12/12-14/2025

~ The Cyber Beat
React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

Germany Summons Russian Ambassador Over Cyberattack, Election Disinformation

Announced Pick for No. 2 at NSA Won’t Get the Job as Another Candidate Surfaces

Trump Order on AI May Not Deter State Laws

AI Toys for Kids Talk About Sex and Issue Chinese Communist Party Talking Points, Tests Show

U.S. Bill Seeks Phase-Out of Chinese Sensors in Self-Driving Cars, After Space Hack Fears

ServiceNow in Talks to Acquire Cybersecurity Startup Armis in Potential $7 Billion Deal

Uncle Sam Sues Ex-Accenture Manager Over Army Cloud Security Claims

Coupang Data Breach Traced to Ex-Employee Who Retained System Access

MKVCinemas Streaming Piracy Service With 142M Visits Shuts Down

Canada’s Privacy Regulator to Probe Billboards Equipped With Facial Scanning Tech

Streisand Effect: Businesses That Pay Ransomware Gangs Are More Likely to Hit the Headlines

CyberVolk’s Ransomware Debut Stumbles on Cryptography Weakness		More Than 340,000 Impacted by Cyberattack on Library System of Pierce County (WA)

Hamas-Affiliated APT Targeting Government Agencies in the Middle East, Morocco

Beware: PayPal Subscriptions Abused to Send Fake Purchase Emails

Fake ‘One Battle After Another’ Torrent Hides Malware in Subtitles

New Advanced Phishing Kits Use AI and MFA Bypass Tactics to Steal Credentials at Scale

Fake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware Payloads

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

CISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE Attacks

New Windows RasMan Zero-Day Flaw Gets Free, Unofficial Patches

Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild

MITRE Shares 2025’s Top 25 Most Dangerous Software Weaknesses

Kali Linux 2025.4 Released With 3 New Tools, Desktop Updates

Published by The Cyber Beat

Leave a Reply