12/30-31/2025 January 1, 2026January 1, 2026 ~ The Cyber Beat ~ Leave a comment Mustang Panda Uses Signed Kernel-Mode Rootkit to Load TONESHELL BackdoorFinland Seizes Ship Suspected of Damaging Subsea Cable in Baltic SeaWashington Wants to Get Tough on Nation-State Hackers. Are Infrastructure Operators Ready?Fears Mount That U.S. Federal Cybersecurity Is Stagnating—Or WorseTwo Cybersecurity Employees Plead Guilty to Carrying Out Ransomware AttacksMeta Created ‘Playbook’ to Fend Off Pressure to Crack Down on Scammers, Documents ShowHong Kong’s Newest Anti-Scam Technology: Over-The-Counter BankingNew York’s Incoming Mayor Zohran Mamdani Bans Raspberry Pi at His Inauguration Party…And Flipper ZeroU.S. Treasury Lifts Sanctions on Three Individuals Linked to Intellexa and Predator SpywareDisney Will Pay $10 Million to Settle Children’s Data Privacy LawsuitCoupang to Split $1.17 Billion Among 33.7 Million Data Breach VictimsSilver Fox Targets Indian Users With Tax-Themed Emails Delivering ValleyRAT MalwareEuropean Space Agency Hit Again as Cybercrims Claim 200 GB Data up for SaleHackers Drain $3.9M From Unleash Protocol After Multisig HijackDarkSpectre Browser Extension Campaigns Exposed After Impacting 8.8 Million Users WorldwideZoom Stealer Browser Extensions Harvest Corporate Meeting IntelligenceNew ERRTraffic Service Enables ClickFix Attacks via Fake Browser GlitchesResearchers Spot Modified Shai-Hulud Worm Testing Payload on npm RegistryRondoDox Botnet Exploits React2Shell Flaw to Breach Next.js ServersUS, Australia Say ‘MongoBleed’ Bug Being ExploitedCSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code ExecutionIBM Warns of Critical API Connect Bug Allowing Remote Authentication Bypass
12/29/2025 December 29, 2025December 29, 2025 ~ The Cyber Beat ~ Leave a comment The Worst Hacks of 2025Happy 16th Birthday, KrebsOnSecurity.com!Indian Cops Cuff Ex-Coinbase Rep Over Selling Customer Info to CrimsHacker Arrested for KMSAuto Malware Campaign with 2.8 Million DownloadsAccused Data Thief Threw MacBook Into a River to Destroy EvidenceKorean Air Data Breach Exposes Data of Thousands of EmployeesRomanian Energy Provider Oltenia Energy Complex Hit by Gentlemen Ransomware AttackTwo More Banks Notifying Thousands of Victims About Marquis Software Ransomware Attack27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials
12/26-28/2025 December 28, 2025December 28, 2025 ~ The Cyber Beat ~ Leave a comment China-Linked Evasive Panda Ran DNS Poisoning Campaign to Deliver MgBot MalwareThe U.S. Must Stop Underestimating Drone WarfareLastPass 2022 Breach Led to Years-Long Cryptocurrency Thefts, TRM Labs FindsDeath, Torture, and Amputation: How Cybercrime Shook the World in 2025From Video Games to Cyber Defense: If You Don’t Think Like a Hacker, You Won’t WinCoupang Founder Kim Bom Apologises for Data Leak, Pledges CompensationShaping the Next Generation of Cyber ExpertsTrust Wallet Users Lose $7 Million to Hacked Chrome ExtensionFake GrubHub Emails Promise Tenfold Return on Sent CryptocurrencyUbisoft Shuts Down ‘Rainbow Six Siege’ Servers Following HackHacker Claims to Leak WIRED Database with 2.3 million RecordsEverest Ransomware Group Claims Theft of Over 1TB of Chrysler DataExploited MongoBleed Flaw Leaks MongoDB Secrets, 87K Servers ExposedCritical LangChain Core Vulnerability Exposes Secrets via Serialization Injection
12/25/2025 December 25, 2025 ~ The Cyber Beat ~ Leave a comment Why Hackers Love the Holidays, Especially Christmas and the LikeOpenAI is Reportedly Testing Multiple Claude-Like Skills For ChatGPTStudy Reveals Businesses Continue to Underinvest in Cybersecurity and are Neglect in Vulnerability AssessmentsThe Biggest Cybersecurity Mergers and Acquisitions of 2025Somerset County (PA) Utilizing New 911 Alert System After Cyber AttackNomani Investment Scam Surges 62% Using AI Deepfake Ads on Social MediaFortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass VulnerabilityCISA Flags Actively Exploited Digiever NVR Vulnerability Allowing Remote Code Execution
12/24/2025 December 24, 2025December 24, 2025 ~ The Cyber Beat ~ Leave a comment Pro-Russian Hackers Noname057 Claim Cyberattack on French Postal ServiceNIST, MITRE Partner on $20m AI Centers For Manufacturing and CybersecurityThe Age of the All-Access AI Agent Is HerePen Testers Accused of ‘Blackmail’ After Reporting Eurostar Chatbot FlawsAll I Want for Christmas Is Not a Scam – Tips to Avoid Digital Threats During the Festive SeasonAI Powered Cyber Attack Hits Chinese TikTok Short Video Rival KuaishouCoordinated Scams Target MENA Region Extensively With Fake Online Job AdsFake MAS Windows Activation Domain Used to Spread PowerShell MalwareMongoDB Warns Admins to Patch Severe RCE Flaw ImmediatelyCyber Volunteer Effort for Small Water Utilities Announces New MSSP Effort
