83Articles
7Categories
2025-12-23Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
23 DecCritical n8n Flaw (CVSS 9.9) Enables Arbitrary Code Execution Across Thousands of InstancesA critical security vulnerability has been disclosed in the n8n workflow automation platform that, if successfully exploited, could result in arbitrary code execution under certain circumstances. The vulnerability, tracked as CVE-2025-68613, carries a CVSS score of 9.9 out of a m…THEHACKERNEWS.COM
23 DecCritical n8n Vulnerability Exposes 103,000+ Automation Instances to RCE AttacksA critical remote code execution vulnerability in n8n, a popular open-source workflow automation platform, threatens over 103,000 potentially vulnerable instances worldwide. Tracked as CVE-2025-68613 with a maximum CVSS severity score of 9.9, the flaw allows authenticated attacke…GBHACKERS.COM
23 DecPoC Exploit Released for Critical n8n RCE VulnerabilitySecurity researchers have confirmed the release of proof-of-concept (PoC) exploit code for CVE-2025-68613, a critical remote code execution flaw affecting n8n workflow automation platform. The vulnerability carries a maximum CVSS score of 10.0 and impacts versions from v0.211.0 t…GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 20[−]
23 DecDer Aufstieg des Chief Trust Officers: Wo passt der CISO hinein?srcset="https://b2b-contenthub.com/wp-content/uploads/2025/12/shutterstock_1534065422.jpg?quality=50&strip=all 5007w, https://b2b-contenthub.com/wp-content/uploads/2025/12/shutterstock_1534065422.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.c…CSOONLINE.COM
23 DecAgentic AI already hinting at cybersecurity’s pending identity crisisMaking the most of agentic AI is a top agenda item for many enterprises the coming year, as business executives are keen to deploy autonomous AI agents to revamp a range of business operations and workflows. The technology is nascent and, as with generative AI rollouts, CIOs are …CSOONLINE.COM
23 Dec167: ThreatlockerA manufacturer gets hit with ransomware. A hospital too. Learn how Threatlocker stops these types of attacks. This episode is brought to you by Threatlocker. Sponsors This episode is sponsored by ThreatLocker® . ThreatLocker® is a Zero Trust Endpoint Protection Platform that stre…DARKNETDIARIES.COM
23 DecBaker University says 2024 data breach impacts 53,000 peopleBaker University has disclosed a data breach after attackers gained access to its network one year ago and stole the personal, health, and financial information of over 53,000 individuals. [...]BLEEPINGCOMPUTER.COM
23 DecModern AppSec: OWASP SAMM, AI Secure Coding, Threat Modeling & Champions - ASW #362Using OWASP SAMM to assess and improve compliance with the Cyber Resilience Act (CRA) is an excellent strategy, as SAMM provides a framework for secure development practices such as secure by design principles and handling vulns. Segment Resources: - https://owaspsamm.org/ - http…YOUTUBE.COM
23 DecWhatsApp API worked exactly as promised, and stole everythingSecurity researchers have uncovered a malicious npm package that poses as a legitimate WhatsApp Web API library while quietly stealing messages, credentials, and contact data from developer environments. The package, identified as “lotusbail,” operates as a trojanized wrapper aro…CSOONLINE.COM
23 DecINTERPOL Arrests 574 in Africa; Ukrainian Ransomware Affiliate Pleads GuiltyA law enforcement operation coordinated by INTERPOL has led to the recovery of $3 million and the arrest of 574 suspects by authorities from 19 countries, amidst a continued crackdown on cybercrime networks in Africa. The coordinated effort, named Operation Sentinel, took place b…THEHACKERNEWS.COM
23 DecFake VPN Chrome Extensions Steal Credentials by Intercepting User TrafficSocket’s Threat Research Team has exposed a sophisticated credential-harvesting campaign that has operated through malicious Chrome extensions since 2017. Two variants of an extension named Phantom Shuttle (幻影穿梭), published under the threat actor email theknewone.com@gmail.…GBHACKERS.COM
