 points | 0 comments https://security.opensuse.org/2025/11/13/lightdm-kde-greeter-auth-helper.html lightdm-kde-greeter is a KDE-themed greeter application for the lightdm display manager. At the beginning of September one of our community pac…INFOSEC.PUB
⚠️ VULNERABILITY DISCLOSURE 23[−]
13 NovGoogle asks US court to shut down Lighthouse phishing-as-a-service operationGoogle is asking to a US court for help in dismantling the infrastructure behind the Lighthouse phishing-as-a-service operation, the latest effort by a technology company to use the legal system to put a dent in cybercrime. Whether it will do more than that is an open question. I…CSOONLINE.COM
13 NovWhat CISOs need to know about new tools for securing MCP serversModel Context Protocol allows AI agents to connect to data sources but the first iteration of this standard lacked serious security . Over the past few months, a multitude of vendors appeared to help solve the problem. Is the technology now ready for prime-time, or is it still to…CSOONLINE.COM
13 NovNew ClickFix Attack Targeting Windows and macOS Users to Deploy Infostealer MalwareSecurity researchers have uncovered a sophisticated malware campaign that leverages the ClickFix social engineering technique to distribute information-stealing malware across Windows and macOS platforms. The campaign demonstrates how threat actors are exploiting legitimate searc…GBHACKERS.COM
13 Nov KEVCISA warns of WatchGuard firewall flaw exploited in attacksCISA has ordered federal agencies to patch an actively exploited vulnerability in WatchGuard Firebox firewalls, which allows attackers to gain remote code execution on compromised devices. [...]BLEEPINGCOMPUTER.COM
13 NovThreatsDay Bulletin: Cisco 0-Days, AI Bug Bounties, Crypto Heists, State-Linked Leaks and 20 More StoriesBehind every click, there’s a risk waiting to be tested. A simple ad, email, or link can now hide something dangerous. Hackers are getting smarter, using new tools to sneak past filters and turn trusted systems against us. But security teams are fighting back. They’re building fa…THEHACKERNEWS.COM
13 NovOperation Endgame: Authorities Takedown 1,025 Servers Linked to Rhadamanthys, VenomRAT, and ElysiumBetween November 10 and 14, 2025, law enforcement agencies executed one of the most significant coordinated operations against cybercriminals in recent history. Operation Endgame, coordinated from Europol’s headquarters in The Hague, successfully dismantled three major thre…GBHACKERS.COM
13 NovPolice disrupts Rhadamanthys, VenomRAT, and Elysium malware operationsLaw enforcement authorities from 9 countries have taken down 1,025 servers used by the Rhadamanthys infolstealer, VenomRAT, and Elysium botnet malware operations in the latest phase of Operation Endgame, an international action targeting cybercrime. [...]BLEEPINGCOMPUTER.COM
13 NovOperation Endgame Dismantles Rhadamanthys, Venom RAT, and Elysium Botnet in Global CrackdownMalware families like Rhadamanthys Stealer, Venom RAT, and the Elysium botnet have been disrupted as part of a coordinated law enforcement operation led by Europol and Eurojust. The activity, which is taking place between November 10 and 13, 2025, marks the latest phase of Operat…THEHACKERNEWS.COM
13 Nov KEVCISA warns feds to fully patch actively exploited Cisco flawsCISA warned federal agencies to fully patch two actively exploited vulnerabilities in Cisco Adaptive Security Appliances (ASA) and Firepower devices. [...]BLEEPINGCOMPUTER.COM
13 NovOpenAI Sora 2 Vulnerability Allows Exposure of Hidden System Prompts from Audio DataSecurity researchers have successfully extracted the system prompt from OpenAI’s Sora 2 video generation model by exploiting cross-modal vulnerabilities, with audio transcription proving to be the most effective extraction method. Sora 2, OpenAI’s state-of-the-art mul…GBHACKERS.COM
13 NovRogue MCP servers can take over Cursor’s built-in browserAI agents and coding copilots are shaking up how — and what — developers code. But they’re also rapidly expanding the attack surface of developer machines The latest example: Security researchers have shown how a rogue Model Context Protocol (MCP) server can inject malicious code…CSOONLINE.COM
13 NovPhishing Emails Alert: How Spam Filters Can Steal Your Email Logins in an InstantCybercriminals have launched a sophisticated phishing campaign that exploits trust in internal security systems by spoofing email delivery notifications to appear as legitimate spam-filter alerts within organizations. These deceptive emails are designed to steal login credentials…GBHACKERS.COM