12/23/2025 December 24, 2025December 24, 2025 ~ The Cyber Beat ~ Leave a comment 86% Surge in Fake Delivery Websites Hits Shoppers During Holiday RushDozens of Flock AI Camera Feeds Were Just Out ThereFCC Bans Foreign-Made Drones and Key Parts Over U.S. National Security RisksChinese Crypto Scammers on Telegram Are Fueling the Biggest Darknet Markets EverSEC Sues Crypto Firms for Defrauding Investors Out of $14 MillionU.S. DoJ Seizes Fraud Domain Behind $14.6 Million Bank Account Takeover SchemeNYPD Sued Over Possible Records Collected Through Muslim Spying ProgramItaly Fines Apple $116 Million Over App Store Privacy Policy IssuesMore Than 22 Million Aflac Customers Impacted by June Data BreachBaker University (KS) Says 2024 Data Breach Impacts 53,000 PeopleTwo Chrome Extensions Caught Secretly Stealing Credentials from Over 170 SitesWebRAT Malware Spread via Fake Vulnerability Exploits on GithubCritical n8n Flaw (CVSS 9.9) Enables Arbitrary Code Execution Across Thousands of InstancesMicrosoft Rolls Out Hardware-Accelerated BitLocker in Windows 11A Cybersecurity Playbook for AI AdoptionServiceNow Opens $7.7b Ticket Titled ‘Buy Security Company, Make It Armis’
12/22/2025 December 22, 2025December 22, 2025 ~ The Cyber Beat ~ Leave a comment Cyber Spies Use Fake New Year Concert Invites to Target Russian MilitaryRomanian Water Authority Hit by BitLocker Ransomware Attack Over WeekendHacktivists Scrape 86M Spotify Tracks, Claim Their Aim Is to Preserve CultureMicrosoft Windows ‘Hack Your Own Password’ Attack Warning IssuedSouth Korea to Require Facial Recognition for New Mobile NumbersJudge Rules That NSO Cannot Continue to Install Spyware via WhatsApp Pending AppealInterpol-Led Action Decrypts 6 Ransomware Strains, Arrests HundredsNefilim Ransomware Affiliate Pleads GuiltyFrance’s National Post Office Hit by Suspected Cyber-Attack, Delaying DeliveriesUniversity of Phoenix Data Breach Impacts Nearly 3.5 Million IndividualsNissan Says Thousands of Customers Exposed in Red Hat BreachScripted Sparrow Sends Millions of BEC Emails Each MonthAndroid Malware Operations Merge Droppers, SMS Theft, and RAT Capabilities at ScaleNew MacSync Malware Dropper Evades macOS Gatekeeper ChecksFake WhatsApp API Package on npm Steals Messages, Contacts, and Login TokensMonitoring Tool Nezha Abused For Stealthy Post-Exploitation Access
12/19-21/2025 December 21, 2025December 21, 2025 ~ The Cyber Beat ~ Leave a comment Inquiry Ongoing After UK Government Hacked, Says MinisterFirms Warned to Be On ‘High Alert’ for Scam EmailsIranian Infy APT Resurfaces with New Malware Activity After Years of SilenceRussian Defense Firms Targeted by Hackers Using AI, Other TacticsTrump Signs Defense Bill Allocating Millions for Cyber Command, Mandating Pentagon Phone SecuritySenate Confirms New Pentagon CIOKrebs on Dismantling Defenses: Trump 2.0 Cyber Year in ReviewHere’s What’s in the DOJ’s Epstein Files Release—And What’s MissingU.S. Charges 54 in Massive ATM Jackpotting ConspiracyNigeria Arrests RaccoonO365 Phishing Developer Linked to Microsoft 365 AttacksEx-Michigan Assistant Matt Weiss Seen on Video Hacking Into Student Accounts, Security Footage RevealsHacks, Thefts, and Disruption: The Worst Data Breaches of 2025Richmond Behavioral Health Authority (VA) Breach Hits Over 113KCracked Software and YouTube Videos Spread CountLoader and GachiLoader MalwareRansomHouse Upgrades Encryption With Multi-Layered Data ProcessingHow RomCom Became a Multipurpose CyberweaponWatchGuard Warns of Active Exploitation of Critical Fireware OS VPN VulnerabilityOver 25,000 FortiCloud SSO Devices Exposed to Remote AttacksNew UEFI Flaw Enables Pre-Boot Attacks on Motherboards from Gigabyte, MSI, ASUS, ASRockDocker Hardened Images Now Open Source and Available for FreePalo Alto Networks Announces Multibillion-Dollar Deal With Google CloudFTC: Instacart to Refund $60M Over Deceptive Subscription Tactics
