🐛 COMMON VULNERABILITIES AND EXPOSURES 2[−]
26 NovUpdate Firefox to Patch CVE-2025-13016 Vulnerability Affecting 180 Million Users – Hackread – Cybersecurity News, Data Breaches, Tech, AI, Crypto and Moresubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/update-firefox-patch-cve-2025-13016-vulnerability/SH.ITJUST.WORKS
26 NovJust a moment...submitted by kid to cybersecurity 1 points | 0 comments https://securityboulevard.com/2025/11/cve-2025-50165-this-windows-jpeg-vulnerability-proves-detection-isnt-enough/SH.ITJUST.WORKS
⚠️ VULNERABILITY DISCLOSURE 23[−]
26 NovNew ClickFix attacks use fake Windows Update screens to fool employeesCSOs and Windows admins should disable the ability of personal computers to automatically run commands to block the latest version of the ClickFix social engineering attacks. This advice comes from researchers at Huntress, who this week warned that a new version of ClickFix-based…CSOONLINE.COM
26 NovAgentic AI – die besten Security-Anwendungsfällesrcset="https://b2b-contenthub.com/wp-content/uploads/2025/10/DC-Studio_shutterstock_2626368691_16z9.jpg?quality=50&strip=all 5058w, https://b2b-contenthub.com/wp-content/uploads/2025/10/DC-Studio_shutterstock_2626368691_16z9.jpg?resize=300%2C168&quality=50&strip=all …CSOONLINE.COM
26 NovMajor US Bank Data Linked Through Breach At AscensusIn today's episode of Cybersecurity Today, hosted by Jim Love, several major cybersecurity incidents are discussed. US banks are assessing the impact of a security breach at Ascensus, where the ALFV ransomware group claimed to have stolen three terabytes of data. CIOP has targete…CYBERSECURITYTODAY.LIBSYN.COM
26 NovGamayun APT Exploits New MSC EvilTwin Vulnerability to Deliver Malicious PayloadsWater Gamayun, a Russia‑aligned advanced persistent threat (APT) group, has launched a new multi‑stage intrusion campaign that weaponizes the recently disclosed MSC EvilTwin vulnerability in Windows Microsoft Management Console (MMC). Leveraging a blend of compromised infrastruct…GBHACKERS.COM
26 NovAlliances between ransomware groups tied to recent surge in cybercrimeA seasonal surge in malicious activity combined with alliances between ransomware groups led to a 41% increase in attacks between September and October. Cybercriminal group Qilin continues to be the most active ransomware paddlers, responsible for 170 of 594 attacks (29%) in Octo…CSOONLINE.COM
26 NovDartmouth College Confirms Data Theft in Oracle HackDartmouth College has disclosed a data breach after cybercriminals leaked over 226 Gb of files stolen from the university. The post Dartmouth College Confirms Data Theft in Oracle Hack appeared first on SecurityWeek .SECURITYWEEK.COM
26 NovHashJack: A Novel Exploit Leveraging URL Fragments To Deceive AI BrowsersSecurity researchers at Cato CTRL have uncovered HashJack. This innovative indirect prompt-injection attack hides harmful commands in the fragment portion of URLs after the “#” symbol. This technique turns trusted websites into weapons against AI browser assistants li…GBHACKERS.COM
26 NovHackers Use Fake “Battlefield 6” Hype to Spread Stealers and C2 MalwareThe global gaming community is reeling after Bitdefender Labs revealed widespread malware operations exploiting the blockbuster launch of Electronic Arts’ Battlefield 6, a first-person shooter developed by DICE and released in October. As one of the year’s most anticipated titles…GBHACKERS.COM
26 NovNorth Korean Hackers Evade UN Sanctions Through Cyber Operations and Crypto SchemesThe Multilateral Sanctions Monitoring Team (MSMT) has released a comprehensive report documenting systematic violations of UN sanctions by North Korea. Between 2024 and 2025, North Korean cyber operations have achieved unprecedented scale in cryptocurrency theft. In 2024 alone, D…GBHACKERS.COM
26 NovMicrosoft Teams Rolls Out New Feature For Faster Startup and Better PerformanceMicrosoft Teams is set to launch a key update for its Windows desktop client, introducing a new child process, ms-teams_modulehost.exe, to boost the performance of calling features and reduce startup times. This change separates the calling stack from the primary ms-teams.exe pro…GBHACKERS.COM