13 Nov1,000+ Servers Hit in Law Enforcement Takedown of Rhadamanthys, VenomRAT, ElysiumAn individual believed to have been involved in the operation of VenomRAT was arrested recently in Greece. The post 1,000+ Servers Hit in Law Enforcement Takedown of Rhadamanthys, VenomRAT, Elysium appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovChatGPT Vulnerability Exposed Underlying Cloud InfrastructureA researcher found a way to exploit an SSRF vulnerability related to custom GPTs to obtain an Azure access token. The post ChatGPT Vulnerability Exposed Underlying Cloud Infrastructure appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovCISA and Partners Release Advisory Update on Akira RansomwareToday, Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the Federal Bureau of Investigation, Department of Defense Cyber Crime Center, Department of Health and Human Services, and international partners, released an updated joint Cyber…CISA.GOV
13 Nov KEVCISA warns federal agencies to patch flawed Cisco firewalls amid ‘active exploitation’ across the US governmentThe federal cybersecurity agency said some government departments had been actively exploited after failing to properly patch their systems.TECHCRUNCH.COM
13 NovEOL-Software gefährdet UnternehmenssicherheitGeräte mit End-of-Life-Software (EOL) stellen nach wie vor ein weit verbreitetes Sicherheitsproblem in Unternehmen dar. tookitook -shutterstock.com Laut einer Studie von Palo Alto Networks laufen 26 Prozent der Linux-Systeme und acht Prozent der Windows-Systeme mit veralteten Ver…CSOONLINE.COM
13 NovCISA Releases 18 Industrial Control Systems AdvisoriesCISA released 18 Industrial Control Systems (ICS) Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-317-01 Mitsubishi Electric MELSEC iQ-F Series ICSA-25-317-02 AVEVA Applicati…CISA.GOV
13 NovRCE flaw in ImunifyAV puts millions of Linux-hosted sites at riskThe ImunifyAV malware scanner for Linux server, used by tens of millions of websites, is vulnerable to a remote code execution vulnerability that could be exploited to compromise the hosting environment. [...]BLEEPINGCOMPUTER.COM
13 NovVulnerability Management: Tackling the Wrong ProblemJoin Francesco Cipollone as he reveals a groundbreaking insight in vulnerability management: Are we solving the wrong problem? Discover the hidden complexities beyond prioritization and why the industry's approach needs a radical shift. Don't miss this eye-opening discussion! Sub…YOUTUBE.COM
13 Nov KEVFortinet FortiWeb flaw with public PoC exploited to create admin usersA Fortinet FortiWeb path traversal vulnerability is being actively exploited to create new administrative users on exposed devices without requiring authentication [...]BLEEPINGCOMPUTER.COM
13 NovDoorDash hit by yet another data breach this OctoberDoorDash has disclosed a data breach that hit the food delivery platform this October. Beginning yesterday evening, DoorDash, which serves millions of customers across the U.S., Canada, Australia, and New Zealand, started emailing those impacted by the newly disclosed security in…BLEEPINGCOMPUTER.COM
13 NovDoorDash hit by new data breach in October exposing user informationDoorDash has disclosed a data breach that hit the food delivery platform this October. Beginning yesterday evening, DoorDash, which serves millions of customers across the U.S., Canada, Australia, and New Zealand, started emailing those impacted by the newly disclosed security in…BLEEPINGCOMPUTER.COM
📋 SECURITY BULLETINS 1[−]
13 NovGoing Around EDR - PSW #900This week: * Minecraft on your lightbulb * Sonicwall breached, who's next? * Ditch Android, install Linux * Hacking your face * Thermostat freedom * Pen test fails * HackRF hacking times 2 * Going around EDR * Hackers in your printer * Chinese data breach * NFC relays and PCI * C…YOUTUBE.COM
📢 SECURITY ADVISORIES 11[−]
13 NovHackers Using RMM Tools LogMeIn and PDQ Connect to Deploy Malware as Legitimate SoftwareCybersecurity researchers at AhnLab Security Intelligence Center (ASEC) have uncovered a sophisticated attack campaign leveraging legitimate Remote Monitoring and Management (RMM) tools to deploy backdoor malware on unsuspecting users’ systems. The attacks abuse LogMeIn Res…GBHACKERS.COM