12/18/2025 December 19, 2025December 19, 2025 ~ The Cyber Beat ~ Leave a comment Denmark Says Russia Was Behind Two ‘Destructive and Disruptive’ Cyber-AttacksLongNosedGoblin: China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage MalwareNew BeaverTail Malware Variant Linked to Lazarus GroupKimsuky Spreads DocSwap Android Malware via QR Phishing Posing as Delivery AppNorth Korea Steals Over $2bn in Crypto in 2025Amazon Blocked 1,800 Suspected North Korean Scammers Seeking JobsHaotian: The Ultra-Realistic AI Face Swapping Platform Driving Romance ScamsFrance Arrests Latvian for Installing Malware on Italian FerryAustria’s High Court Orders Meta to Change Its Personalized Ad PracticesPa. High Court Rules That Police Can Access Google Searches Without a WarrantTech Provider for NHS England DXS International Confirms Data BreachUniversity of Sydney Suffers Data Breach Exposing Student and Staff InfoHMRC Warns of Over 135,000 Scam ReportsOAuth Device Code Phishing Campaigns Surge Targets Microsoft 365Clop Ransomware Targets Gladinet Centrestack in Data Theft AttacksYour Car’s Web Browser May Be On the Road to Cyber RuinNew Password Spraying Attacks Target Cisco, PAN VPN GatewaysCISA Flags Critical ASUS Live Update Flaw After Evidence of Active ExploitationHPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code ExecutionBlackBerry Lifts Lower End of Annual Revenue Forecast on Cybersecurity Demand
12/17/2025 December 18, 2025December 18, 2025 ~ The Cyber Beat ~ Leave a comment Chinese Ink Dragon Group Hides in European Government NetworksAPT28 Targets Ukrainian UKR-net Users in Long-Running Credential Phishing CampaignNew Spyware Discovered on Belarusian Journalist’s Phone After InterrogationFormer Israeli Prime Minister Bennett’s Telegram Hacked, Not Phone, Despite Iranian Group’s ClaimsMicrosoft Will Finally Kill an Encryption Cipher That Enabled a Decade of Windows HacksBorder Patrol Bets on Small Drones to Expand U.S. Surveillance ReachTrump Targets Defense Giants’ Shareholder Payouts as Cost Overruns Mount, Sources SayBlockchain Company Nomad to Repay Users Under FTC Deal After $186M CyberattackFBI Takes Down Alleged Money Laundering Service for Ransomware GroupsFrance Arrests Suspect Tied to Cyberattack on Interior MinistryTikTok Tracked User’s Grindr Activity in Violation of European Law, Rights Group AllegesPrivacy Advocates See Risk in New Meta Policy That Uses AI Chats to Serve Targeted AdsU.S. Autoparts Maker LKQ Confirms Oracle EBS BreachNew ForumTroll Phishing Attacks Target Russian Scholars Using Fake eLibrary EmailsCritical React2Shell Flaw Exploited in Ransomware AttacksKimwolf Botnet Hijacks 1.8 Million Android TVs, Launches Large-Scale DDoS AttacksCellik Android Malware Builds Malicious Versions From Google Play AppsWhatsApp Device Linking Abused in Account Hijacking AttacksNew “Lies-in-the-Loop” Attack Undermines AI Safety DialogsMotors WordPress Vulnerability Exposes Sites to TakeoverCisco Warns of Unpatched AsyncOS Zero-Day Exploited in AttacksSonicWall Fixes Actively Exploited CVE-2025-40602 in SMA 100 AppliancesZeroday Cloud Hacking Event Awards $320,0000 for 11 Zero DaysThink Like an Attacker: Cybersecurity Tips From a CISORoblox in Talks With Russia to Restore Access After Platform Ban Sparks Backlash
12/16/2025 December 16, 2025December 16, 2025 ~ The Cyber Beat ~ Leave a comment Amazon Warns Russian GRU Hackers Target Western Firms via Edge DevicesCyberattack Disrupts Venezuelan Oil Giant PDVSA’s Operations…Venezuela State Oil Company Blames Cyberattack on U.S. After Tanker SeizureHouse Homeland Security Chairman Keeps Attention on Cyber IssuesSenior Official at Indo-Pacific Command Is Set to Be Trump’s Pick to Lead Cyber Command, NSAReact2Shell Vulnerability Actively Exploited to Deploy Linux BackdoorsPhishing Messages and Social Scams Flood Users Ahead of ChristmasKrebs: Most Parked Domains Now Serving Malicious ContentEuropean Authorities Dismantle Call Center Fraud Ring in UkraineStill Using Windows 10? You’re a Prime Target for Ransomware Now – Unless You Do ThisHacking Group ‘ShinyHunters’ Threatens to Expose Premium Users of Sex Site PornHub…Analytics Provider Mixpanel: We Didn’t Expose You to CrimsCity of Westminster (SC) Missing Public Funds After Cyber Attack, Officials SayMadison Healthcare (MN) Confirms Data Breach After Ransomware AttackUrban VPN Proxy Accused of Harvesting AI Chat ConversationsGhostPoster Attacks Hide Malicious JavaScript in Firefox Addon LogosCompromised IAM Credentials Power a Large AWS Crypto Mining CampaignRogue NuGet Package Poses as Tracer.Fody, Steals Cryptocurrency Wallet DataJumpCloud Windows Agent Flaw Enables Local Privilege EscalationFortinet FortiGate Under Active Attack Through SAML SSO Authentication Bypass
