🚨 CISA KEV 1[−]
10 Dec KEVHundreds of Ivanti EPM systems exposed online as critical flaw patchedIvanti has patched a critical vulnerability in Endpoint Manager that enables attackers to hijack administrator sessions without authentication and potentially control thousands of enterprise devices. The company released EPM version 2024 SU4 SR1 to address four vulnerabilities, i…CSOONLINE.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 10[−]
10 Dec KEVDecember Patch Tuesday: Windows Cloud Files Mini Filter Driver hole already being exploitedMicrosoft is finishing 2025 by issuing only 57 patches for Windows and other products for December Patch Tuesday, but one vulnerability is already being exploited as a zero day and needs to be addressed fast. It’s an escalation of privilege vulnerability in Windows Cloud Files Mi…CSOONLINE.COM
10 DecFortinet, Ivanti, and SAP Issue Urgent Patches for Authentication and Code Execution FlawsFortinet, Ivanti, and SAP have moved to address critical security flaws in their products that, if successfully exploited, could result in an authentication bypass and code execution. The Fortinet vulnerabilities affect FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager and re…THEHACKERNEWS.COM
10 DecCVE-2025-55182: React2Shell Analysis, Proof-of-Concept Chaos, and In-the-Wild ExploitationCVE-2025-55182 is a CVSS 10.0 pre-authentication RCE affecting React Server Components. Amid the flood of fake Proof-of-concept exploits, scanners, exploits, and widespread misconceptions, this technical analysis intends to cut through the noise.TRENDMICRO.COM
10 Dec KEVWarning: WinRAR Vulnerability CVE-2025-6218 Under Active Attack by Multiple Threat GroupsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a security flaw impacting the WinRAR file archiver and compression utility to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as…THEHACKERNEWS.COM
10 DecHigh-Risk Ivanti EPM Vulnerability Opens Door to Admin Session HijackingA critical stored cross-site scripting (XSS) vulnerability in Ivanti Endpoint Manager (EPM) enables unauthenticated attackers to hijack administrator sessions by injecting malicious JavaScript into the management dashboard. The vulnerability, identified as CVE-2025-10573 with a C…GBHACKERS.COM
10 DecWindows Defender Firewall Flaw Allows Attackers to Access Sensitive DataMicrosoft has officially addressed a new security vulnerability affecting the Windows Defender Firewall Service that could allow threat actors to access sensitive information on compromised systems. The flaw, identified as CVE-2025-62468, was disclosed as part of the company̵…GBHACKERS.COM
10 DecPeerBlight Linux Malware Abuses React2Shell for Proxy TunnelingCybersecurity researchers have uncovered a sophisticated Linux malware campaign exploiting the critical React2Shell vulnerability (CVE-2025-55182) to deploy multiple post-exploitation payloads. A newly identified backdoor dubbed “PeerBlight” that leverages the BitTorr…GBHACKERS.COM
10 DecMicrosoft Outlook Flaw Lets Attackers Execute Malicious Code RemotelyMicrosoft has disclosed a critical remote code execution vulnerability in Outlook that could allow attackers to execute malicious code on affected systems. The vulnerability, tracked as CVE-2025-62562, was officially released on December 9, 2025, and poses a significant security …GBHACKERS.COM
10 DecWindows PowerShell 0-Day Lets Attackers Execute Arbitrary CodeMicrosoft has disclosed a critical remote code execution vulnerability in Windows PowerShell that could allow attackers to execute arbitrary code on vulnerable systems. The flaw, tracked as CVE-2025-54100, was publicly disclosed on December 9, 2025, and poses a significant securi…GBHACKERS.COM
10 DecPossible exploit variant for CVE-2024-9042 (Kubernetes OS Command Injection), (Wed, Dec 10th)Last year, Kubernetes fixed a command injection vulnerability in the Kubernetes NodeLogQuery feature (%%cve:2024-9042%%) [1]. To exploit the vulnerability, several conditions had to be met:
ISC.SANS.EDU
⚠️ VULNERABILITY DISCLOSURE 31[−]
10 DecGitHub Action Secrets aren’t secret anymore: exposed PATs now a direct path into cloud environmentsMany enterprises use GitHub Action Secrets to store and protect sensitive information such as credentials, API keys, and tokens used in CI/CD workflows. These private repositories are widely assumed to be safe and locked down. But attackers are now exploiting that blind trust, ac…CSOONLINE.COM