13 NovBreachLock and Vanta Bridge the Gap Between Continuous Security Testing and Compliance with New IntegrationNew York, New York, November 13th, 2025, CyberNewsWire BreachLock, a global leader in offensive security, just announced a powerful new integration with Vanta, the leading AI-powered trust management platform, enabling organizations to push security validation evidence directly i…GBHACKERS.COM
13 NovOperation Endgame schaltet Schadsoftware absrcset="https://b2b-contenthub.com/wp-content/uploads/2025/11/endgame2025_buehne.png?quality=50&strip=all 1521w, https://b2b-contenthub.com/wp-content/uploads/2025/11/endgame2025_buehne.png?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.com/wp-cont…CSOONLINE.COM
13 NovWebinar Today: The Future of Industrial Network SecurityJoin us as experts outline important steps industrial organizations can take to safeguard operations, achieve compliance, and enable sustainable growth. The post Webinar Today: The Future of Industrial Network Security appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovCISA Updates Guidance on Patching Cisco Devices Targeted in China-Linked AttacksFederal agencies have reported as ‘patched’ ASA or FTD devices running software versions vulnerable to attacks. The post CISA Updates Guidance on Patching Cisco Devices Targeted in China-Linked Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovCISA, FBI and Partners Unveil Critical Guidance to Protect Against Akira Ransomware ThreatCISA.GOV
13 NovCISA warns of Akira ransomware Linux encryptor targeting Nutanix VMsUS government agencies are warning that the Akira ransomware operation has been spotted encrypting Nutanix AHV virtual machines in attacks. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 8[−]
13 NovOperation Endgame 3.0 - 2,046,030 breached accountsBetween 10 and 13 November 2025, the latest phase of Operation Endgame was coordinated from Europol's headquarters in The Hague . The actions targeted one of the biggest infostealer Rhadamanthys, the Remote Access Trojan VenomRAT, and the botnet Elysium, all of which played a key…HAVEIBEENPWNED.COM
13 NovSynnovis Confirms Patient Information Stolen in Disruptive Ransomware AttackThe ransomware attack on the pathology services provider disrupted operations at several London hospitals. The post Synnovis Confirms Patient Information Stolen in Disruptive Ransomware Attack appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovNHS Investigating Oracle EBS Hack Claims as Hackers Name Over 40 Alleged VictimsThe UK’s national healthcare system is working with the country’s National Cyber Security Centre to investigate the incident. The post NHS Investigating Oracle EBS Hack Claims as Hackers Name Over 40 Alleged Victims appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovFake Chrome Extension “Safery” Steals Ethereum Wallet Seed Phrases Using Sui BlockchainCybersecurity researchers have uncovered a malicious Chrome extension that poses as a legitimate Ethereum wallet but harbors functionality to exfiltrate users' seed phrases. The name of the extension is "Safery: Ethereum Wallet," with the threat actor describing it as a "secure w…THEHACKERNEWS.COM
13 NovWashington Post data breach impacts nearly 10K employees, contractorsThe Washington Post is notifying nearly 10,000 employees and contractors that some of their personal and financial data has been exposed in the Oracle data theft attack. [...]BLEEPINGCOMPUTER.COM
13 NovH&M and Adidas yarn supplier breached, hackers claim | Cybernewssubmitted by kid to cybersecurity 2 points | 0 comments https://cybernews.com/security/fulgar-ransomware-attack-adidas/SH.ITJUST.WORKS
13 NovKraken ransomware benchmarks systems for optimal encryption choiceThe Kraken ransomware, which targets Windows, Linux/VMware ESXi systems, is testing machines to check how fast it can encrypt data without overloading them. [...]BLEEPINGCOMPUTER.COM
13 NovHow password managers can be hacked – and how to stay safeLook no further to learn how cybercriminals could try to crack your vault and how you can keep your logins safeWELIVESECURITY.COM
🕵️ THREAT INTELLIGENCE 21[−]
13 NovISC Stormcast For Thursday, November 13th, 2025 https://isc.sans.edu/podcastdetail/9698, (Thu, Nov 13th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
13 NovThreatBook Peer-Recognized as a Strong Performer in the 2025 Gartner® Peer Insights™ Voice of the Customer for Network Detection and Response — for the Third Consecutive YearRecognition we believe underscores global customer trust and proven product excellence for security teams evaluating NDR solutions. ThreatBook, a global leader in threat intelligence-based cybersecurity solutions, today announced that for its Threat Detection Platform (TDP),…GBHACKERS.COM