12/15/2025 December 16, 2025December 16, 2025 ~ The Cyber Beat ~ Leave a comment Suspected Russian Hackers Step Up Attacks on U.S. Energy Firms, Research ShowsGerman Parliament Suffers Suspected Cyber Attack During Zelenskyy’s VisitFrench Interior Ministry Confirms Cyberattack on Email ServersGoogle Links More Chinese Hacking Groups to React2Shell AttacksMI6 Chief Warns ‘Front Line Is Everywhere’ and Signals Intent to Pressure PutinU.S. Government Launches Campaign to Hire Engineers for AI, Tech RolesStarlink Claims Chinese Launch Came Within 200 Meters of Broadband SatelliteGoogle’s Turning off Its Dark Web Monitoring Service That Scoured Data Breaches for Your InfoTexas Sues 5 Smart TV Manufacturers Over Data Collection PracticesThird Defendant Pleads Guilty in Fantasy Sports Betting Hack CaseVibe Coding: Innovation Demands Vigilance700Credit Data Breach Impacts 5.8 Million Vehicle Dealership Customers…Nearly 20 Million Affected by Prosper, 700Credit Data BreachesAskul Confirms Theft of 740K Customer Records in Ransomware AttackPornHub Extorted After Hackers Steal Premium Member Activity DataMore Than 238K Hit by Akira-Claimed Fieldtex Product HackOngoing SoundCloud Issue Blocks VPN Users With 403 Server Error…SoundCloud Confirms Breach After Member Data Stolen, VPN Access DisruptedRussian Phishing Campaign Delivers Phantom Stealer Via ISO FilesNew SantaStealer Malware Steals Data From Browsers, Crypto WalletsFeatured Chrome Browser Extension Caught Intercepting Millions of Users’ AI ChatsFreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE
12/12-14/2025 December 14, 2025December 14, 2025 ~ The Cyber Beat ~ Leave a comment React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency MitigationGermany Summons Russian Ambassador Over Cyberattack, Election DisinformationAnnounced Pick for No. 2 at NSA Won’t Get the Job as Another Candidate SurfacesTrump Order on AI May Not Deter State LawsAI Toys for Kids Talk About Sex and Issue Chinese Communist Party Talking Points, Tests ShowU.S. Bill Seeks Phase-Out of Chinese Sensors in Self-Driving Cars, After Space Hack FearsServiceNow in Talks to Acquire Cybersecurity Startup Armis in Potential $7 Billion DealUncle Sam Sues Ex-Accenture Manager Over Army Cloud Security ClaimsCoupang Data Breach Traced to Ex-Employee Who Retained System AccessMKVCinemas Streaming Piracy Service With 142M Visits Shuts DownCanada’s Privacy Regulator to Probe Billboards Equipped With Facial Scanning TechStreisand Effect: Businesses That Pay Ransomware Gangs Are More Likely to Hit the HeadlinesCyberVolk’s Ransomware Debut Stumbles on Cryptography WeaknessMore Than 340,000 Impacted by Cyberattack on Library System of Pierce County (WA)Hamas-Affiliated APT Targeting Government Agencies in the Middle East, MoroccoBeware: PayPal Subscriptions Abused to Send Fake Purchase EmailsFake ‘One Battle After Another’ Torrent Hides Malware in SubtitlesNew Advanced Phishing Kits Use AI and MFA Bypass Tactics to Steal Credentials at ScaleFake OSINT and GPT Utility GitHub Repos Spread PyStoreRAT Malware PayloadsNew React RSC Vulnerabilities Enable DoS and Source Code ExposureCISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV CatalogCISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE AttacksNew Windows RasMan Zero-Day Flaw Gets Free, Unofficial PatchesApple Issues Security Updates After Two WebKit Flaws Found Exploited in the WildMITRE Shares 2025’s Top 25 Most Dangerous Software WeaknessesKali Linux 2025.4 Released With 3 New Tools, Desktop Updates
12/11/2025 December 11, 2025December 11, 2025 ~ The Cyber Beat ~ Leave a comment Hackers Reportedly Breach Developer Involved With Russia’s Military Draft DatabaseOpenAI Enhances Defensive Models to Mitigate Cyber-ThreatsGoogle Ads for Shared ChatGPT, Grok Guides Push macOS Infostealer MalwareRussian Hackers Debut Simple Ransomware Service, but Store Keys in Plain TextLawmaker Calls Facial Recognition on Doorbell Cameras a ‘Privacy Nightmare’Doxers Posing as Cops Are Tricking Big Tech Firms Into Sharing People’s Private DataLastPass Hammered With £1.2M Fine for 2022 Breach FiascoFederal Agencies Now Only Have One More Day to Patch React2Shell BugData Breach at 700Credit Impacts 160,000 MichigandersWIRTE Leverages AshenLoader Sideloading to Install the AshTag Espionage BackdoorNew ConsentFix Attack Hijacks Microsoft Accounts via Azure CLINANOREMOTE Malware Uses Google Drive API for Hidden Control on Windows SystemsMalware Discovered in 19 Visual Studio Code ExtensionsChrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity FlawUnpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active AttacksActive Attacks Exploit Gladinet’s Hard-Coded Keys for Unauthorized Access and Code ExecutionNotepad++ Fixes Flaw That Let Attackers Push Malicious Update Files