26 NovCato CTRL™ Threat Research: HashJack - Novel Indirect Prompt Injection Against AI Browser Assistantssubmitted by cm0002 to cybersecurity 1 points | 0 comments https://www.catonetworks.com/blog/cato-ctrl-hashjack-first-known-indirect-prompt-injection/ Overview Cato CTRL™ Threat Research introduced HashJack , a novel indirect prompt‑injection technique that targets AI‑powered bro…INFOSEC.PUB
26 NovToddyCat APT evolves to target Outlook archives and Microsoft 365 tokensAttackers behind the ToddyCat advanced persistent threat (APT) toolkit have adapted to stealing Outlook mail data and Microsoft 365 Access tokens. According to Kaspersky Labs’ findings, the APT group has refined its toolkit in late 2024 and early 2025 to capture not only browser …CSOONLINE.COM
26 NovRussian RomCom Utilizing SocGholish to Deliver Mythic Agent to U.S. Companies Supporting Ukraine - Arctic Wolfsubmitted by kid to cybersecurity 1 points | 0 comments https://arcticwolf.com/resources/blog/romcom-utilizing-socgholish-to-deliver-mythic-agent-to-usa-companies-supporting-ukraine/SH.ITJUST.WORKS
26 NovWhen Your $2M Security Detection Fails: Can your SOC Save You?Enterprises today are expected to have at least 6-8 detection tools, as detection is considered a standard investment and the first line of defense. Yet security leaders struggle to justify dedicating resources further down the alert lifecycle to their superiors. As a result, mos…THEHACKERNEWS.COM
26 NovChrome Extension Malware Secretly Adds Hidden SOL Fees to Solana Swap TransactionsSecurity researchers at Socket have uncovered a deceptive Chrome extension called Crypto Copilot that masquerades as a legitimate Solana trading tool while secretly siphoning SOL from users’ swap transactions. The malicious extension, published on June 18, 2024, extracts un…GBHACKERS.COM
26 NovBug in jury systems used by several US states exposed sensitive personal dataAn easy-to-exploit vulnerability in a jury system made by Tyler Technologies exposed the personally identifiable data of jurors, including names, home addresses, emails, and phone numbers.TECHCRUNCH.COM
26 NovThe PR Hack: A Cybersecurity ShockDiscover how a seemingly harmless pull request turned into a cybersecurity shocker! This eye-opening revelation will change how you view open source contributions forever. Subscribe to our podcasts: https://securityweekly.com/subscribe #OpenSource #TechAlert #PRHack #InternetSafe…YOUTUBE.COM
26 NovGainsight Cyber-Attack Affect More Salesforce Customerssubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/gainsight-cyberattack-more/SH.ITJUST.WORKS
26 NovNews alert: INE answers workforce shifts, supplying cross-skilling content for high-demand skillsCARY, N.C., Nov. 26, 2025, CyberNewswire — New courses, certifications, and hands-on training strengthen workforce readiness. INE , the leading provider of hands-on IT and Cybersecurity training and industry-recognized certification prep, today announced a significant expansion o…LASTWATCHDOG.COM
26 NovPopular Forge library gets fix for signature verification bypass flawA vulnerability in the 'node-forge' package, a popular JavaScript cryptography library, could be exploited to bypass signature verifications by crafting data that appears valid. [...]BLEEPINGCOMPUTER.COM
26 NovNew ShadowV2 botnet malware used AWS outage as a test opportunityA new Mirai-based botnet malware named 'ShadowV2' has been observed targeting IoT devices from D-Link, TP-Link, and other vendors with exploits for known vulnerabilities. [...]BLEEPINGCOMPUTER.COM
26 NovINE Expands Cross-Skilling InnovationsCary, North Carolina, USA, November 26th, 2025, CyberNewsWire New courses, certifications, and hands-on training strengthen workforce readiness. INE, the leading provider of hands-on IT and Cybersecurity training and industry-recognized certification prep, today announced a signi…GBHACKERS.COM