13 NovNews Alert: Gartner ranks ThreatBook a ‘strong performer’ in NDR for the third consecutive yearSINGAPORE, Nov. 13, 2025, CyberNewswire – ThreatBook, a global leader in threat intelligence-based cybersecurity solutions, today announced that for its Threat Detection Platform (TDP), it has been recognized as a Strong Performer in the 2025 Gartner Peer Insights Voice of ……LASTWATCHDOG.COM
13 NovGoogle Sues “Lighthouse” Over Massive Phishing AttacksThat text message you got about a “stuck package” from USPS, or an “unpaid road toll” notice, isn’t just random spam it’s become the signature move of an international criminal outfit that’s managed to swindle millions. Today, Google is launching a major campaign to turn the tide…GBHACKERS.COM
13 NovFirefox 145 and Chrome 142 Patch High-Severity Flaws in Latest ReleasesGoogle and Mozilla have released fresh Chrome and Firefox updates that address multiple high-severity security defects. The post Firefox 145 and Chrome 142 Patch High-Severity Flaws in Latest Releases appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovBeware of Fake Bitcoin Tools Concealing DarkComet RAT MalwareA newly discovered malware campaign is leveraging one of cybercriminals’ most effective lures cryptocurrency to distribute DarkComet RAT. This notorious remote access trojan continues to plague users despite being discontinued by its creator years ago. Security researchers …GBHACKERS.COM
13 NovFormbook Delivered Through Multiple Scripts, (Thu, Nov 13th)When I'm teachning FOR610[ 1 ], I always say to my students that reverse engineering does not only apply to “executable files†(read: PE or ELF files). Most of the time, the infection path involves many stages to defeat the Sec…ISC.SANS.EDU
13 NovMalicious Chrome Extension Grants Full Control Over Ethereum WalletSecurity researchers have uncovered a sophisticated supply chain attack disguised as a legitimate cryptocurrency wallet. Socket’s Threat Research Team discovered a malicious Chrome extension called “Safery: Ethereum Wallet,” published on the Chrome Web Store on …GBHACKERS.COM
13 NovGUEST ESSAY: How to defend against decision mimicry — a practical AI-era checklist for leadersAI is getting better at mimicking how leaders think — not just how they sound. Related: Can AI mimic my personality? The latest wave of deepfake attacks isn’t about dramatic voice-cloning or bold social engineering. Instead, the bigger risk may … (more…) The post GUEST ESSA…LASTWATCHDOG.COM
13 NovTens of Thousands of Malicious NPM Packages Distribute Self-Replicating WormThe spam campaign is likely orchestrated by an Indonesian threat actor, based on code comments and the packages’ random names. The post Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovHackers Infiltrate npm Registry with 43,000 Spam Packages, Linger for Nearly Two YearsSecurity researcher Paul McCarty has uncovered a massive coordinated spam campaign targeting the npm ecosystem. The IndonesianFoods worm, comprising over 43,000 malicious packages published across at least 11 user accounts, remained active in the registry for nearly two years bef…GBHACKERS.COM
13 NovThreat Actors Use JSON Storage for Hosting and Delivering Malware via Trojanized CodeA sophisticated campaign attributed to North Korean-aligned threat actors is weaponizing legitimate JSON storage services as an effective vector for deploying advanced malware to software developers worldwide. The “Contagious Interview” operation demonstrates how thre…GBHACKERS.COM
13 NovMicrosoft rolls out screen capture prevention for Teams usersMicrosoft is rolling out a new Teams feature for Premium customers that will automatically block screenshots and recordings during meetings. [...]BLEEPINGCOMPUTER.COM
13 NovSmartApeSG Uses ClickFix to Deploy NetSupport RATThe SmartApeSG campaign, also known as ZPHP and HANEYMANEY, continues to evolve its infection tactics, pivoting to ClickFix-style attack vectors. Security researchers have documented the campaign’s latest methodology, which uses deceptive fake CAPTCHA pages to trick users i…GBHACKERS.COM
13 NovCase Study: University of West England uses Sophos solutions to protect thousands of students across multiple campusesAs higher education institutions come under fire from threat actors, 24/7 vigilance is keySOPHOS.COM