12/10/2025 December 10, 2025December 10, 2025 ~ The Cyber Beat ~ Leave a comment React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple SectorsU.S. Says Russia-Backed Hacks Targeted Critical Infrastructure…U.S. Extradites Ukrainian Woman Accused of Hacking Meat Processing Plant for Russia2 Men Linked to China’s Salt Typhoon Hacker Group Likely Trained in a Cisco ‘Academy’U.S. Halts Plans to Sanction Chinese Spy AgencyBritish Government Sanctions Russian and Chinese Groups Over Information WarfareOpenAI Warns New Models Pose ‘High’ Cybersecurity RiskLog4Shell Downloaded 40 Million Times in 2025Nvidia Builds Location Verification Tech That Could Help Fight Chip SmugglingCoupang CEO Resigns Over Data Breach in South KoreaSenators Return to Effort to Boost Cybersecurity for Commercial Satellite IndustryCoalition Adds Deepfake Response to Cyber Insurance Policies GloballyPetco Takes Down Vetco Website After Exposing Customers’ Personal InformationRussia’s Flagship Airline Aeroflot Hacked Through Little-Known Tech Vendor Bakka Soft, According to New ReportClickFix Social Engineering Sparks Rise of CastleLoader AttacksNew Spiderman Phishing Service Targets Dozens of European BanksNew DroidLock Malware Locks Android Devices and Demands a RansomOver 10,000 Docker Hub Images Found Leaking Credentials, Auth KeysWarning: WinRAR Vulnerability CVE-2025-6218 Under Active Attack by Multiple Threat Groups.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDLThree PCIe Encryption Weaknesses Expose PCIe 5.0+ Systems to Faulty Data HandlingGoogle Fixes Zero Click Gemini Enterprise Flaw That Exposed Corporate DataMicrosoft Teams to Warn of Suspicious Traffic With External Domains
12/9/2025 December 10, 2025December 10, 2025 ~ The Cyber Beat ~ Leave a comment React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics…Deploy New EtherRAT MalwareGartner Calls For Pause on AI Browser UseAnalysts Warn of Cybersecurity Risks in Humanoid RobotsHow to Answer the Door When the AI Agents Come KnockingTrump Plans Executive Order Curbing State AI LawCyber Startup Saviynt Raises $700 Million to Secure Identity and AccessCalifornia Man Pleads Guilty to Rico Charges as DOJ Indicts Crypto Theft GangSpain Arrests Teen Who Stole 64 Million Personal Data RecordsSeoul Cyber Investigators Seize Data, Devices From ‘South Korea’s Amazon’ Following Data BreachKhashoggi Widow Files Complaint in France Alleging Saudi Government Infected Devices With SpywaresSpace Bears Ransomware Claims Comcast Data Breach via Contractor Quasar Inc.Storm-0249 Escalates Ransomware Attacks with ClickFix, Fileless PowerShell, and DLL SideloadingSTAC6565 Targets Canada in 80% of Attacks as Gold Blade Deploys QWCrypt RansomwareDeadLock Ransomware Uses BYOVD to Evade Security MeasuresResearchers Find Malicious VS Code, Go, npm, and Rust Packages Stealing Developer DataFortinet Warns of Critical FortiCloud SSO Login Auth Bypass FlawsIvanti Warns of Critical Endpoint Manager Code Execution FlawSAP Fixes Three Critical Vulnerabilities Across Multiple ProductsKrebs: Microsoft Patch Tuesday, December 2025 EditionWindows PowerShell Now Warns When Running Invoke-WebRequest Scripts
12/8/2025 December 9, 2025December 9, 2025 ~ The Cyber Beat ~ Leave a comment MuddyWater Deploys UDPGangster Backdoor in Targeted Turkey-Israel-Azerbaijan CampaignThree Hacking Groups, Two Vulnerabilities and All Eyes on ChinaU.S. to Allow Nvidia H200 Chip Shipments to China, Trump SaysMeta Proposal for Less Data Sharing Is Approved by European CommissionUK Moves to Strengthen Undersea Cable Defenses as Russian Snooping Ramps UpHome Office Kept Police Facial Recognition Flaws to Itself, UK Data Watchdog FumesPoland Arrests Ukrainians Utilizing ‘Advanced’ Hacking Equipment193 Cybercrims Arrested, Accused of Plotting ‘Violence-As-A-Service’Russian Police Bust Bank-Account Hacking Gang That Used NFCGate-Based MalwareRussian Kids Revolt as Kremlin Bans Roblox, Other Popular AppsResearchers Track Dozens of Organizations Affected by React2Shell Compromises Tied to China’s MSSExperts Confirm JS#SMUGGLER Uses Compromised Sites to Deploy NetSupport RATMalicious VSCode Extensions on Microsoft’s Registry Drop InfostealersRansomware Gangs Turn to Shanya EXE Packer to Hide EDR KillersClayRat Android Spyware Expands Capabilities…Malware Families FvncBot, and SeedSnatcher TooTotal Ransomware Payments Surpass $4.5 Billion Since 2013…Over $2.1B From 2022 To 2024Sneeit WordPress RCE Exploited in the Wild While ICTBroadcast Bug Fuels Frost Botnet AttacksUK Intelligence Warns AI ‘Prompt Injection’ Attacks Might Never Go Away