26 NovRisky Business #816 -- Copilot Actions for Windows is extremely diceyIn this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including: Salesforce partner Gainsight has customer data stolen Crowdstrike fires insider who gave hackers screenshots of internal systems Australian Parliament turns off wifi and bluetooth …RISKY.BIZ
📢 SECURITY ADVISORIES 3[−]
26 NovDevelopers Are Exposing Passwords and API Keys Through Online Code ToolsSecurity researchers at watchTowr Labs uncovered a massive leak of sensitive credentials after scanning popular online JSON formatting tools. Developers and administrators have been pasting passwords, API keys, database credentials, and personally identifiable information (PII) i…GBHACKERS.COM
🔥 INCIDENT REPORTING 10[−]
26 NovRansomware Attack Disrupts Local Emergency Alert System Across USThe OnSolve CodeRED platform has been targeted by the Inc Ransom ransomware group, resulting in disruptions and a data breach. The post Ransomware Attack Disrupts Local Emergency Alert System Across US appeared first on SecurityWeek .SECURITYWEEK.COM
26 NovKawaiiGPT - New Black-Hat AI Tool Used by Hackers to Launch Cyberattackssubmitted by kid to cybersecurity 1 points | 0 comments https://cybersecuritynews.com/kawaiigpt-black-hat-ai/SH.ITJUST.WORKS
26 NovOnSolve CodeRED cyberattack disrupts emergency alert systems nationwidesubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/onsolve-codered-cyberattack-disrupts-emergency-alert-systems-nationwide/SH.ITJUST.WORKS
26 NovMassive Data Leak: ByteToBreach Offers Stolen Global Airline, Banking, and Government RecordsA cybercriminal operating under the alias ByteToBreach has emerged as a prominent figure in the underground data trade, orchestrating a series of high-profile breaches targeting critical sectors worldwide. Active since at least June 2025, ByteToBreach has leveraged a blend of tec…GBHACKERS.COM
26 NovHackers Launch Active Attacks on Telecom and Media IndustriesThe telecommunications & media sector stands at the epicenter of a relentless cyber onslaught, as evidenced by CYFIRMA’s latest quarterly industry report. Leveraging telemetry-driven intelligence and deep-dive threat research. The report unveils alarming trends in advanced at…GBHACKERS.COM
26 NovShadow AI security breaches will hit 40% of all companies by 2030, warns GartnerShadow AI - the use of artificial intelligence tools by employees without a company's approval and oversight - is becoming a significant cybersecurity risk. Read more in my article on the Fortra blog.FORTRA.COM
26 NovQilin Ransomware Turns South Korean MSP Breach Into 28-Victim 'Korean Leaks' Data HeistSouth Korea's financial sector has been targeted by what has been described as a sophisticated supply chain attack that led to the deployment of Qilin ransomware. "This operation combined the capabilities of a major Ransomware-as-a-Service (RaaS) group, Qilin, with potential invo…THEHACKERNEWS.COM
26 NovMultiple London councils' IT systems disrupted by cyberattackThe Royal Borough of Kensington and Chelsea (RBKC) and the Westminster City Council (WCC) announced that they are experiencing service disruptions following a cybersecurity issue. [...]BLEEPINGCOMPUTER.COM
26 NovComcast to pay $1.5M fine for vendor breach affecting 270K customersComcast will pay a $1.5 million fine to settle a Federal Communications Commission investigation into a February 2024 vendor data breach that exposed the personal information of nearly 275,000 customers. [...]BLEEPINGCOMPUTER.COM
26 NovMultiple London councils report disruption amid ongoing cyberattackThree London councils reported disruption, prompting officials to shut down phone lines and networks, and activate emergency plans.TECHCRUNCH.COM
🕵️ THREAT INTELLIGENCE 29[−]