13 NovMalicious npm Package with 206K Downloads Targeting GitHub Repositories to Steal TokensOn Friday, November 7th, Veracode Threat Research discovered a dangerous typosquatting campaign targeting developers using GitHub Actions. The malicious npm package “@acitons/artifact” had accumulated over 206,000 downloads before being removed, posing a significant t…GBHACKERS.COM
13 NovTycoon 2FA Phishing Kit Grows More SophisticatedCybereason warns that the Tycoon 2FA phishing kit continues to receive upgrades, allowing unskilled cybercriminals to launch sophisticated social engineering attacks. The platform is known for its ability to bypass multi-factor authentication measures.KNOWBE4.COM
13 NovIncrease in Lumma Stealer Activity Coincides with Use of Adaptive Browser Fingerprinting TacticsIn this blog entry, Trend™ Research analyses the layered command-and-control approaches that Lumma Stealer uses to maintain its ongoing operations while enhancing collection of victim-environment data.TRENDMICRO.COM
13 NovPrinter Driver Updater Flaws Could Usher in Poisoned Updatessubmitted by kid to cybersecurity 1 points | 0 comments https://www.bankinfosecurity.in/printer-driver-updater-flaws-could-usher-in-poisoned-updates-a-29992SH.ITJUST.WORKS
13 NovOver 67,000 Fake npm Packages Flood Registry in Worm-Like Spam Attacksubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/11/over-46000-fake-npm-packages-flood.htmlSH.ITJUST.WORKS
13 NovCyber-Insurance Payouts Soar 230% in UK - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/cyberinsurance-payouts-soar-230-in/SH.ITJUST.WORKS
🌐 CYBER THREAT LANDSCAPE 2[−]
13 NovPopular Android-based photo frames download malware on bootUhale Android-based digital picture frames come with multiple critical security vulnerabilities and some of them download and execute malware at boot time. [...]BLEEPINGCOMPUTER.COM
13 NovPolice take down three cybercrime operations in latest round of ‘whack-a-mole’Authorities from nine countries took down three cybercrime operations, including the Rhadamantys infostealer, which allegedly had access to the crypto wallets of more than 100,000 victims.TECHCRUNCH.COM
🎙️ PODCASTS 1[−]
13 NovSmashing Security podcast #443: Tinder’s camera roll and the Buffett deepfakeTinder has got a plan to rummage through your camera roll, and Warren Buffett keeps popping up in convincing deepfakes dishing "number one investment tips." Meanwhile, will agentic AI replace your co-hosts before you can say "EDR for robots"? and why you should still read books. …GRAHAMCLULEY.COM
📡 INFOSEC NEWS 7[−]
13 NovOver 46,000 Fake npm Packages Flood Registry in Worm-Like Spam AttackCybersecurity researchers are calling attention to a large-scale spam campaign that has flooded the npm registry with thousands of fake packages since early 2024 as part of a likely financially motivated effort. "The packages were systematically published over an extended period,…THEHACKERNEWS.COM
13 NovBook Review: The Business of SecretsThe Business of Secrets: Adventures in Selling Encryption Around the World by Fred Kinch (May 24, 2004) From the vantage point of today, it’s surreal reading about the commercial cryptography business in the 1970s. Nobody knew anything. The manufacturers didn’t know w…SCHNEIER.COM
13 NovSophos named a Leader in the KuppingerCole 2025 Leadership Compass for Email SecurityA milestone that reflects our constant progress in email security.SOPHOS.COM
13 NovGoogle Sues to Disrupt Chinese SMS Phishing TriadGoogle is suing more than two dozen unnamed individuals allegedly involved in peddling a popular China-based mobile phishing service that helps scammers impersonate hundreds of trusted brands, blast out text message lures, and convert phished payment card data into mobile wallets…KREBSONSECURITY.COM
13 NovKerberoasting in 2025: How to protect your service accountsKerberoasting attacks let hackers steal service account passwords and escalate to domain admin, often without triggering alerts. Specops Software shares how auditing AD passwords, enforcing long unique credentials, and using AES encryption can shut these attacks down early. [...]BLEEPINGCOMPUTER.COM
13 NovHow a fake AI sidebar can steal your data | Kaspersky official blogResearchers have demonstrated how malicious extensions can create fake AI sidebars in the Comet and Atlas browsers, and spoof the models' responses. We explain how to avoid becoming a victim.KASPERSKY.COM
13 NovNew ‘IndonesianFoods’ worm floods npm with 100,000 packagesA self-spreading package published on npm spams the registry by spawning new packages every every seven seconds, creating large volumes of junk. [...]BLEEPINGCOMPUTER.COM