12/5-7/2025 December 8, 2025December 8, 2025 ~ The Cyber Beat ~ Leave a comment China-Linked Warp Panda Targets North American Firms in Espionage CampaignChinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability…React2Shell Flaw Exploited to Breach 30 Orgs, 77K IP Addresses VulnerableCloudflare Restores Services After Minor Dashboard Outage…Cloudflare Blames Today’s Outage on react2shell MitigationsKrebs: SMS Phishers Pivot to Points, Taxes, Fake RetailersKrebs: Drones to Diplomas: How Russia’s Largest Private University is Linked to a $25M Essay MillCrims Using Social Media Images, Videos in ‘Virtual Kidnapping’ ScamsLouvre to Bolster Its Security, Issues €57m Public TenderPortugal Updates Cybercrime Law to Exempt Security ResearchersMaryland Man Sentenced for N. Korea IT Worker Scheme Involving U.S. Government ContractsEU Fines X $140 Million Over Deceptive Blue CheckmarksSolarWinds’ Tim Brown Escaped the SEC. Future Cyber Chiefs Might Not.Pharma Firm Inotiv Discloses Data Breach After Ransomware AttackBarts Health NHS Discloses Data Breach After Oracle Zero-Day HackHuge Trove of Nude Images Leaked by AI Image Generator Startup’s Exposed DatabaseNew Wave of VPN Login Attempts Targets Palo Alto GlobalProtect PortalsZero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted EmailsNovel Clickjacking Attack Relies on CSS and SVGHackers are Exploiting ArrayOS AG VPN Flaw to Plant WebshellsResearchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE AttacksCritical XXE Bug CVE-2025-66516 (CVSS 10.0) Hits Apache Tika, Requires Urgent PatchNCSC’s ‘Proactive Notifications’ Warns Orgs of Flaws in Exposed DevicesDeath to One-Time Text Codes: Passkeys Are the New Hotness in MFAA Tale of Two CISOs: Why An Engineering-Focused CISO Can Be a Liability
12/4/2025 December 4, 2025December 4, 2025 ~ The Cyber Beat ~ Leave a comment Amid Rising Threats, NATO Holds Its Largest-Ever Cyberdefense ExerciseTwins Who Hacked State Dept Hired to Work for Gov Again, Now Charged With Deleting DatabasesUK Sanctions Russia’s GRU Agency and Cyber Spies Over Deadly Nerve Agent AttackFBI Says DC Pipe Bomb Suspect Brian Cole Kept Buying Bomb Parts After January 6Pentagon’s Signalgate Report Finds Pete Hegseth Violated Military PoliciesTaiwan to Ban China’s Xiaohongshu App for One Year on Fraud ConcernsA New Anonymous Phone Carrier Lets You Sign Up With Nothing but a Zip CodeBritish Officials Seek to Expand Facial Recognition Technology UseCybersecurity Startup 7AI Raises $130 Million in Series A FundingI Saw Drone Deliveries Launch in Atlanta – How They Work and Which Cities Are NextCISA Warns of Chinese “BrickStorm” Malware Attacks on VMware ServersPredator Spyware Uses New Infection Vector for Zero-Click AttacksSilver Fox Uses Fake Microsoft Teams Installer to Spread ValleyRAT Malware in ChinaGoldFactory Hits Southeast Asia with Modified Banking Apps Driving 11,000+ InfectionsNew GhostFrame Phishing Framework Hits Over One Million AttacksCritical React, Next.js Flaw Lets Hackers Execute Code on ServersCISA and International Partners Issue Guidance for Secure AI in InfrastructureRussia Blocks FaceTime and Snapchat for Alleged Use by TerroristsRussian Scientist Sentenced to 21 Years on Treason, Cyber Sabotage Charges
12/3/2025 December 3, 2025December 3, 2025 ~ The Cyber Beat ~ Leave a comment French NGO Reporters Without Borders Targeted by Star BlizzardDisinformation and Cyber-Threats Among Top Global Business Exec Concerns‘Exploitation Is Imminent’ as 39 Percent of Cloud Environs Have Max-Severity React HoleUK Ransomware Payment Ban to Come with Exemptions, Security Minster SayIndia Revokes Order to Preload Cybersecurity App on Smartphones After OutcryFDA Scrutiny of WHOOP Signals Challenges for Niche Wearable Device MakersRussia Wants This Mega Missile to Intimidate the West, but It Keeps CrashingSecurity Startup Verkada Hits $5.8 Billion Valuation in Latest Funding Round Led by CapitalGHow Amazon Finds Its Cybersecurity Weak SpotsRussia Blocks Roblox Over Distribution of LGBT “Propaganda”Google Expands Android Scam Protection Feature to Chase, Cash App in U.S.DOJ Takes Down Myanmar Scam Center Website Spoofing TickMill Trading PlatformCanadian Police Department Becomes First to Trial Body Cameras Equipped With Facial Recognition TechnologyFrench DIY Retail Giant Leroy Merlin Discloses a Data BreachUniversity of Phoenix Discloses Data Breach After Oracle HackJapan’s Askul Resumes Limited Online Sales 6 Weeks After Ransomware AttackASUS Listed by Everest Ransomware Group, 1 TB Data StolenFreedom Mobile Discloses Data Breach Exposing Customer DataFintech Firm Marquis Alerts Dozens of U.S. Banks and Credit Unions of a Data Breach After Ransomware Attack…Impacts Over 74 U.S. Banks, Credit UnionsYearn Finance yETH Pool Hit by $9M ExploitBrazil Hit by Banking Trojan Spread via WhatsApp Worm and RelayNFC NFC Relay FraudAisuru Botnet Behind New Record-Breaking 29.7 Tbps DDoS AttackMalicious Rust Crate Delivers OS-Specific Malware to Web3 Developer SystemsCritical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code ExecutionWordPress King Addons Flaw Under Active Attack Lets Hackers Make Admin AccountsMicrosoft Silently Patches Windows LNK Flaw After Years of Active Exploitation