23 DecUniversity of Phoenix Data Breach Impacts Over 3.5 Million IndividualsUniversity of Phoenix, Inc. disclosed a significant data breach affecting approximately 3.5 million individuals following an external system compromise discovered in November 2025. The unauthorized access occurred on August 13, 2025, but remained undetected until November 21, 202…GBHACKERS.COM
23 DecRansomware Attack Hits Romanian Waters Authority, Compromising 1,000+ IT SystemsRomania’s critical water infrastructure faced a significant cyber threat when the National Administration “Romanian Waters” disclosed a ransomware attack affecting multiple government agencies on December 20, 2025. The incident compromised approximately 1,000 IT…GBHACKERS.COM
23 DecSouth Korean firm hit with US investor lawsuit over data breach disclosure failuresA US federal securities class action lawsuit has alleged that South Korean ecommerce giant Coupang took nearly a month to disclose a massive data breach to regulators, violating SEC rules that require companies to report material cybersecurity incidents within four business days.…CSOONLINE.COM
23 DecOne-time codes used to hack corporate accountsSecurity firm Proofpoint has discovered that hackers have found a clever way to bypass multi-factor authentication (MFA) and thereby get their hands on accounts belonging to corporate users. In a nutshell, the hackers are using one-time codes from OAuth 2.0, an open standard that…CSOONLINE.COM
23 DecWhy outsourced cyber defenses create systemic risksOutsourcing critical IT and cybersecurity once looked like a shortcut to efficiency. Today, it is a shortcut to systemic fragility. Breaches at one vendor now cascade across hundreds of organizations. A corporate decision framed as a cost-saving measure can trigger risks that ext…CSOONLINE.COM
23 DecTwo Chrome Extensions Caught Secretly Stealing Credentials from Over 170 SitesCybersecurity researchers have discovered two malicious Google Chrome extensions with the same name and published by the same developer that come with capabilities to intercept traffic and capture user credentials. The extensions are advertised as a "multi-location network speed …THEHACKERNEWS.COM
23 DecThreat Actors Exploit Zero-Day in WatchGuard Firebox Devicessubmitted by kid to cybersecurity 2 points | 0 comments https://www.darkreading.com/vulnerabilities-threats/threat-actors-zero-day-watchguard-fireboxSH.ITJUST.WORKS
23 DecMacSync Stealer malware bypasses macOS Gatekeeper security warningsThe MacSync Stealer macOS malware can now infect victims’ computers using what appears to be a legitimate application with minimal user interaction, according to Apple device management and security vendor Jamf. Until now, macOS campaigns needed to persuade users to launch infect…CSOONLINE.COM
23 DecINTERPOL Dismantles Six Ransomware Operations, Detains 500+ IndividualsLaw enforcement agencies across 19 countries have made a significant breakthrough in combating cybercrime, arresting 574 suspects and recovering approximately USD 3 million during a month-long coordinated operation across Africa. The crackdown underscores the escalating threat of…GBHACKERS.COM
23 DecWebRAT malware spread via fake vulnerability exploits on GitHubThe WebRAT malware is now being distributed through GitHub repositories that claim to host proof-of-concept exploits for recently disclosed vulnerabilities. [...]BLEEPINGCOMPUTER.COM
23 DecA Vulnerability in WatchGuard Fireware OS Could Allow for Arbitrary Code Execution.A vulnerability has been discovered in WatchGuard Fireware OS, which could allow for unauthenticated arbitrary code execution. WatchGuard Fireware is the proprietary operating system that powers WatchGuard's Firebox appliances. Successful exploitation of this vulnerability could …CISECURITY.ORG
23 DecCISA Releases One Industrial Control Systems AdvisoryCISA released one Industrial Control Systems (ICS) Advisory. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.  ICSA-25-177-01 Mitsubishi Electric Air Conditioning Systems (Update B) CISA encourages user…CISA.GOV
