🐛 COMMON VULNERABILITIES AND EXPOSURES 7[−]
31 DecRondoDox botnet exploits React2Shell flaw to breach Next.js serversThe RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js servers with malware and cryptominers. [...]BLEEPINGCOMPUTER.COM
31 DecIBM Warns of Critical API Connect Bug Allowing Remote Authentication BypassIBM has disclosed details of a critical security flaw in API Connect that could allow attackers to gain remote access to the application. The vulnerability, tracked as CVE-2025-13915, is rated 9.8 out of a maximum of 10.0 on the CVSS scoring system. It has been described as an au…THEHACKERNEWS.COM
31 DecCVE-2021-44964 Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.0~5.4.3 allows attackers to perform Sandbox Escape via a crafted script file.Information published.MSRC.MICROSOFT.COM
31 DecCritical Apache StreamPipes Flaw Allows Attackers to Take Over Admin AccountsApache StreamPipes has released an urgent security advisory addressing CVE-2025-47411, a critical privilege escalation vulnerability affecting versions 0.69.0 through 0.97.0. The flaw allows attackers with legitimate non-administrator accounts to exploit the user ID creation mech…GBHACKERS.COM
31 DecCVE-2025-2915 HDF5 H5Faccum.c H5F__accum_free heap-based overflowInformation published.MSRC.MICROSOFT.COM
31 DecCVE-2025-2308 HDF5 Scale-Offset Filter H5Z__scaleoffset_decompress_one_byte heap-based overflowInformation published.MSRC.MICROSOFT.COM
31 DecCVE-2025-2309 HDF5 Type Conversion Logic H5T__bit_copy heap-based overflowInformation published.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 11[−]
31 DecInside the Dark Web: Exploring Cybercrime with Expert David Décary-HétuIn this episode, the host shares a pre-recorded favorite interview with David Decary-Hetu, a criminologist at the University of Montreal. They discuss the dark web, its technology, and its role in cybercrime. Decary-Hetu explains how the dark web operates, its users, and the dyna…CYBERSECURITYTODAY.LIBSYN.COM
31 DecIBM warns of critical API Connect auth bypass vulnerabilityIBM urged customers to patch a critical authentication bypass vulnerability in its API Connect enterprise platform that could allow attackers to access apps remotely. [...]BLEEPINGCOMPUTER.COM
31 DecTrust Wallet Chrome Extension Hack Drains $8.5M via Shai-Hulud Supply Chain AttackTrust Wallet on Tuesday revealed that the second iteration of the Shai-Hulud (aka Sha1-Hulud) supply chain outbreak in November 2025 was likely responsible for the hack of its Google Chrome extension, ultimately resulting in the theft of approximately $8.5 million in assets. "Our…THEHACKERNEWS.COM
31 DecResearchers Spot Modified Shai-Hulud Worm Testing Payload on npm RegistryCybersecurity researchers have disclosed details of what appears to be a new strain of Shai Hulud on the npm registry with slight modifications from the previous wave observed last month. The npm package that embeds the novel Shai Hulud strain is "@vietmoney/react-big-calendar," …THEHACKERNEWS.COM
31 DecNeuroSploit v2 Launches as AI-Powered Penetration Testing FrameworkNeuroSploit v2 is an advanced AI-powered penetration testing framework designed to automate and enhance offensive security operations. Leveraging cutting-edge large language model (LLM) technology, the framework brings automation to vulnerability assessment, threat simulation, an…GBHACKERS.COM
31 DecMalicious Manipulation of LLMs for Scalable Vulnerability ExploitationA groundbreaking study from researchers at the University of Luxembourg reveals a critical security paradigm shift: large language models (LLMs) are being weaponized to automatically generate functional exploits from public vulnerability disclosures, effectively transforming novi…GBHACKERS.COM
31 Dec KEVTwo U.S. Cybersecurity Professionals Plead Guilty to Acting as ALPHV/BlackCat AffiliatesA federal district court in the Southern District of Florida accepted guilty pleas from two cybersecurity professionals who turned their expertise against the businesses they were supposed to protect. Ryan Goldberg, 40, of Georgia, and Kevin Martin, 36, of Texas, admitted to cons…GBHACKERS.COM
31 DecNew Open-Source C2 Framework AdaptixC2 Debuts With Improved Stability and SpeedThe open-source community has received a major update with the release of AdaptixC2 Version 1.0. This new version brings significant enhancements to the Command and Control (C2) framework, with a focus on network stability, user interface (UI) performance, and operational speed. …GBHACKERS.COM