12/1-2/2025 December 2, 2025December 2, 2025 ~ The Cyber Beat ~ Leave a comment India Orders Messaging Apps to Work Only With Active SIM Cards to Prevent Fraud and MisuseShadyPanda’s Seven-Year Campaign Infects 4.3M Chrome and Edge UsersIran-Linked Hackers Hits Israeli Sectors with New MuddyViper Backdoor in Targeted AttacksOfficials Accuse North Korea’s Lazarus of $30 Million Theft From Crypto ExchangeMost Companies Fear State-Sponsored Cyber-Attacks and Want More Government HelpResearchers Capture Lazarus APT’s Remote-Worker Scheme Live on CameraFlock Uses Overseas Gig Workers to Build its Surveillance AIFormer Cyber Spy Raises $60 Million to Fight AI ThreatsCrowdStrike Forecasts Upbeat Quarterly Revenue as AI Adoption Fuels GrowthOkta Projects Strong Quarterly Revenue on Rising Demand for Cybersecurity ToolsAxiado Raises $100 Million for Chip to Save Space, Power in AI Data CentersYour Data Might Determine How Much You Pay for EggsICO Set to Check If Mobile Games Comply with Children’s CodeFTC Settlement Requires Illuminate to Delete Unnecessary Student DataKorea Arrests Suspects Selling Intimate Videos From Hacked IP CamerasEuropol Nukes Cryptomixer Laundering Hub, Seizing €25M in BitcoinIndia Orders Phone Makers to Pre-Install Government App to Tackle Telecom Fraud…Faces BacklashChatGPT Is Down Worldwide, Conversations Dissapeared for UsersMicrosoft Defender Portal Outage Disrupts Threat Hunting AlertsGoogle Deletes X Post After Getting Caught Using a ‘Stolen’ AI Recipe InfographicUniversity of Pennsylvania Joins List of Victims From Clop’s Oracle EBS RaidShai-Hulud 2.0 NPM Malware Attack Exposed Up To 400,000 Dev SecretsSouthold (NY) Police Are Reporting With Pen and Paper After Cyber AttackFake Calendly Invites Spoof Top Brands to Hijack Ad Manager AccountsSmartTube YouTube App for Android TV Breached to Push Malicious UpdateTomiris Shifts to Public-Service Implants for Stealthier C2 in Attacks on Government TargetsGlassWorm Returns with 24 Malicious Extensions Impersonating Popular Developer ToolsNew Android Albiriox Malware Gains Traction in Dark Web MarketsMalicious npm Package Uses Hidden Prompt and Script to Evade AI Security ToolsCritical PickleScan Vulnerabilities Expose AI Model Supply ChainsGoogle Releases Patches for Android Zero-Day Flaws Exploited in the Wild
11/27-30/2025 November 30, 2025November 30, 2025 ~ The Cyber Beat ~ Leave a comment Bloody Wolf Threat Actor Expands Activity Across Central AsiaNorth Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie MalwareChinese Cyberattack Campaign Likely Impacted Every American, Former FBI Official SaysCritical New FBI Warning: This Simple Hack Can Empty Your Bank AccountPoems Can Trick AI Into Helping You Make a NuclearMalicious LLMs Empower Inexperienced Hackers With Advanced ToolsThreat Actors Exploit Calendar Subscriptions for Phishing and Malware DeliveryFCC Warns of Hackers Hijacking Radio Equipment For False AlertsThe Wired Guide to Digital OPSEC for TeensThree Black Friday Scams to Watch Out For This YearTryHackMe Races to Add Women to Christmas Cyber Challenge Roster After BacklashMicrosoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP UpdateGrapheneOS Bails on OVHcloud Over France’s Privacy StanceMan Behind In-Flight Evil Twin WiFi Attacks Gets 7 Years in PrisonPoland Arrested Suspected Russian Citizen for Hacking Local Organizations’ Computer NetworksGreyNoise Launches Free Scanner to Check if You’re Part of a BotnetAsahi Confirms 1.5 Million Customers Affected in Major Cyber-AttackTop South Korean E-Commerce Firm Coupang Apologises Over Massive Data BreachKorean Web Giant Naver Acquired Crypto Exchange Upbit, Which Reported a $30M Heist a Day LaterFrench Football Federation Suffers Data BreachBrit Telco Brsk Confirms Breach as Bidding Begins for 230K+ Customer RecordsData Copied in Kensington and Chelsea Cyber AttackAt Least 35,000 Impacted by Dartmouth College Breach Through Oracle EBS CampaignComputer Services Impacted After Ransomware Attack Hits Golf Manor (OH)OpenAI Warns of Mixpanel Data Breach Impacting API UsersPublic GitLab Repositories Exposed More Than 17,000 SecretsPostHog Admits Shai-Hulud 2.0 Was Its Biggest Ever Security BungleScattered Lapsus$ Hunters Take Aim At Zendesk UsersLegacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI PackagesMS Teams Guest Access Can Remove Defender Protection When Users Join External TenantsCISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEVCalifornia Law Regulating Web Browsers Could Have National Data Privacy Impact, Experts Say