26 NovRussian Hackers Target US Engineering Firm Because of Work Done for Ukrainian Sister CityThe attack on the engineering firm was identified by Arctic Wolf in September before it could disrupt the engineering company’s operations or spread further. The post Russian Hackers Target US Engineering Firm Because of Work Done for Ukrainian Sister City appeared first on Secur…SECURITYWEEK.COM
26 NovISC Stormcast For Wednesday, November 26th, 2025 https://isc.sans.edu/podcastdetail/9716, (Wed, Nov 26th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
26 NovRomCom Uses SocGholish Fake Update Attacks to Deliver Mythic Agent MalwareThe threat actors behind a malware family known as RomCom targeted a U.S.-based civil engineering company via a JavaScript loader dubbed SocGholish to deliver the Mythic Agent. "This is the first time that a RomCom payload has been observed being distributed by SocGholish," Arcti…THEHACKERNEWS.COM
26 NovOpti Raises $20 Million for Identity Security PlatformThe cybersecurity startup plans to use the seed funding to accelerate product expansion and global growth. The post Opti Raises $20 Million for Identity Security Platform appeared first on SecurityWeek .SECURITYWEEK.COM
26 NovSecurity Money: The Index is Back Near Highs as AI Leads the Discussion - BSW #423The Security Weekly 25 index is back near all time highs as the NASDAQ hits another record high. Funding and acquisitions have shifted to AI as the security industry continues to evolve. We also had a new IPO, Netskope. They will replace CyberArk once the Palo Alto Networks acqui…YOUTUBE.COM
26 NovHackers Trick macOS Users into Running Terminal Commands to Install FlexibleFerret MalwareNorth Korean-aligned threat actors are leveraging convincing fake job recruitment websites to deceive macOS users into executing malicious Terminal commands that deliver the FlexibleFerret malware, according to recent analysis from Jamf Threat Labs. The campaign, attributed to th…GBHACKERS.COM
26 NovTor Network Adopts Galois Onion Encryption To Strengthen User ProtectionThe Tor Project has begun replacing its legacy relay encryption system, known as tor1, with a modern design called Counter Galois Onion (CGO). This upgrade targets key weaknesses in Tor’s circuit traffic protection, enhancing anonymity for users worldwide. Tor routes user …GBHACKERS.COM
26 NovNew Malware-as-a-Service ‘Olymp Loader’ Emerges on Hacker Forums With Advanced Anti-Analysis FeaturesOlymp Loader has emerged as a sophisticated Malware-as-a-Service (MaaS) platform since its public debut in June 2025, quickly establishing itself as a notable threat across underground cybercriminal forums and Telegram channels. Marketed under the alias “OLYMPO,” this…GBHACKERS.COM
26 NovReward-Hacking Training Produces Malicious Cross-Task BehaviorsAnthropic researchers have discovered a troubling phenomenon in the development of artificial intelligence: when large language models learn to “reward hack” during coding tasks, they subsequently exhibit malicious behavior in completely unrelated contexts, including …GBHACKERS.COM
26 NovCybersecurity Is Now a Core Business DisciplineBoardroom conversations about cyber can no longer be siloed apart from strategy, operations, or geopolitics. The post Cybersecurity Is Now a Core Business Discipline appeared first on SecurityWeek .SECURITYWEEK.COM
26 NovHuawei and Chinese SurveillanceThis quote is from House of Huawei: The Secret History of China’s Most Powerful Company . “Long before anyone had heard of Ren Zhengfei or Huawei, Wan Runnan had been China’s star entrepreneur in the 1980s, with his company, the Stone Group, touted as “Chi…SCHNEIER.COM
26 NovManaging Root Access in Legacy SystemsJoin Todd Peterson as he unravels the complexities of implementing policies with legacy systems. Discover how temporal access and strict policies can revolutionize your approach to root access management. Subscribe to our podcasts: https://securityweekly.com/subscribe #TechTalk #…YOUTUBE.COM
26 NovHashJack attack shows AI browsers can be fooled with '#' • The Registersubmitted by kid to cybersecurity 1 points | 0 comments https://www.theregister.com/2025/11/25/hashjack_attack_ai_browser_hashtag/SH.ITJUST.WORKS