📢 SECURITY ADVISORIES 5[−]
23 DecIndian Income Tax–Lure Campaign Deploying Multi-Stage Malware Against BusinessesTax-themed phishing campaigns have intensified in recent months, capitalizing on the heightened awareness surrounding India’s Income Tax Return (ITR) filing season. Public discussions about refund timelines and compliance deadlines create an ideal backdrop for attackers to …GBHACKERS.COM
🔥 INCIDENT REPORTING 21[−]
23 DecCyberattack Disrupts France’s Postal Service and Banking During Christmas RushA cyberattack knocked France’s national postal service offline, blocking and delaying package deliveries and online payments. The post Cyberattack Disrupts France’s Postal Service and Banking During Christmas Rush appeared first on SecurityWeek .SECURITYWEEK.COM
23 Dec3.5 Million Affected by University of Phoenix Data BreachThe University of Phoenix is one of the many victims of the recent Oracle EBS hacking campaign attributed to the Cl0p ransomware group. The post 3.5 Million Affected by University of Phoenix Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
23 Dec574 Arrested, $3 Million Seized in Crackdown on African Cybercrime RingsAuthorities in Senegal, Ghana, Benin, and Cameroon dismantled BEC, ransomware, and other cyber-fraud networks. The post 574 Arrested, $3 Million Seized in Crackdown on African Cybercrime Rings appeared first on SecurityWeek .SECURITYWEEK.COM
23 DecDenmark Accuses Russia of Conducting Two CyberattacksNews : The Danish Defence Intelligence Service (DDIS) announced on Thursday that Moscow was behind a cyber-attack on a Danish water utility in 2024 and a series of distributed denial-of-service (DDoS) attacks on Danish websites in the lead-up to the municipal and regional council…SCHNEIER.COM
23 DecFeds Seize Password Database Used in Massive Bank Account Takeover SchemeThe cybercriminals attempted to steal $28 million from compromised bank accounts through phishing. The post Feds Seize Password Database Used in Massive Bank Account Takeover Scheme appeared first on SecurityWeek .SECURITYWEEK.COM
23 DecCyberattack knocks offline France's postal, banking servicesThe French national postal service's online services were knocked offline by "a major network incident" on Monday, disrupting digital banking and other services for millions. [...]BLEEPINGCOMPUTER.COM
23 DecNissan Confirms Impact From Red Hat Data BreachThe personal information of 21,000 customers was stolen after hackers compromised Red Hat’s GitLab instances. The post Nissan Confirms Impact From Red Hat Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
23 DecMalicious NPM Package Hits 56K Downloads, Steals WhatsApp MessagesA sophisticated malware campaign has compromised the npm registry through a malicious package that perfectly mimics legitimate WhatsApp API functionality while silently exfiltrating authentication credentials, messages, contacts, and media files from unsuspecting developers. The …GBHACKERS.COM
23 DecRomanian water authority hit by ransomware attack over weekendsubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/romanian-water-authority-hit-by-ransomware-attack-over-weekend/SH.ITJUST.WORKS
23 DecInterpol-led action decrypts 6 ransomware strains, arrests hundredssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/interpol-led-action-decrypts-6-ransomware-strains-arrests-hundreds/SH.ITJUST.WORKS
23 DecFrench postal service brought down by cyber attackFrance’s postal service, La Poste, has been largely down for over twelve hours following a widespread network failure, reports The Register . All of La Poste’s IT systems are reportedly affected, including the website, the digital document service Digiposte, a digital ID service …CSOONLINE.COM
23 DecHackers Abuse Popular Monitoring Tool Nezha as a Stealth Trojan – Hackread – Cybersecurity News, Data Breaches, AI, and Moresubmitted by kid to cybersecurity 4 points | 0 comments https://hackread.com/hackers-abuse-monitoring-tool-nezha-trojan/SH.ITJUST.WORKS
