🚨 CISA KEV 1[−]
28 Nov KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2021-26829 OpenPLC ScadaBR Cross-site Scripting Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber…CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 16[−]
28 NovSecurity researchers caution app developers about risks in using Google AntigravityGoogle’s Antigravity development tool for creating artificial intelligence agents has been out for less than 11 days and already the company has been forced to update the known issues pages after security researchers discovered what they say are vulnerabilities. According to a bl…CSOONLINE.COM
28 NovEU ‘Chat Control’ proposals should be red flag to businesses everywhereData privacy campaigners have warned that any celebration of the news that the European Union (EU) has abandoned its plans to break end-to-end encryption in mobile messaging apps could be short-lived. According to one expert, this announcement should be a “red flag” to organizati…CSOONLINE.COM
28 NovEspionage and Intelligence - What Cybersecurity Professionals Can LearnThe Intersection of Espionage Techniques and Cybersecurity Threats This episode explores the parallels between espionage and cybersecurity, particularly focusing on social engineering tactics used in both domains. Hosted by Jim Love, the podcast features insights from Neil Bisson…CYBERSECURITYTODAY.LIBSYN.COM
28 NovLondon Councils Hit by Cyberattack, Disrupts IT and Telephone LinesThe Royal Borough of Kensington and Chelsea (RBKC), Westminster City Council, and Hammersmith and Fulham Council confirmed they were targeted in the incident that began on Monday, November 24. The attack has forced officials to shut down systems as a precautionary measure while t…GBHACKERS.COM
28 NovKawaiiGPT: A Free WormGPT Clone Using DeepSeek, Gemini, and Kimi-K2 ModelsA new open-source tool called KawaiiGPT has surfaced on GitHub, positioning itself as a “cute” but unrestricted version of artificial intelligence. Developed by a user known as MrSanZz (along with contributors Shoukaku07 and FlamabyX5), the project is attracting atten…GBHACKERS.COM
28 NovEmpathetic policy engineering: The secret to better security behavior and awarenessIn many companies, IT security guidelines encounter resistance because employees perceive them as obstructive or impractical. This makes implementation difficult, undermines effectiveness, and strains collaboration between the security department and business units. As a result, …CSOONLINE.COM
28 NovScattered Lapsus$ Hunters target Zendesk users with fake domainsScattered Lapsus$ Hunters targeted Zendesk users through more than 40 fake domains designed to steal credentials and install malware, security researchers said. The fake domains, registered over the past six months, had the same setup as the one used in the cybercrime group’s Aug…CSOONLINE.COM
28 NovRomCom tries dropping a not-so-romantic payload on Ukraine-linked US firmsUS firms with ties to projects supporting Ukraine are being targeted by the Russia-aligned RomCom group, which is using fake software updates to drop the Mythic Agent onto victim systems. In September 2025, Arctic Wolf Labs detected a campaign against a US engineering firm that h…CSOONLINE.COM
28 NovGoogle-Antigravity-Lücke: KI-Coding-Tool anfällig für AngriffeEine Sicherheitslücke in Googles KI-Coding-Tool Antigravity erlaubt es Angreifern, Schadcode einzuschleusen. Koshiro K – shutterstock.com Anfang November brachte Google sein KI-gestütztes Coding-Tool Antigravity an den Start. Doch bereits nach 24 Stunden (?) sind Forscher des Sec…CSOONLINE.COM
28 NovPrompt Injection Through PoetryIn a new paper, “ Adversarial Poetry as a Universal Single-Turn Jailbreak Mechanism in Large Language Models ,” researchers found that turning LLM prompts into poetry resulted in jailbreaking the models: Abstract : We present evidence that adversarial poetry functions…SCHNEIER.COM
28 NovCybercriminals Register 18,000 Holiday-Themed Domains to Launch Seasonal ScamsThe holiday season has always been a magnet for increased online activity, but 2025 marks a new high-water mark in cybercrime intensity. FortiGuard Labs’ latest research spotlights a dramatic surge in the volume and sophistication of attacks targeting retailers, e-commerce provid…GBHACKERS.COM
28 NovPoland Arrests Suspected Russian Hacker Targeting Local Organizations’ NetworksPolish authorities have made a significant move in their cybercrime enforcement efforts by detaining a Russian national suspected of conducting unauthorized cyber attacks against local organizations. The arrest, made on November 16, 2025, marks a significant development in intern…GBHACKERS.COM
28 NovGainsight Verifies Token Breach Linked to Salesforce Advisory, Issues New IOCsGainsight, the leading customer success platform, has confirmed that a security incident involving its Salesforce integration compromised customer tokens for a small subset of its client base. The announcement follows a security advisory issued by Salesforce last week, which prom…GBHACKERS.COM
