🐛 COMMON VULNERABILITIES AND EXPOSURES 30[−]
24 DecCritical MongoDB Flaw Leaks Sensitive Data Through zlib CompressionMongoDB has disclosed a critical security vulnerability tracked as CVE-2025-14847 that could allow attackers to extract uninitialized heap memory from database servers without authentication. The flaw, affecting multiple MongoDB versions dating back to v3.6, stems from a client-s…GBHACKERS.COM
24 DecCVE-2025-38466 perf: Revert to requiring CAP_SYS_ADMIN for uprobesInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38437 ksmbd: fix potential use-after-free in oplock/lease break ackInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38439 bnxt_en: Set DMA unmap len correctly for XDP_REDIRECTInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38458 atm: clip: Fix NULL pointer dereference in vcc_sendmsg()Information published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38457 net/sched: Abort __tc_modify_qdisc if parent class does not existInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38445 md/raid1: Fix stack memory use after return in raid1_reshapeInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38465 netlink: Fix wraparounds of sk->sk_rmem_alloc.Information published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38443 nbd: fix uaf in nbd_genl_connect() error pathInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38464 tipc: Fix use-after-free in tipc_conn_close().Information published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38460 atm: clip: Fix potential null-ptr-deref in to_atmarpd().Information published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38459 atm: clip: Fix infinite recursive call of clip_push().Information published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38476 rpl: Fix use-after-free in rpl_do_srh_inline().Information published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38470 net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtimeInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38448 usb: gadget: u_serial: Fix race condition in TTY wakeupInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38467 drm/exynos: exynos7_drm_decon: add vblank check in IRQ handlingInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38468 net/sched: Return NULL when htb_lookup_leaf encounters an empty rbtreeInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38474 usb: net: sierra: check for no status endpointInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38444 raid10: cleanup memleak at raid10_make_requestInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38441 netfilter: flowtable: account for Ethernet header in nf_flow_pppoe_proto()Information published.MSRC.MICROSOFT.COM
24 DecCVE-2025-38473 Bluetooth: Fix null-ptr-deref in l2cap_sock_resume_cb()Information published.MSRC.MICROSOFT.COM
24 DecCVE-2025-62231 Xorg: xmayland: value overflow in xkbsetcompatmap()Information published.MSRC.MICROSOFT.COM
24 DecCVE-2025-62229 Xorg: xmayland: use-after-free in xpresentnotify structure creationInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2025-62230 Xorg: xwayland: use-after-free in xkb client resource removalInformation published.MSRC.MICROSOFT.COM
24 DecCVE-2024-7883 CMSE secure state may leak from stack to floating-point registersInformation published.MSRC.MICROSOFT.COM
24 DecWebrat turns GitHub PoCs into a malware trapSecurity professionals hunting PoCs and exploit code on GitHub might soon walk into a trap, as attackers redirect a known RAT toward them. Researchers have uncovered a stealthy campaign in which the Webrat Trojan, known for months to hide inside game cheats and cracked software, …CSOONLINE.COM
24 DecM-Files Vulnerability Allows Attackers to Steal Active User Session TokensA critical security vulnerability in M-Files Server could allow authenticated attackers to capture active user session tokens via the M-Files Web interface, enabling identity impersonation and unauthorized access to sensitive information. The flaw, tracked as CVE-2025-13008, was …GBHACKERS.COM
24 DecNet-SNMP Vulnerability Triggers Buffer Overflow, Crashing the DaemonA critical buffer overflow vulnerability in Net-SNMP’s snmptrapd daemon allows remote attackers to crash the service by sending specially crafted packets, potentially disrupting network monitoring operations across enterprise environments. The flaw, tracked as CVE-2025-6861…GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 12[−]
24 DecInterpol sweep takes down cybercrooks in 19 countriesA ransomware expert lauded a recent crackdown on cybercrooks in Africa that resulted in the decryption of six ransomware strains, smashing of links to malicious websites, and hundreds of arrests as major action. “This may not be the same headline as taking down LockBit , but I th…CSOONLINE.COM
24 DecServiceNow’s $7.75 billion cash deal for Armis illustrates shifting strategiesServiceNow on Tuesday announced that it would buy cybersecurity vendor Armis for $7.75 billion in cash. This builds on its December purchase of identity security vendor Vezas, and the closing of its acquisition of AI vendor Moveworks. Analysts and cybersecurity practitioners most…CSOONLINE.COM