23 DecDDoS incident disrupts France’s postal and banking services ahead of Christmas | The Record from Recorded Future Newssubmitted by kid to cybersecurity 1 points | 0 comments https://therecord.media/la-poste-france-ddos-disruption-days-before-christmasSH.ITJUST.WORKS
23 Dec1,000 systems pwned in Romanian Waters ransomware attack • The Registersubmitted by kid to cybersecurity 1 points | 0 comments https://www.theregister.com/2025/12/22/around_1000_systems_compromised_in/SH.ITJUST.WORKS
23 DecFrance’s postal and banking services disrupted by suspected DDoS attackFrance's postal service, La Poste, said it was hit by a disruptive cyberattack that knocked its services offline.TECHCRUNCH.COM
23 DecNissan says thousands of customers exposed in Red Hat breachsubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/nissan-says-thousands-of-customers-exposed-in-red-hat-breach/SH.ITJUST.WORKS
23 DecUkrainian National Pleads Guilty in Nefilim Ransomware Conspiracy – Hackread – Cybersecurity News, Data Breaches, AI, and Moresubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/ukrainian-national-pleads-guilty-nefilim-ransomware/SH.ITJUST.WORKS
23 DecHardBit 4.0 Ransomware Abuses Unsecured RDP and SMB for Access PersistenceHardBit ransomware continues its evolution with the release of version 4.0, introducing sophisticated mechanisms to establish persistence through vulnerable network services. The latest variant leverages open Remote Desktop Protocol (RDP) and Server Message Block (SMB) services a…GBHACKERS.COM
23 DecClop Ransomware Group Linked to 3.5m University of Phoenix Breach - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/university-phoenix-breach-clop/SH.ITJUST.WORKS
23 DecTop Ransomware Trends of 2025 - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/top-ransomware-trends-of-2025/SH.ITJUST.WORKS
23 DecA brush with online fraud: What are brushing scams and how do I stay safe?Have you ever received a package you never ordered? It could be a warning sign that your data has been compromised, with more fraud to follow.WELIVESECURITY.COM
🕵️ THREAT INTELLIGENCE 22[−]
23 DecPirate archivist group scrapes Spotify's 300TB library, posts free torrents for downloading 86,000,000 tracks — investigation underway as music and metadata hit torrent sitessubmitted by KarnaSubarna to cybersecurity 3 points | 0 comments https://www.tomshardware.com/service-providers/streaming/pirate-archivist-group-scrapes-spotifys-300tb-library-posts-free-torrents-for-downloading-investigation-underway-as-music-and-metadata-hit-torrent-sitesSH.ITJUST.WORKS
23 DecItaly Antitrust Agency Fines Apple $116 Million Over Privacy Feature; Apple Announces AppealItaly’s antitrust authority fined Apple $116 million after determining that operating one of its privacy features restricted App Store competition. The post Italy Antitrust Agency Fines Apple $116 Million Over Privacy Feature; Apple Announces Appeal appeared first on SecurityWeek…SECURITYWEEK.COM
23 DecNPM Package With 56,000 Downloads Steals WhatsApp Credentials, DataThe package provides legitimate functionality to evade detection, while stealing users’ data and deploying a backdoor. The post NPM Package With 56,000 Downloads Steals WhatsApp Credentials, Data appeared first on SecurityWeek .SECURITYWEEK.COM
23 DecThreat Actors Impersonate Korean TV Writers to Deliver MalwareNorth Korean-backed threat actors are impersonating writers from major Korean broadcasting companies to deliver malicious documents and establish initial access to targeted systems, according to threat intelligence research by Genians Security Center. The “Artemis” ca…GBHACKERS.COM
23 DecMacSync Stealer Malware Targets macOS Users Through Digitally Signed AppsJamf Threat Labs has uncovered a new MacSync Stealer campaign that significantly raises the bar for macOS malware delivery by abusing Apple’s own trust mechanisms. The latest variant is delivered as a fully code‑signed and notarized Swift application, allowing it to masquerade as…GBHACKERS.COM