28 NovFrench Football Federation discloses data breach after cyberattackThe French Football Federation (FFF) disclosed a data breach on Friday after attackers used a compromised account to gain access to administrative management software used by football clubs. [...]BLEEPINGCOMPUTER.COM
28 NovLegacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI PackagesCybersecurity researchers have discovered vulnerable code in legacy Python packages that could potentially pave the way for a supply chain compromise on the Python Package Index (PyPI) via a domain takeover attack. Software supply chain security company ReversingLabs said it foun…THEHACKERNEWS.COM
28 NovGamayun APT Exploits MSC EvilTwin Flaw to Deploy Malicious Codesubmitted by kid to cybersecurity 1 points | 0 comments https://cyberpress.org/gamayun-apt-cyberattack/SH.ITJUST.WORKS
📢 SECURITY ADVISORIES 2[−]
28 NovWhy Organizations Are Turning to RPAMAs IT environments become increasingly distributed and organizations adopt hybrid and remote work at scale, traditional perimeter-based security models and on-premises Privileged Access Management (PAM) solutions no longer suffice. IT administrators, contractors and third-party v…THEHACKERNEWS.COM
🔥 INCIDENT REPORTING 6[−]
28 NovCSO in eigener Sache: Mit Smart Answers zu mehr Informationsrcset="https://b2b-contenthub.com/wp-content/uploads/2025/11/shutterstock_2642127909.jpg?quality=50&strip=all 5350w, https://b2b-contenthub.com/wp-content/uploads/2025/11/shutterstock_2642127909.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
28 NovFrench Soccer Federation Hit by Cyberattack, Member Data StolenAccording to the federation, the unauthorized access was carried out using a compromised account. The post French Soccer Federation Hit by Cyberattack, Member Data Stolen appeared first on SecurityWeek .SECURITYWEEK.COM
28 NovShinyHunters Develop Sophisticated New Ransomware-as-a-Service ToolIn a significant escalation of the global cyber threat landscape, the notorious threat group ShinyHunters appears to be transitioning from data theft to full-scale ransomware operations. Cybersecurity researchers have identified an early build of a new Ransomware-as-a-Service (Ra…GBHACKERS.COM
28 NovComcast Fined $1.5 Million to Settle FCC Probe Tied to Vendor Data BreachComcast has agreed to a $1.5 million settlement with the Federal Communications Commission (FCC) following a data breach at a third-party vendor that exposed the personal information of hundreds of thousands of its customers. The breach has raised concerns about the security of c…GBHACKERS.COM
28 NovFrench Football Federation Suffers Data Breachsubmitted by kid to cybersecurity 3 points | 0 comments https://www.infosecurity-magazine.com/news/french-football-federation-data/SH.ITJUST.WORKS
28 NovThis month in security with Tony Anscombe – November 2025 editionData exposure by top AI companies, the Akira ransomware haul, Operation Endgame against major malware families, and more of this month's cybersecurity newsWELIVESECURITY.COM
🕵️ THREAT INTELLIGENCE 20[−]
28 NovNews alert: One Identity earns Visionary ranking as PAM shifts toward automation, AI and simplicityALISA VIEJO, Calif., Nov. 27, 2025, CyberNewswire — Gartner has recognized One Identity as a Visionary in the 2025 Gartner Magic Quadrant for Privileged Access Management (PAM) . In a rapidly transforming market, innovation and demonstrated performance continue to shape … (…LASTWATCHDOG.COM
28 NovMicrosoft Blocks External Scripts in Entra ID Logins to Boost SecurityMicrosoft has announced a significant security change to the Microsoft Entra ID sign-in experience that will block external scripts from running during user logins. The update is designed to stop unauthorized or injected code from executing on the login page. It is part of Micros…GBHACKERS.COM
28 NovBlack Friday Scammers Are Impersonating Major Brands to Steal Your MoneyBlack Friday is supposed to be chaotic, sure, but not this chaotic. Amid genuine doorbusters and flash sales, a large-scale, highly polished scam campaign is hijacking web traffic and pushing shoppers to fake “survey reward” pages impersonating dozens of major brands all to steal…GBHACKERS.COM
28 NovIn Other News: HashJack AI Browser Attack, Charming Kitten Leak, Hacker UnmaskedOther noteworthy stories that might have slipped under the radar: Scattered Spider members plead not guilty, TP-Link sues Netgear, Comcast agrees to $1.5 million fine. The post In Other News: HashJack AI Browser Attack, Charming Kitten Leak, Hacker Unmasked appeared first on Secu…SECURITYWEEK.COM
28 NovDead Man's Switch - Widespread npm Supply Chain Attack Driving Malware Attackssubmitted by kid to cybersecurity 2 points | 0 comments https://cybersecuritynews.com/dead-mans-switch-npm-supply-chain-attack/SH.ITJUST.WORKS
28 NovOver 390 Abandoned iCalendar Sync Domains Could Expose ~4 Million Devices to Security Riskssubmitted by kid to cybersecurity 1 points | 0 comments https://cybersecuritynews.com/over-390-abandoned-icalendar-sync-domains-could-expose/SH.ITJUST.WORKS
28 NovRevolutionizing MCP Servers: The GitHub ApproachCurious about how GitHub is shaking up the cybersecurity world? We're breaking down the latest on MCP servers and what it means for your data's safety. Be part of the conversation and stay informed! Subscribe to our podcasts: https://securityweekly.com/subscribe #TechUpdates #Dat…YOUTUBE.COM