10 DecTools, um MCP-Server abzusichernsrcset="https://b2b-contenthub.com/wp-content/uploads/2025/11/Gorodenkoff_shutterstock_2324952347_16z9.jpg?quality=50&strip=all 7200w, https://b2b-contenthub.com/wp-content/uploads/2025/11/Gorodenkoff_shutterstock_2324952347_16z9.jpg?resize=300%2C168&quality=50&strip=…CSOONLINE.COM
10 DecGoogle Chrome's AI Safety Plan? More AICybersecurity Today: Google Chrome's AI Safety Plan, React2Shell Fixes, & New Ransomware Tactics In this episode of Cybersecurity Today, host Jim Love discusses Google's new security blueprint for AI-powered Chrome agents, highlighting measures against indirect prompt injections …CYBERSECURITYTODAY.LIBSYN.COM
10 Dec KEVPolymorphic AI malware exists — but it’s not what you thinkWe are either at the dawn of AI-driven malware that rewrites itself on the fly, or we are seeing vendors and threat actors exaggerate its capabilities. Recent Google and MIT Sloan reports reignited claims of autonomous attacks and polymorphic AI malware capable of evading defende…CSOONLINE.COM
10 DecKey cybersecurity takeaways from the 2026 NDAAOn Dec. 7, the House and Senate Homeland Security Committees released their compromise version of the 2026 National Defense and Authorization Act (NDAA) , a nearly 3,100-page piece of legislation that contains a host of provisions to fund several Department of Defense cybersecuri…CSOONLINE.COM
10 DecIntel, AMD Processors Affected by PCIe VulnerabilitiesThe PCIe flaws, found by Intel employees, can be exploited for information disclosure, escalation of privilege, or DoS. The post Intel, AMD Processors Affected by PCIe Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
10 Dec KEVMicrosoft Issues Security Fixes for 56 Flaws, Including Active Exploit and Two Zero-DaysMicrosoft closed out 2025 with patches for 56 security flaws in various products across the Windows platform, including one vulnerability that has been actively exploited in the wild. Of the 56 flaws, three are rated Critical, and 53 are rated Important in severity. Two other def…THEHACKERNEWS.COM
10 DecSalesforce Security Risks, Boards Duty of Care, and Managing CISO Risks - Justin Hazard - BSW #425Organizations rely heavily on Salesforce to manage vasts amounts of sensitive data, but hidden security risks lurk beneath the surface. Misconfigurations, excessive user permissions, and unmonitored third party integrations can expose this data to attackers. How do I secure this …YOUTUBE.COM
10 DecSAP Patches Critical Vulnerabilities With December 2025 Security UpdatesAffecting Solution Manager, Commerce Cloud, and jConnect SDK, the bugs could lead to code injection and remote code execution. The post SAP Patches Critical Vulnerabilities With December 2025 Security Updates appeared first on SecurityWeek .SECURITYWEEK.COM
10 DecIvanti EPM Update Patches Critical Remote Code Execution FlawThe XSS vulnerability could allow remote attackers to execute arbitrary JavaScript code with administrator privileges. The post Ivanti EPM Update Patches Critical Remote Code Execution Flaw appeared first on SecurityWeek .SECURITYWEEK.COM
10 DecWebinar: How Attackers Exploit Cloud Misconfigurations Across AWS, AI Models, and KubernetesCloud security is changing. Attackers are no longer just breaking down the door; they are finding unlocked windows in your configurations, your identities, and your code. Standard security tools often miss these threats because they look like normal activity. To stop them, you ne…THEHACKERNEWS.COM
10 DecKI-Browser gefährden Unternehmensrcset="https://b2b-contenthub.com/wp-content/uploads/2025/12/shutterstock_2678387745.jpg?quality=50&strip=all 3840w, https://b2b-contenthub.com/wp-content/uploads/2025/12/shutterstock_2678387745.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
10 DecGoogle Patches Gemini Enterprise Vulnerability Exposing Corporate DataGeminiJack is a zero-click Gemini attack that could have been exploited using specially crafted emails, calendar invites, or documents. The post Google Patches Gemini Enterprise Vulnerability Exposing Corporate Data appeared first on SecurityWeek .SECURITYWEEK.COM
10 DecCybercriminals Use Fake Game Updates on Itch.io and Patreon to Push Lumma StealerThe indie gaming community faces a new and sophisticated threat. Malicious actors are exploiting itch.io and Patreon to distribute the Lumma Stealer malware disguised as legitimate game updates, targeting unsuspecting gamers through a systematic spam campaign across the platform.…GBHACKERS.COM