31 DecEquifax Europe CISO: Notorious breach spurred cybersecurity transformationThe 2017 Equifax breach was one of biggest security incidents of the 21st century . A textbook data leak case, the breach impacted more than 147 million people , spawning a number of scandals and controversies, with the credit reporting agency being criticized for a range of issu…CSOONLINE.COM
31 DecCybercrime Inc.: Wenn Hacker besser organsiert sind als die ITCybercrime hat sich zur organisierten Industrie mit Arbeitsteilung gewandelt. DC Studio – Shutterstock.com Was einst in Foren mit selbstgeschriebenen Schadcodes begann, hat sich zu einer global vernetzten Untergrundökonomie entwickelt, die in Effizienz, Geschwindigkeit und Skalie…CSOONLINE.COM
31 DecDetect Go’s silent arithmetic bugs with go-panikintGo’s arithmetic operations on standard integer types are silent by default, meaning overflows “wrap around” without panicking. This behavior has hidden an entire class of security vulnerabilities from fuzzing campaigns. Today we’re changing that by releasing go-panikint , a modif…TRAILOFBITS.COM
📢 SECURITY ADVISORIES 2[−]
31 DecSHARED INTEL Q&A: Why Data Bill of Materials (DBOM) is surfacing as a crucial tool to secure AIEnterprises hustling to embed AI across their operations came to an uncomfortable realization in 2025: they lost track of the data powering those systems. Related: The case for SBOM Few paused to map where sensitive data lived or how it … (more…) The post SHARED INTEL Q&…LASTWATCHDOG.COM
31 DecDaran scheitert Passwordlesssrcset="https://b2b-contenthub.com/wp-content/uploads/2025/11/Roman-Samborskyi_shutterstock_2425433469_16z9.jpg?quality=50&strip=all 8256w, https://b2b-contenthub.com/wp-content/uploads/2025/11/Roman-Samborskyi_shutterstock_2425433469_16z9.jpg?resize=300%2C168&quality=50&…CSOONLINE.COM
🔥 INCIDENT REPORTING 3[−]
31 DecEuropean Space Agency Confirms Breach After Hacker Offers to Sell DataThe European Space Agency is conducting an investigation and says external science servers have been compromised. The post European Space Agency Confirms Breach After Hacker Offers to Sell Data appeared first on SecurityWeek .SECURITYWEEK.COM
31 DecDarkSpectre Malware Campaign Hits Chrome, Edge, and Firefox UsersA sophisticated Chinese threat actor dubbed DarkSpectre has compromised 8.8 million users across Chrome, Edge, and Firefox through three distinct malware campaigns that have operated undetected for over seven years, researchers revealed today. The operation represents one of the …GBHACKERS.COM
31 DecSo geht Post-Incident ReviewPost-Incident Reviews können dazu beitragen, die richtigen Lehren aus Sicherheitsvorfällen zu ziehen – wenn sie richtig aufgesetzt sind. dotshock | shutterstock.com Angenommen, Ihr Unternehmen wird von Cyberkriminellen angegriffen , kommt dabei aber mit einem blauen Auge davon, w…CSOONLINE.COM
🕵️ THREAT INTELLIGENCE 13[−]
31 DecLinkedIn Job ScamsInteresting article on the variety of LinkedIn job scams around the world: In India, tech jobs are used as bait because the industry employs millions of people and offers high-paying roles. In Kenya, the recruitment industry is largely unorganized, so scamsters leverage fake pers…SCHNEIER.COM
31 DecShai-Hulud Supply Chain Attack Led to $8.5 Million Trust Wallet HeistThe worm exposed Trust Wallet’s Developer GitHub secrets, allowing attackers to publish a backdoor extension and steal funds from 2,520 wallets. The post Shai-Hulud Supply Chain Attack Led to $8.5 Million Trust Wallet Heist appeared first on SecurityWeek .SECURITYWEEK.COM
31 DecDarkSpectre Browser Extension Campaigns Exposed After Impacting 8.8 Million Users WorldwideThe threat actor behind two malicious browser extension campaigns, ShadyPanda and GhostPoster, has been attributed to a third attack campaign codenamed DarkSpectre that has impacted 2.2 million users of Google Chrome, Microsoft Edge, and Mozilla Firefox. The activity is assessed …THEHACKERNEWS.COM
31 DecAmazon Warns of Fraudulent North Korean Job ApplicantsAmazon has blocked more than 1,800 suspected North Korean applicants from joining the company since April 2024, TechRadar reports. Amazon’s Chief Security Officer, Stephen Schmidt, said in a LinkedIn post that DPRK-linked applications have increased by 27% quarter over quarter th…KNOWBE4.COM