23 DecSpotify Music Library Targeted as Hacktivists Scrape 86 Million FilesAnna’s Archive, a prominent digital preservation platform, has announced the largest unauthorized extraction of Spotify music data ever recorded. The hacktivist group scraped approximately 86 million songs from the streaming service, representing nearly 99.6% of all user li…GBHACKERS.COM
23 DecUzbek Users Under Attack by Android SMS Stealerssubmitted by kid to cybersecurity 2 points | 0 comments https://www.darkreading.com/cyber-risk/uzbek-users-android-sms-stealersSH.ITJUST.WORKS
23 DecAmazon has stopped 1,800 job applications from North Korean agentsAmazon’s chief security officer Stephen Schmidt writes that since April 2024, the company has stopped over 1800 job applications suspected of coming from North Korean agents. The number of applications linked to North Korea has also increased by about 27% per quarter in 2025. The…CSOONLINE.COM
23 DecAndroid Malware Operations Merge Droppers, SMS Theft, and RAT Capabilities at Scalesubmitted by kid to cybersecurity 2 points | 0 comments https://thehackernews.com/2025/12/android-malware-operations-merge.htmlSH.ITJUST.WORKS
23 DecIran-backed Prince of Persia spied on activists | Cybernewssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/security/iran-prince-persia-cyber-espionage/SH.ITJUST.WORKS
23 DecServiceNow to Acquire Armis for $7.75 Billion in CashRumors of a possible buyout surfaced earlier this month, with the official announcement coming just weeks after Armis announced raising $435 million. The post ServiceNow to Acquire Armis for $7.75 Billion in Cash appeared first on SecurityWeek .SECURITYWEEK.COM
23 DecBlindEagle Hackers Attacking Government Agencies with Powershell Scriptssubmitted by kid to cybersecurity 1 points | 0 comments https://cybersecuritynews.com/blindeagle-hackers-attacking-government-agencies/SH.ITJUST.WORKS
23 DecMacSync macOS Malware Distributed via Signed Swift Application - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/macsync-macos-malware-distributed-via-signed-swift-application/SH.ITJUST.WORKS
23 DecPrioritization vs. Risk Management: What's the Real Focus?In today's fast-paced digital world, the line between prioritization and risk management is often blurred. Discover how businesses are navigating these challenges by focusing on cost, delay, and feature delivery, rather than just potential impacts. This insightful discussion shed…YOUTUBE.COM
23 DecMalicious npm package steals WhatsApp accounts and messagessubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/malicious-npm-package-steals-whatsapp-accounts-and-messages/SH.ITJUST.WORKS
23 DecCritical n8n Flaw (CVSS 9.9) Enables Arbitrary Code Execution Across Thousands of Instancessubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/12/critical-n8n-flaw-cvss-99-enables.htmlSH.ITJUST.WORKS
23 DecMalicious extensions in Chrome Web store steal user credentialssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/malicious-extensions-in-chrome-web-store-steal-user-credentials/SH.ITJUST.WORKS
23 DecShift Left to the ModelUncover the next frontier in application security: teaching AI to write secure code. By shifting left to the model itself, we're revolutionizing how developers approach security, ensuring robust code with minimal effort. Dive into this game-changing approach that's setting new st…YOUTUBE.COM
23 DecHoliday Special Part 1: You’re Gonna Click the Link - Rob Allen - SWN #540It’s the holidays, your defenses are down, your inbox is lying to you, and yes—you’re gonna click the link. In Part 1 of our holiday special, Doug White and a panel of very smart people explain why social engineering still works decades later, why training alone won’t save you, a…YOUTUBE.COM
23 DecClick-Fix Attacks: A Growing ThreatIn our latest clip, we explore the increase in "click-fix" scams, where users are misled into executing harmful PowerShell commands. These attacks can lead to keylogger installations and unauthorized remote access. Stay informed to protect your digital security. Subscribe to our …YOUTUBE.COM