10 DecGemini Zero-Click Flaw Let Attackers Access Gmail, Calendar, and Google DocsA critical vulnerability in Google Gemini Enterprise and Vertex AI Search, dubbed GeminiJack, that allows attackers to exfiltrate sensitive corporate data without any user interaction or security alerts. The flaw exploits an architectural weakness in how enterprise AI systems pro…GBHACKERS.COM
10 DecMicrosoft Releases New Guidance to Combat the Shai-Hulud 2.0 Supply Chain ThreatMicrosoft has published comprehensive guidance addressing the Shai-Hulud 2.0 supply chain attack, one of the most significant cloud-native ecosystem compromises observed in recent months. The campaign represents a sophisticated threat that exploits the trust inherent in modern so…GBHACKERS.COM
10 DecQuantum meets AI: The next cybersecurity battlegroundIn recent years, artificial intelligence (AI) has been spreading its tentacles across the global technological landscape, as evidenced by the increase in autonomous and automated technologies and their deployment across industries and sectors. While the world is still recovering …CSOONLINE.COM
10 DecCursor lacks spending caps, researchers warn | Cybernewssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/security/cursor-aws-bedrock-catastrophic-budget-drain-vulnerability/SH.ITJUST.WORKS
10 DecReport: Phishing Has Surged 400% Year-Over-YearResearchers at SpyCloud have observed a 400% year-over-year increase in successful phishing attacks, with a disproportionate number of attacks targeting corporate accounts.KNOWBE4.COM
10 DecMicrosoft Patches 57 Vulnerabilities, Three Zero-Days - SecurityWeeksubmitted by kid to cybersecurity 2 points | 0 comments https://www.securityweek.com/microsoft-patches-57-vulnerabilities-three-zero-days/SH.ITJUST.WORKS
10 DecThree PCIe Encryption Weaknesses Expose PCIe 5.0+ Systems to Faulty Data HandlingThree security vulnerabilities have been disclosed in the Peripheral Component Interconnect Express (PCIe) Integrity and Data Encryption (IDE) protocol specification that could expose a local attacker to serious risks. The flaws impact PCIe Base Specification Revision 5.0 and onw…THEHACKERNEWS.COM
10 DecThreat Actors Exploit ChatGPT and Grok Conversations to Deliver AMOS StealerThe cybersecurity landscape has reached a troubling inflection point. On December 5, 2025, Huntress identified a sophisticated campaign deploying the Atomic macOS Stealer (AMOS) through a deceptively simple vector. AI conversations on OpenAI’s ChatGPT and xAI’s Grok p…GBHACKERS.COM
10 DecWhy a secure software development life cycle is critical for manufacturersRecent supply-chain breaches show how attackers exploit development tools, compromised credentials, and malicious NPM packages to infiltrate manufacturing and production environments. Acronis explains why secure software development life cycle (SSDLC) practices are now critical f…BLEEPINGCOMPUTER.COM
10 DecSalesforce's Evolving Data LandscapeExplore how Salesforce has transformed from a simple CRM to a data powerhouse, handling sensitive information like patient records and credit card data. As data sensitivity rises, so do the challenges in cybersecurity. Subscribe to our podcasts: https://securityweekly.com/subscri…YOUTUBE.COM
10 DecVulnerability-Lookup 2.19.0submitted by cm0002 to cybersecurity 1 points | 0 comments https://discourse.ossbase.org/t/vulnerability-lookup-2-19-0/735INFOSEC.PUB
10 DecBehind the breaches: Case studies that reveal adversary motives and modus operandiIn today’s threat landscape, it’s no longer enough to focus solely on malware signatures and IP addresses. Defenders must understand how adversaries think, organize and operate, because attacker intent and methodology are now just as critical as technical artifacts. Recent develo…CSOONLINE.COM
10 DecHow can staff+ security engineers force-multiply their impact?Staff+ engineers play a critical role in designing, scaling and influencing the security posture of an organization. Their key areas of expertise include developing security strategy and governance, incident response leadership, automation, compliance/risk management and cross-or…CSOONLINE.COM
10 DecRansomware may have extorted over $2.1 billion between 2022-2024, but it’s not all bad news, claims FinCEN reportA new report from the United States's Financial Crimes Enforcement Network (FinCEN) has shone a revealing light on the state of the criminal industry of ransomware. The report, which examines ransomware incidents from 2022 to 2024, reveals that attackers extorted more than $2.1 b…FORTRA.COM