28 NovMalicious LLMs empower inexperienced hackers with advanced toolssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/malicious-llms-empower-inexperienced-hackers-with-advanced-tools/SH.ITJUST.WORKS
28 NovAsahi Confirms 1.5 Million Customers Affected in Major Cyber-Attack - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/asahi-15-million-customers/SH.ITJUST.WORKS
28 NovOne-Size-Fits-All Security Training Fits NobodyHere's a curious thing about people, sometimes we crave the familiar, and sometimes we demand the novel.KNOWBE4.COM
28 NovNew GreyNoise IP Checker Helps Users Identify Botnet ActivityCybersecurity firm GreyNoise has launched a new, free utility designed to answer a question most internet users never think to ask: Is my home router secretly attacking other computers? The newly released GreyNoise IP Check is a simple, web-based tool that allows anyone to instan…GBHACKERS.COM
28 NovPhishing Campaign Uses Fake Party Invites to Deliver Remote Access ToolsA large phishing campaign is using phony seasonal party invites to trick users into installing remote management and monitoring (RMM) tools, according to researchers at Symantec.KNOWBE4.COM
28 NovNorth Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie MalwareThe North Korean threat actors behind the Contagious Interview campaign have continued to flood the npm registry with 197 more malicious packages since last month. According to Socket, these packages have been downloaded over 31,000 times, and are designed to deliver a variant of…THEHACKERNEWS.COM
28 NovMS Teams Guest Access Can Remove Defender Protection When Users Join External Tenantssubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/11/ms-teams-guest-access-can-remove.htmlSH.ITJUST.WORKS
28 NovAutomate Security BacklogTransform chaos into clarity with automation! Learn how to effortlessly tackle your top security priorities and leave the endless backlog behind. Dive into a smarter, more efficient way of working today! Subscribe to our podcasts: https://securityweekly.com/subscribe #Automation …YOUTUBE.COM
28 NovTryHackMe races to add women to Christmas cyber challenge roster after backlashsubmitted by BrikoX to cybersecurity 1 points | 0 comments https://www.theregister.com/2025/11/28/tryhackme_diversity_row/ Training outfit scrambles to fix all-male lineup before December kickoffSH.ITJUST.WORKS
28 NovFriday Squid Blogging: Flying Neon Squid Found on Israeli BeachA meter-long flying neon squid ( Ommastrephes bartramii ) was found dead on an Israeli beach. The species is rare in the Mediterranean.SCHNEIER.COM
28 NovDealing with loss, phone loss with Aaran, Doug, and Josh - SWN #533Are you walking around with a phone in your hand? Probably, are ready for the day when it gets grabbed and disappears. Aaran, Doug, and Josh talk about phone strategies on this episode of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episod…YOUTUBE.COM
28 NovAI's Hidden Data LeaksAs AI seamlessly integrates into our daily tools, the risk of data leaks grows. Uncover the hidden pathways of your information and why it's crucial to prioritize security now. Subscribe to our podcasts: https://securityweekly.com/subscribe #AIMysteries #DataLeaks #DigitalSecurit…YOUTUBE.COM
28 NovWe have achieved FreeBSD 15.0-REL with KDE Plasma Houston, we have installed #FreeBSD 15.0-REL with KDE Plasma 6.4.5 on a Lenovo ThinkPad X1 Carbon Gen 6 laptop. I have come full circle. I used to daily drive FreeBSD 5.x on a Thinkpad a20p in the early 2000s. Today I used the "technology preview" method for pkg installati…TAOSECURITY.BLOGSPOT.COM
📡 INFOSEC NEWS 5[−]
28 NovMS Teams Guest Access Can Remove Defender Protection When Users Join External TenantsCybersecurity researchers have shed light on a cross-tenant blind spot that allows attackers to bypass Microsoft Defender for Office 365 protections via the guest access feature in Teams. "When users operate as guests in another tenant, their protections are determined entirely b…THEHACKERNEWS.COM
28 NovSpotlight: Making the most of multicloudDownload the December 2025 issue of the Enterprise Spotlight from the editors of CIO, Computerworld, CSO, InfoWorld, and Network World.US.RESOURCES.CSOONLINE.COM
28 NovPublic GitLab repositories exposed more than 17,000 secretsAfter scanning all 5.6 million public repositories on GitLab Cloud, a security engineer discovered more than 17,000 exposed secrets across over 2,800 unique domains. [...]BLEEPINGCOMPUTER.COM
28 NovMicrosoft: Windows updates make password login option invisibleMicrosoft warned users that Windows 11 updates released since August may cause the password sign-in option to disappear from the lock screen options, even though the button remains functional. [...]BLEEPINGCOMPUTER.COM
28 NovMan behind in-flight Evil Twin WiFi attacks gets 7 years in prisonA 44-year-old man was sentenced to seven years and four months in prison for operating an "evil twin" WiFi network to steal the data of unsuspecting travelers at various airports across Australia. [...]BLEEPINGCOMPUTER.COM