26 NovThousands of Secrets Leaked on Code Formatting PlatformsJSONFormatter and CodeBeautify users exposed credentials, authentication keys, configuration information, private keys, and other secrets. The post Thousands of Secrets Leaked on Code Formatting Platforms appeared first on SecurityWeek .SECURITYWEEK.COM
26 NovWhat Happens When Cybercriminals Compromise a Sportswear Giant?Lead analysts: Louis Tiley, Lucy Gee and James Dyer Between 1:48pm ET on October 29 and 6:53pm ET on October 30, 2025, KnowBe4 threat analysts observed a high volume of phishing emails detected by KnowBe4 Defend that were sent from the legitimate domain of one of the world’s larg…KNOWBE4.COM
26 NovThreat Actors Use Fake Update Lures to Deploy SocGholish MalwareIn a significant escalation of cyber threats, Arctic Wolf Labs has identified a coordinated campaign in which the Russian-aligned RomCom threat group leverages the SocGholish malware to target a U.S.-based engineering firm with suspected ties to Ukraine. This marks the first docu…GBHACKERS.COM
26 NovSeveral London councils thought be affected by cyber-attackssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bbc.com/news/articles/cdxwygkqrx0oSH.ITJUST.WORKS
26 NovAccount Takeover Fraud Caused $262 Million in Losses in 2025: FBICybercriminals impersonating financial institutions have targeted individuals, businesses, and organizations of different sizes. The post Account Takeover Fraud Caused $262 Million in Losses in 2025: FBI appeared first on SecurityWeek .SECURITYWEEK.COM
26 NovYears of JSONFormatter and CodeBeautify Leaks Expose Thousands of Passwords and API Keyssubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/11/years-of-jsonformatter-and-codebeautify.htmlSH.ITJUST.WORKS
26 NovClover Security Raises $36 Million to Secure Software by DesignThe cybersecurity startup embeds AI agents into widely used tools to identify design flaws and eliminate them early. The post Clover Security Raises $36 Million to Secure Software by Design appeared first on SecurityWeek .SECURITYWEEK.COM
26 NovNeue ClickFix-Kampagne nutzt Fake-Windows-UpdatesCyberkriminelle nutzen eine gefälschte Windows-Update-Seite, um Mitarbeiter anzugreifen. PixieMe / Shutterstock Forscher des Security-Anbieters Huntress sind kürzlich auf eine neue ClickFix-Kampagne gestoßen, die auf Mitarbeiter in Unternehmen zielt. Laut Forschungsbericht haben …CSOONLINE.COM
26 NovFBI: Cybercriminals stole $262M by impersonating bank support teamssubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/fbi-cybercriminals-stole-262-million-by-impersonating-bank-support-teams-since-january/SH.ITJUST.WORKS
26 NovMalicious Chrome Extension Injects Hidden SOL Fees Into Solana Swapssubmitted by kid to cybersecurity 1 points | 0 comments https://socket.dev/blog/malicious-chrome-extension-injects-hidden-sol-fees-into-solana-swapsSH.ITJUST.WORKS
26 NovUK’s New Cyber Security and Resilience Bill: What Does It Mean For Critical Infrastructure Organisations?In recent weeks, the UK government has announced the introduction of its new Cyber Security and Resilience Bill .KNOWBE4.COM
26 NovNew Matrix Push C2 Abuses Push Notifications to Deliver Malwaresubmitted by kid to cybersecurity 3 points | 0 comments https://www.blackfog.com/new-matrix-push-c2-deliver-malware/SH.ITJUST.WORKS
26 NovEMEA Finance and Banking: A Sector Under SiegeThe finance and banking sector across Europe, the Middle East, and Africa (EMEA) faces extraordinary cybersecurity challenges, according to KnowBe4’s Cyber Risk in Finance and Banking Across EMEA report . While digital transformation has revolutionized operations and customer eng…KNOWBE4.COM
26 Novoh no, not npm again...submitted by cm0002 to cybersecurity 2 points | 0 comments https://www.youtube.com/watch?v=M_W-dleZXCsINFOSEC.PUB
26 NovFCC says hackers hijack US radio gear to send fake alerts, obscenitiessubmitted by kid to cybersecurity 1 points | 0 comments https://www.reuters.com/world/us/fcc-says-hackers-hijack-us-radio-gear-send-fake-alerts-obscenities-2025-11-26/SH.ITJUST.WORKS