10 DecHTTPS certificate industry phasing out less secure domain validation methodsPosted by Chrome Root Program Team Secure connections are the backbone of the modern web, but a certificate is only as trustworthy as the validation process and issuance practices behind it. Recently, the Chrome Root Program and the CA/Browser Forum have taken decisive steps towa…SECURITY.GOOGLEBLOG.COM
10 DecSalesforce Backups: A Hidden Risk?Protecting Salesforce backups from ransomware is a top priority. Examine how AWS and Salesforce handle data security, underscoring the critical role of effective cybersecurity strategies. Subscribe to our podcasts: https://securityweekly.com/subscribe #Ransomware #DataProtection …YOUTUBE.COM
10 DecRisky Business #818 -- React2Shell is a fun oneIn this week’s show Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including: There’s a CVSS 10/10 remote code exec in the React javascript server. JS server? U wot mate? China is out popping shells with it Linux adds support for PCIe bus encryption Amnesty …RISKY.BIZ
📋 SECURITY BULLETINS 1[−]
10 DecICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Rockwell, SchneiderDozens of vulnerabilities have been patched by the industrial giants across their products. The post ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Rockwell, Schneider appeared first on SecurityWeek .SECURITYWEEK.COM
📢 SECURITY ADVISORIES 8[−]
10 DecCISA and FBI Warn of Pro-Russia Hacktivist Attacks on Critical Infrastructure WorldwideThe Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and international partners from the European Cybercrime Centre (EC3) have released a joint cybersecurity advisory detailing the escalating activitie…GBHACKERS.COM
10 DecJoint cyber security advisory on pro-Russia hacktivists conducting opportunistic attacks on global critical infrastructureCYBER.GC.CA
10 DecMultiple India-based CCTV Cameras | CISAsubmitted by kid to cybersecurity 1 points | 0 comments https://www.cisa.gov/news-events/ics-advisories/icsa-25-343-03SH.ITJUST.WORKS
10 DecMicrosoft Teams to warn of suspicious traffic with external domainsMicrosoft is working on a new Teams security feature that will analyze suspicious traffic with external domains to help IT administrators tackle potential security threats. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 8[−]
10 DecFour years later, Irish health service offers €750 to victims of ransomware attackRemember when a notorious ransomware gang hit the Irish Health Service back in May 2021? Four years on, and it seems victims who had their data exposed will finally receive compensation. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
10 DecUkrainian hacker charged with helping Russian hacktivist groupsU.S. prosecutors have charged a Ukrainian national for her role in cyberattacks targeting critical infrastructure worldwide, including U.S. water systems, election systems, and nuclear facilities, on behalf of Russian state-backed hacktivist groups. [...]BLEEPINGCOMPUTER.COM
10 DecFortiGuard Team Uncovers Stealth Forensic Data Within Windows TelemetryDuring a recent incident response engagement, FortiGuard IR services responded to a sophisticated ransomware attack in which threat actors deployed advanced anti-forensic techniques to eliminate their digital footprint. The attackers deleted malware, cleared logs, and obfuscated …GBHACKERS.COM
10 DecChrimeraWire Trojan Fakes Chrome Activity to Manipulate Search Rankings – Hackread – Cybersecurity News, Data Breaches, AI, and Moresubmitted by kid to cybersecurity 2 points | 1 comments https://hackread.com/chrimerawire-trojan-fakes-chrome-search-activity/SH.ITJUST.WORKS
10 DecHackers claim Volkswagen dealer data is for sale | Cybernewssubmitted by kid to cybersecurity 2 points | 0 comments https://cybernews.com/security/volkswagen-dealership-data-breach-india/SH.ITJUST.WORKS
10 DecSpiderman Phishing Kit Targets European Banks with Real-Time Credential Theft – Hackread – Cybersecurity News, Data Breaches, AI, and Moresubmitted by kid to cybersecurity 2 points | 0 comments https://hackread.com/spiderman-phishing-kit-european-banks-credential-theft/SH.ITJUST.WORKS
10 DecOver 300,000 Individuals Impacted by Vitas Hospice Data Breach - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/over-300000-individuals-impacted-by-vitas-hospice-data-breach/SH.ITJUST.WORKS