24 DecOperation PCPcat Exploits Next.js and React, Impacting 59,000+ ServersA sophisticated credential-stealing campaign named “Operation PCPcat” has compromised over 59,000 Next.js servers worldwide, exploiting critical vulnerabilities in the popular React framework to harvest sensitive authentication data at industrial scale. Security resea…GBHACKERS.COM
24 DecWebRAT Malware Campaign Leveraging GitHub-Hosted Proof-of-Concept CodeCybersecurity specialists from the Solar 4RAYS cyberthreat research center, a division of the Solar Group, have uncovered a dangerous new malware strain dubbed “Webrat.” This sophisticated threat has been identified as a multi-functional remote access tool (RAT) and i…GBHACKERS.COM
24 DecImplementing NIS2 — without getting bogged down in red tapeNIS2 is symbolic of the core problem with European directives and regulations: They generate unnecessary red tape and too rarely have the desired effect. Whether it’s the Supply Chain Act, GDPR impact assessments, or the IT Security Act — the common theme is that companies have t…CSOONLINE.COM
24 DecAttacks are Evolving: 3 Ways to Protect Your Business in 2026Every year, cybercriminals find new ways to steal money and data from businesses. Breaching a business network, extracting sensitive data, and selling it on the dark web has become a reliable payday. But in 2025, the data breaches that affected small and medium-sized busine…THEHACKERNEWS.COM
24 DecUrban VPN Proxy Surreptitiously Intercepts AI ChatsThis is pretty scary : Urban VPN Proxy targets conversations across ten AI platforms: ChatGPT, Claude, Gemini, Microsoft Copilot, Perplexity, DeepSeek, Grok (xAI), Meta AI. For each platform, the extension includes a dedicated “executor” script designed to intercept a…SCHNEIER.COM
24 DecMongoDB warns admins to patch severe RCE flaw immediatelyMongoDB has warned IT admins to immediately patch a high-severity vulnerability that can be exploited in remote code execution (RCE) attacks targeting vulnerable servers. [...]BLEEPINGCOMPUTER.COM
24 DecNVIDIA Isaac Vulnerabilities Enable Remote Code Execution AttacksNVIDIA released critical security updates for its Isaac Launchable platform on December 23, 2025, addressing three severe vulnerabilities that could allow unauthenticated attackers to execute arbitrary code remotely. All three flaws carry a maximum CVSS score of 9.8, placing them…GBHACKERS.COM
24 DecIsraeli Organizations Targeted by AV-Themed Malicious Word and PDF FilesSEQRITE Labs’ Advanced Persistent Threat (APT) Team has uncovered a sophisticated campaign targeting Israeli organizations through weaponized Microsoft Word and PDF documents disguised as legitimate antivirus software. The operation, tracked as UNG0801 or “Operation I…GBHACKERS.COM
24 DecHuman Error: Cybersecurity's Weak SpotHuman error continues to be a major vulnerability in cybersecurity, with attackers using relentless tactics like the "infinite series" to breach defenses. Learn how to protect your organization from these persistent threats and fortify your digital security. Subscribe to our podc…YOUTUBE.COM
24 DecMongoDB warns admins to patch severe vulnerability immediatelyMongoDB has warned IT admins to immediately patch a high-severity memory-read vulnerability that may be exploited by unauthenticated attackers remotely. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 2[−]
24 DecMicrosoft Teams to let admins block external users via Defender portalMicrosoft announced that security administrators will soon be able to block external users from sending messages, calls, or meeting invitations to members of their organization via Teams. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 4[−]
24 DecМедицинская лаборатория Гемотест (Gemotest) - 6,341,495 breached accountsIn April 2022, Russian pharmaceutical company Gemotest suffered a data breach that exposed 31 million patients . The data contained 6.3 million unique email addresses along with names, physical addresses, dates of birth, passport and insurance numbers. Gemotest was later fined fo…HAVEIBEENPWNED.COM
24 DecMore than 22 million Aflac customers impacted by June data breach | The Record from Recorded Future Newssubmitted by kid to cybersecurity 1 points | 0 comments https://therecord.media/22-million-impacted-aflac-breachSH.ITJUST.WORKS
24 DecPro-Russian Hackers Claim Cyberattack on French Postal ServiceCentral computer systems at French national postal service La Poste were knocked offline Monday in DDoS attack. The post Pro-Russian Hackers Claim Cyberattack on French Postal Service appeared first on SecurityWeek .SECURITYWEEK.COM
24 DecNtKiller Malware Advertised on Dark Web With Claims of Antivirus and EDR BypassA new and sophisticated defensive evasion tool dubbed “NtKiller” has surfaced on underground cybercrime forums, marketed by a threat actor known as “AlphaGhoul.” The utility is being aggressively promoted as a high-end solution for stealthily terminating a…GBHACKERS.COM
🕵️ THREAT INTELLIGENCE 9[−]
24 DecThe CISO Holiday Party 2025: Leadership Lessons from the Year That Was - BSW #427Join Business Security Weekly for a roundtable-style year-in-review. The BSW hosts share the most surprising, inspiring, and humbling moments of 2025 in business security, culture, and personal growth. And a few of us might be dressed for the upcoming holiday season... Visit http…YOUTUBE.COM