26 NovUnlocking Hidden Insights: Free Tools for All UsersThink you know your security landscape? Threatlocker's free tools might just surprise you with what they uncover. Perfect for both seasoned users and curious newcomers, dive into a world of unexpected insights. Subscribe to our podcasts: https://securityweekly.com/subscribe #Free…YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 2[−]
26 NovShai-Hulud v2 Campaign Spreads From npm to Maven, Exposing Thousands of SecretsThe second wave of the Shai-Hulud supply chain attack has spilled over to the Maven ecosystem after compromising more than 830 packages in the npm registry. The Socket Research Team said it identified a Maven Central package named org.mvnpm:posthog-node:4.18.1 that embeds the sam…THEHACKERNEWS.COM
📡 INFOSEC NEWS 12[−]
26 NovFBI Reports $262M in ATO Fraud as Researchers Cite Growing AI Phishing and Holiday ScamsThe U.S. Federal Bureau of Investigation (FBI) has warned that cybercriminals are impersonating financial institutions with an aim to steal money or sensitive information to facilitate account takeover (ATO) fraud schemes. The activity targets individuals, businesses, and organiz…THEHACKERNEWS.COM
26 NovASUS warns of new critical auth bypass flaw in AiCloud routersASUS has released new firmware to patch nine security vulnerabilities, including a critical authentication bypass flaw in routers with AiCloud enabled. [...]BLEEPINGCOMPUTER.COM
26 NovWebinar: Learn to Spot Risks and Patch Safely with Community-Maintained ToolsIf you're using community tools like Chocolatey or Winget to keep systems updated, you're not alone. These platforms are fast, flexible, and easy to work with—making them favorites for IT teams. But there’s a catch... The very tools that make your job easier might also be the rea…THEHACKERNEWS.COM
26 NovChrome Extension Caught Injecting Hidden Solana Transfer Fees Into Raydium SwapsCybersecurity researchers have discovered a new malicious extension on the Chrome Web Store that's capable of injecting a stealthy Solana transfer into a swap transaction and transferring the funds to an attacker-controlled cryptocurrency wallet. The extension, named Crypto Copil…THEHACKERNEWS.COM
26 NovMicrosoft to secure Entra ID sign-ins from script injection attacksStarting in mid-to-late October 2026, Microsoft will enhance the security of the Entra ID authentication system against external script injection attacks. [...]BLEEPINGCOMPUTER.COM
26 NovMicrosoft: Security keys may prompt for PIN after recent updatesMicrosoft warned users on Tuesday that FIDO2 security keys may prompt them to enter a PIN when signing in after installing Windows updates released since the September 2025 preview update. [...]BLEEPINGCOMPUTER.COM
26 NovPasswork 7: Self-hosted password and secrets manager for enterprise teamsPasswork 7 unifies enterprise password and secrets management in a self-hosted platform. Organizations can automate credential workflows and test the full system with a free trial and up to 50% Black Friday savings. [...]BLEEPINGCOMPUTER.COM
26 NovMeet Rey, the Admin of ‘Scattered Lapsus$ Hunters’A prolific cybercriminal group that calls itself "Scattered LAPSUS$ Hunters" made headlines regularly this year by stealing data from and publicly mass extorting dozens of major corporations. But the tables seem to have turned somewhat for "Rey," the moniker chosen by the technic…KREBSONSECURITY.COM
26 NovNordVPN Black Friday Deal: Unlock 77% off VPN plans in 2025The NordVPN Black Friday Deal is now live, and you can get the best discount available: 77% off that applies automatically when you follow our link. If you've been waiting for the right moment to upgrade your online security, privacy, and streaming freedom, this is the one VPN de…BLEEPINGCOMPUTER.COM
26 NovMicrosoft Exchange on-premises hardening recommendationsA holistic approach to securing Exchange servers beyond Exchange 2016 and 2019 end-of-life.KASPERSKY.COM