10 DecCEO of South Korean retail giant Coupang resigns after massive data breachThe massive data breach at the South Korean retail giant Coupang affects more than half of the country's population.TECHCRUNCH.COM
🕵️ THREAT INTELLIGENCE 20[−]
10 DecISC Stormcast For Wednesday, December 10th, 2025 https://isc.sans.edu/podcastdetail/9732, (Wed, Dec 10th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
10 DecUK Sanctions Russian and Chinese Firms Suspected of Being ‘Malign Actors’ in Information WarfareBritain and its allies face escalating “hybrid threats … designed to weaken critical national infrastructure, undermine our interests and interfere in our democracies.” The post UK Sanctions Russian and Chinese Firms Suspected of Being ‘Malign Actors’ in Information Warfare appea…SECURITYWEEK.COM
10 DecPersonal Branding geht auch ohne AgenturDas Experten-Netzwerk rückt Ihr Fachwissen in den Fokus – optimal präsentiert auf unseren B2B-Plattformen. People Images | shutterstock.com Was gut ist, kommt bekanntlich wieder. So auch das Experten-Netzwerk von CSO Deutschland, Computerwoche und CIO.de. Selbst wenn Sie davon no…CSOONLINE.COM
10 DecFBI Warns of Fake Video ScamsThe FBI is warning of AI-assisted fake kidnapping scams: Criminal actors typically will contact their victims through text message claiming they have kidnapped their loved one and demand a ransom be paid for their release. Oftentimes, the criminal actor will express significant c…SCHNEIER.COM
10 DecPoland arrests Ukrainians utilizing 'advanced' hacking equipmentsubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/poland-arrests-ukrainians-utilizing-advanced-hacking-equipment/SH.ITJUST.WORKS
10 DecFortinet Patches Critical Authentication Bypass VulnerabilitiesThe two security defects impact FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager with FortiCloud SSO login authentication enabled. The post Fortinet Patches Critical Authentication Bypass Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
10 DecAI-Powered Analysis Exposes Massive 5,000-Domain Chinese Malware OperationDomainTools Investigations has released critical findings detailing the expansion of a massive malware-delivery network targeting Chinese-speaking users worldwide. The long-running cluster, active since June 2023, has swelled to approximately 5,000 domains, with researchers ident…GBHACKERS.COM
10 DecNotepad++ updater installed malwaresubmitted by floofloof to cybersecurity 1 points | 0 comments https://www.heise.de/en/news/Notepad-updater-installed-malware-11109726.htmlSH.ITJUST.WORKS
10 DecUS Indicts Extradited Ukrainian on Charges of Aiding Russian Hacking GroupsVictoria Dubranova faces over 25 years in prison for links to Russia-backed CARR and NoName hacktivist groups. The post US Indicts Extradited Ukrainian on Charges of Aiding Russian Hacking Groups appeared first on SecurityWeek .SECURITYWEEK.COM
10 DecDocuSign phishing ranks as top inbox threat, analysis finds | SC Mediasubmitted by kid to cybersecurity 2 points | 0 comments https://www.scworld.com/news/docusign-phishing-ranks-as-top-inbox-threat-analysis-findsSH.ITJUST.WORKS
10 DecParrot 7.0 Beta Introduces Debian 13 and a Fully Redesigned DesktopParrot Security OS has unveiled its highly anticipated 7.0 beta release, marking a significant milestone with the integration of Debian 13 and a complete desktop environment overhaul. The new version brings substantial stability improvements and modernized infrastructure designed…GBHACKERS.COM
10 DecWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
10 DecVirtual Event Today: Cyber AI & Automation SummitJoin to access sessions aimed at educating, inspiring, and provoking new ways of thinking about the hype and promise surrounding AI-powered enterprise security solutions and the threats posed by adversarial use of AI. The post Virtual Event Today: Cyber AI & Automation Summit…SECURITYWEEK.COM
10 DecIsraeli Cybersecurity Funding Hits $4.4 Billion Record HighOver the past decade, overall funding in Israeli cybersecurity companies has increased by more than 500%, according to YL Ventures. The post Israeli Cybersecurity Funding Hits $4.4 Billion Record High appeared first on SecurityWeek .SECURITYWEEK.COM
10 DecClarity in complexity: New insights for transparent email securityMicrosoft’s latest benchmarking report reveals how layered email defenses perform, offering real-world insights to strengthen protection and reduce risk. The post Clarity in complexity: New insights for transparent email security appeared first on Microsoft Security Blog .MICROSOFT.COM