24 DecFeds Seize Password Database Used in Massive Bank Account Takeover Scheme - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/feds-seize-password-database-used-in-massive-bank-account-takeover-scheme/SH.ITJUST.WORKS
24 DecNorth Korean Beavertail malware sparks attacks across financial sector | SC Mediasubmitted by kid to cybersecurity 3 points | 0 comments https://www.scworld.com/news/north-korean-beavertail-malware-sparks-attacks-across-financial-sectorSH.ITJUST.WORKS
24 DecHackers stole over $2.7B in crypto in 2025, data shows | TechCrunchsubmitted by kid to cybersecurity 2 points | 0 comments https://techcrunch.com/2025/12/23/hackers-stole-over-2-7-billion-in-crypto-in-2025-data-shows/SH.ITJUST.WORKS
24 DecPrioritize Self-Care in 2026Mental health takes center stage in cybersecurity, highlighting the shift from glorifying exhaustion to prioritizing self-care. As we wrap up the year, let's commit to making 2026 the year of mental wellness in cybersecurity. How are you prioritizing your self-care in the new yea…YOUTUBE.COM
24 DecWhy We Abandoned Matrix: The Dark Truth About User Security and Safetysubmitted by cm0002 to cybersecurity 1 points | 0 comments https://forum.hackliberty.org/t/why-we-abandoned-matrix-the-dark-truth-about-user-security-and-safety/224INFOSEC.PUB
24 DecEvasive Panda APT: Malware Delivery via AitM and DNS PoisoningEvasive Panda, a sophisticated threat actor known by the aliases Bronze Highland, Daggerfly, and StormBamboo, has escalated its offensive capabilities through a two-year campaign that has deployed advanced attack techniques,, including adversary-in-the-middle (AitM) attacks and D…GBHACKERS.COM
24 DecMicrosoft Enhances BitLocker with Hardware Acceleration SupportMicrosoft has officially announced a major upgrade to its encryption technology with the introduction of hardware-accelerated BitLocker. Revealed by Microsoft’s Rafal Sosnowski following the Ignite conference, this new feature is designed to solve performance bottlenecks that hav…GBHACKERS.COM
24 DecProtecting AI with CybersecurityAs we prepare to welcome 2026, the push to integrate AI into business is at an all-time high. It's not just about activating tools like co-pilot; it's about ensuring robust data protection and classification. CEOs and boards must prioritize cybersecurity to avoid unforeseen chall…YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
24 DecFake MAS Windows activation domain used to spread PowerShell malwareA typosquatted domain impersonating the Microsoft Activation Scripts (MAS) tool was used to distribute malicious PowerShell scripts that infect Windows systems with the 'Cosmali Loader'. [...]BLEEPINGCOMPUTER.COM
🎙️ PODCASTS 1[−]
24 DecYear End Repeat: Pig Butchering: Operation Shamrock Fights BackOver the holidays we are rerunning some of our favourite episodes. This one first aired this summer and was one of my first conversations with the fascinating head of Operation Shamrock. We'll be back with regular programming on January 5th.CYBERSECURITYTODAY.LIBSYN.COM
📡 INFOSEC NEWS 6[−]
24 DecItaly Fines Apple €98.6 Million Over ATT Rules Limiting App Store CompetitionApple has been fined €98.6 million ($116 million) by Italy's antitrust authority after finding that the company's App Tracking Transparency (ATT) privacy framework restricted App Store competition. The Italian Competition Authority (Autorità Garante della Concorrenza e del Mercat…THEHACKERNEWS.COM
24 DecSEC Files Charges Over $14 Million Crypto Scam Using Fake AI-Themed Investment TipsThe U.S. Securities and Exchange Commission (SEC) has filed charges against multiple companies for their alleged involvement in an elaborate cryptocurrency scam that swindled more than $14 million from retail investors. The complaint charged crypto asset trading platforms Morocoi…THEHACKERNEWS.COM
24 DecNomani Investment Scam Surges 62% Using AI Deepfake Ads on Social MediaThe fraudulent investment scheme known as Nomani has witnessed an increase by 62%, according to data from ESET, as campaigns distributing the threat have also expanded beyond Facebook to include other social media platforms, such as YouTube. The Slovak cybersecurity company said …THEHACKERNEWS.COM
24 DecFBI seizes domain storing bank credentials stolen from U.S. victimsThe U.S. government has seized the 'web3adspanels.org' domain and the associated database used by cybercriminals to host bank login credentials stolen in account takeover attacks. [...]BLEEPINGCOMPUTER.COM
24 DecNew MacSync macOS Stealer Uses Signed App to Bypass Apple GatekeeperCybersecurity researchers have discovered a new variant of a macOS information stealer called MacSync that's delivered by means of a digitally signed, notarized Swift application masquerading as a messaging app installer to bypass Apple's Gatekeeper checks. "Unlike earlier MacSyn…THEHACKERNEWS.COM
24 DecOpenAI is reportedly testing Claude-like Skills for ChatGPTOpenAI is testing a new ChatGPT feature called "Skills," which will be similar to Claude's feature, also called Skills. [...]BLEEPINGCOMPUTER.COM