23 DecStrengthening supply chain security: Preparing for the next malware campaignSecurity advice for users and maintainers to help reduce the impact of the next supply chain malware attack. The post Strengthening supply chain security: Preparing for the next malware campaign appeared first on The GitHub Blog .GITHUB.BLOG
🌐 CYBER THREAT LANDSCAPE 1[−]
23 DecThe AI Fix #82: Santa Claus doesn’t exist (according to AI)Is Santa Claus real? This Christmas special of The AI Fix podcast sets out to answer that question in the most sensible way possible: by consulting chatbots, Google's festive killjoys, and the laws of relativistic physics. Your hosts unwrap a festive grab-bag of AI absurdity as W…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 11[−]
23 DecFCC Bans Foreign-Made Drones and Key Parts Over U.S. National Security RisksThe U.S. Federal Communications Commission (FCC) on Monday announced a ban on all drones and critical components made in a foreign country, citing national security concerns. To that end, the agency has added to its Covered List Uncrewed aircraft systems (UAS) and UAS critical co…THEHACKERNEWS.COM
23 DecU.S. DoJ Seizes Fraud Domain Behind $14.6 Million Bank Account Takeover SchemeThe U.S. Justice Department (DoJ) on Monday announced the seizure of a web domain and database that it said was used to further a criminal scheme designed to target and defraud Americans by means of bank account takeover fraud. The domain in question, web3adspanels[.]org, was use…THEHACKERNEWS.COM
23 DecItaly fines Apple $116 million over App Store privacy policy issuesItaly's competition authority (AGCM) has fined Apple €98.6 million ($116 million) for using the App Tracking Transparency (ATT) privacy framework to abuse its dominant market position in mobile app advertising. [...]BLEEPINGCOMPUTER.COM
23 DecPasswd: A walkthrough of the Google Workspace Password ManagerPasswd is designed specifically for organizations operating within Google Workspace. Rather than competing as a general consumer password manager, its purpose is narrow, and business-focused: secure credential storage, controlled sharing, and seamless Workspace integration. The p…THEHACKERNEWS.COM
23 DecMicrosoft Teams strengthens messaging security by default in JanuaryMicrosoft Teams will automatically enable messaging safety features by default in January to strengthen defenses against content tagged as malicious. [...]BLEEPINGCOMPUTER.COM
23 DecMalicious extensions in Chrome Web store steal user credentialsTwo Chrome extensions in the Web Store named 'Phantom Shuttle' are posing as plugins for a proxy service to hijack user traffic and steal sensitive data. [...]BLEEPINGCOMPUTER.COM
23 DecInside Uzbekistan’s nationwide license plate surveillance systemThe Uzbek government's national license plate scanning system was discovered exposed to the internet for anyone to access without a password.TECHCRUNCH.COM
23 DecUS insurance giant Aflac says hackers stole personal and health data of 22.6 millionAflac, one of the largest insurance companies in the U.S., confirmed hackers stole reams of personal data, including Social Security numbers, identity documents, and health information.TECHCRUNCH.COM
23 DecHackers stole over $2.7 billion in crypto in 2025, data shows2025 was another banner year for crypto hacks and heists, the third year in a row that a new crypto theft record was set.TECHCRUNCH.COM
23 DecServiceNow to acquire cybersecurity startup Armis for $7.75BThe deal is expected to yield significant returns for Armis investors, including Sequoia, CapitalG, and Insight Partners.TECHCRUNCH.COM
23 DecMicrosoft rolls out hardware-accelerated BitLocker in Windows 11Microsoft is rolling out hardware-accelerated BitLocker in Windows 11 to address growing performance and security concerns by leveraging the capabilities of system-on-a-chip and CPU. [...]BLEEPINGCOMPUTER.COM