10 DecNavigating the Risks of AI-Driven BrowsersAI integration in browsers is raising alarms about user privacy and security. Discover the potential risks and the critical need for cybersecurity measures to safeguard digital interactions. Subscribe to our podcasts: https://securityweekly.com/subscribe #Privacy #OnlineSafety #S…YOUTUBE.COM
10 DecFrom awareness to action: Building a security-first culture for the agentic AI eraThe insights gained from Cybersecurity Awareness Month, right through to Microsoft Ignite 2025, demonstrate that security remains a top priority for business leaders. The post From awareness to action: Building a security-first culture for the agentic AI era appeared first on Mic…MICROSOFT.COM
10 DecSocial Engineering Campaign Targets Microsoft Teams UsersResearchers at CyberProof warn that threat actors are launching phishing attacks via Microsoft Teams' “Chat with Anyone” feature, which lets external users send direct messages via email addresses.KNOWBE4.COM
10 DecTrend Vision One™ Stacks Up Against Scattered Spider and Mustang Panda in 2025 MITRE ATT&CK® EvaluationsEnterprise 2025 introduces the first full cloud adversary emulation and expanded multi-platform testing, focusing on two advanced threat areas: Scattered Spider’s cloud-centric attacks and Mustang Panda’s long-term espionage operations.TRENDMICRO.COM
10 DecMalicious Apprentice | How Two Hackers Went From Cisco Academy to Cisco CVEsRead how two Cisco Network Academy Cup winners went from students to operators behind Salt Typhoon, a global cyber espionage campaign targeting telecoms.SENTINELONE.COM
🌐 CYBER THREAT LANDSCAPE 4[−]
10 DecPetco takes down Vetco website after exposing customers’ personal informationTechCrunch found Petco's veterinary clinics were spilling customers' personal information and medical histories of their pets.TECHCRUNCH.COM
10 DecA stealer hiding in Blender 3D models | Kaspersky official blogResearchers have uncovered a campaign where free 3D models for Blender with embedded Python scripts are being used to distribute the StealC V2 infostealer.KASPERSKY.COM
10 DecNew DroidLock malware locks Android devices and demands a ransomA new Android malware called DroidLock has emerged with capabilities to lock screens for ransom payments, erase data, access text messages, call logs, contacts, and audio data. [...]BLEEPINGCOMPUTER.COM
10 DecGoogle ads for shared ChatGPT, Grok guides push macOS infostealer malwareA new AMOS infostealer campaign is abusing Google search ads to lure users into Grok and ChatGPT conversations that appear to offer "helpful" instructions but ultimately lead to installing the AMOS info-stealing malware on macOS. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 6[−]
10 DecTrend Vision One™ Integration with AWS Security Hub CSPM: Unifying Cloud SecurityThe integration between Trend Vision One and Security Hub CSPM is exactly that, two powerful platforms enhancing each other to keep your AWS infrastructure protected.TRENDMICRO.COM
10 DecNew Spiderman phishing service targets dozens of European banksA new phishing kit called Spiderman is being used to target customers of dozens of European banks and cryptocurrency holders with pixel-perfect cloned sites impersonating brands and organizations. [...]BLEEPINGCOMPUTER.COM
10 DecSophos achieves its best-ever results in the MITRE ATT&CK Enterprise 2025 EvaluationA major milestone: Sophos XDR delivers 100% detection coverage in the latest ATT&CK Evaluation.SOPHOS.COM
10 DecOver 10,000 Docker Hub images found leaking credentials, auth keysMore than 10,000 Docker Hub container images expose data that should be protected, including live credentials to production systems, CI/CD databases, or LLM model keys. [...]BLEEPINGCOMPUTER.COM
10 DecSeeking symmetry during ATT&CK® season: How to harness today’s diverse analyst and tester landscape to paint a security masterpieceInterpreting the vast cybersecurity vendor landscape through the lens of industry analysts and testing authorities can immensely enhance your cyber-resilience.WELIVESECURITY.COM
10 DecImplications of Russia-India-China Trilateral CooperationExamines Russia-India-China trilateral cooperation, U.S. tariffs and sanctions, why a formal bloc is unlikely, and implications for governments and business.RECORDEDFUTURE.COM