31 DecGlassWorm Malware Turns VS Code Extensions into an Attack Vector Against macOSGlassWorm has returned with a dangerous new evolution. The notorious self-propagating malware, which first surfaced in October as an invisible Unicode-based threat in VS Code extensions, has completed a significant platform pivot to macOS with 50,000 downloads and a fully operati…GBHACKERS.COM
31 DecNew Cybercrime Tool “ErrTraffic” Enables Automated ClickFix AttacksThe cybercriminal underground has entered a new phase of industrialization. Hudson Rock researchers have uncovered ErrTraffic v2, a sophisticated ClickFix-as-a-Service platform that commoditizes deceptive social engineering at an unprecedented scale. Priced at just $800 and adver…GBHACKERS.COM
31 DecAPT36 Targets Indian Government Systems Using Malicious Windows LNK FilesA sophisticated cyber-espionage operation attributed to APT36, also known as Transparent Tribe, has been identified targeting Indian governmental, academic, and strategic entities through weaponized Windows shortcut files designed to evade detection and establish persistent remot…GBHACKERS.COM
31 DecNew AI-Enhanced Crypter Promoted as Capable of Evading Windows DefenderCybersecurity researchers have spotted a new high-sophistication malware loader being advertised on dark web forums, marketed as a commercial solution for evading modern endpoint protection. The tool, dubbed InternalWhisper x ImpactSolutions, is being promoted by a threat actor k…GBHACKERS.COM
31 DecTech Complexity's Hidden ChallengeAs technology advances, complexity increases, posing new challenges. The risk lies in managing this complexity without overwhelming users. How will we ensure comprehension in an ever-complex tech landscape? Subscribe to our podcasts: https://securityweekly.com/subscribe #TechComp…YOUTUBE.COM
31 DecCybersecurity's Hidden Burnout RiskCybersecurity professionals are known for their relentless work ethic, pushing themselves to the limit. However, this constant high-speed pace can lead to burnout if not managed properly. How can leaders ensure their teams maintain a healthy balance? Subscribe to our podcasts: ht…YOUTUBE.COM
31 DecSay Easy, Do Hard - Preventing Burnout, Focusing on CISO Health and Wellness - BSW #428CISO pressures are on the rise - board expectations, executive alignment, AI, and personal liability - and that's all on top of your normal security pressures. With all these pressures, CISO burnout is on the rise. How do we detect it and help prevent it? Easier said than done. I…YOUTUBE.COM
31 DecOvercoming a Career CollapseAn unexpected career setback can lead to profound personal challenges. This story reveals the emotional journey and resilience needed to overcome such adversity. What strategies help you bounce back when faced with unexpected career changes? Subscribe to our podcasts: https://sec…YOUTUBE.COM
31 DecThe Power of UnityDiscover how a unified, AI-powered Cloud-Delivered Security Services platform delivers real-time, proactive prevention against modern threats. The post The Power of Unity appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
31 DecU.S. Treasury Lifts Sanctions on Three Individuals Linked to Intellexa and Predator SpywareThe U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) on Tuesday removed three individuals linked to the Intellexa Consortium, the holding company behind a commercial spyware known as Predator, from the specially designated nationals list. The names of the…THEHACKERNEWS.COM
📡 INFOSEC NEWS 3[−]
31 DecHackers drain $3.9M from Unleash Protocol after multisig hijackThe decentralized intellectual property platform Unleash Protocol has lost around $3.9 million worth of cryptocurrency after someone executed an unauthorized contract upgrade that allowed asset withdrawals. [...]BLEEPINGCOMPUTER.COM
31 DecDisney will pay $10 million to settle children's data privacy lawsuitDisney has agreed to pay a $10 million civil penalty to settle claims that it violated the Children's Online Privacy Protection Act by mislabeling videos and allowing data collection for targeted advertising. [...]BLEEPINGCOMPUTER.COM
31 DecNYC mayoral inauguration bans Flipper Zero, Raspberry Pi devicesNew York City's 2026 mayoral inauguration of Zohran Mamdani has published a list of banned items for the event, specifically prohibiting the Flipper Zero and Raspberry Pi devices. [...]BLEEPINGCOMPUTER.COM