11/26/2025 November 26, 2025November 26, 2025 ~ The Cyber Beat ~ Leave a comment Bug in Jury Systems Used by Several U.S. States Exposed Sensitive Personal DataNew ShadowV2 Botnet Malware Used AWS Outage as a Test OpportunityGainsight CEO Downplays Breach, Says Only a ‘Handful’ of Customers Had Data StolenKrebs: Meet Rey, the Admin of ‘Scattered Lapsus$ Hunters’The Destruction of a Notorious Myanmar Scam Compound Appears to Have Been ‘Performative’House Energy and Commerce Committee Unveils New Draft Children’s Online Safety BillQilin Ransomware Turns South Korean MSP Breach Into 28-Victim ‘Korean Leaks’ Data HeistShai-Hulud v2 Campaign Spreads From npm to Maven, Exposing Thousands of SecretsRomCom Uses SocGholish Fake Update Attacks to Deliver Mythic Agent MalwareChrome Extension Caught Injecting Hidden Solana Transfer Fees Into Raydium SwapsPopular Forge Library Gets Fix for Signature Verification Bypass FlawASUS Warns of New Critical Auth Bypass Flaw in AiCloud Routers
11/25/2025 November 25, 2025November 25, 2025 ~ The Cyber Beat ~ Leave a comment CISA Warns of Active Spyware Campaigns Hijacking High-Value Signal and WhatsApp UsersFBI: Cybercriminals Stole $262M by Impersonating Bank Support TeamsScammers Hacked Her Phone and Stole Thousands – So How Did They Get Her Details?Crime Rings Enlist Hackers to Hijack TrucksICE Offers up to $280 Million to Immigrant-Tracking ‘Bounty Hunter’ FirmsHashJack Attack Shows AI browsers Can Be Fooled With a Simple ‘#’Tor Switches to New Counter Galois Onion Relay Encryption AlgorithmThe Black Friday 2025 Cybersecurity, IT, VPN, & Antivirus DealsRussia Arrests Young Cybersecurity Entrepreneur on Treason ChargesMultiple London Councils ‘Hit by Cyber-Attacks’Georgia Court Filing Organization Warns of Outages After Ransomware AllegationsClop’s Oracle EBS Rampage Reaches Dartmouth CollegeOnSolve CodeRED Cyberattack Disrupts Emergency Alert Systems NationwideSmishing Triad Impersonation Campaigns Expand GloballyYears of JSONFormatter and CodeBeautify Leaks Expose Thousands of Passwords and API KeysNew FlexibleFerret Malware Chain Targets macOS With Go BackdoorToddyCat’s New Hacking Tools Steal Outlook Emails and Microsoft 365 Access TokensJackFix Uses Fake Windows Update Pop-Ups on Adult Sites to Deliver Multiple Stealers
11/24/2025 November 25, 2025November 25, 2025 ~ The Cyber Beat ~ Leave a comment Russian-Linked Malware Campaign Hides in Blender 3D FilesHackers Knock Out Systems at Moscow-Run Postal Operator in Occupied UkraineKrebs: Is Your Android TV Streaming Box Part of a Botnet?Chinese DeepSeek-R1 AI Generates Insecure Code When Prompts Mention Tibet or UyghursUK Privacy Regulator Has Seen ‘Collapse in Enforcement Activity,’ Rights Coalition SaysSoftware Companies Must Be Held Liable for British Economic Security, Say MPsComcast to Pay $1.5 Million U.S. Fine After Vendor Data BreachThis Hacker Conference Installed a Literal Antivirus Monitoring SystemWith AI Reshaping Entry-Level Cyber, What Happens to the Security Talent Pipeline?Harvard University Discloses Data Breach Affecting Alumni, DonorsAI Nude Photo Link Appears on Kansas AG’s Website After Apparent HackFresh ClickFix Attacks Use Windows Update Trick-Pics to Steal CredentialsMalicious Blender Model Files Deliver StealC Infostealing MalwareSecond Sha1-Hulud Wave Affects 25,000+ Repositories via npm Preinstall Credential TheftShadowPad Malware Actively Exploits WSUS Vulnerability for Full System AccessFlaws Expose Risks in Fluent Bit Logging AgentAmazon Is Using Specialized AI Agents for Deep Bug HuntingMicrosoft to Remove WINS Support after Windows Server 2025
11/21-23/2025 November 23, 2025November 23, 2025 ~ The Cyber Beat ~ Leave a comment China-Linked APT31 Launches Stealthy Cyberattacks on Russian IT Using Cloud ServicesMore Companies Are Shifting Workers to Passwordless AuthenticationGoogle Enables Pixel-to-iPhone File Sharing via Quick Share, AirDropPress a Button and This SSD Will Self-Destruct With All Your DataRussia-Linked Crooks Bought a Bank for Christmas to Launder Cyber LootFour Charged Over Alleged Plot to Smuggle Nvidia AI Chips Into China‘Scattered Spider’ Teens Plead Not Guilty to UK Transport HackCrowdStrike Catches Insider Feeding Information to HackersFlock Safety Cameras Used to Monitor Protesters, Rights Group FindsGoogle Begins Showing Ads in AI Mode (AI Answers)A Swath of Bank Customer Data Was Hacked at Real Estate Technology Vendor SitusAMC. The FBI. Is Investigating…Wall Street Banks Scramble to Assess Fallout From Hack of Real-Estate Data FirmCox Enterprises Discloses Oracle E-Business Suite Data BreachIberia Discloses Customer Data Leak After Vendor Security BreachLocal Law Enforcement Agencies in Oklahoma, Massachusetts Responding to Cyber IncidentsShinyHunters ‘Does Not Like Salesforce at All,’ Claims the Crew Accessed Gainsight 3 Months AgoMatrix Push C2: Cybercriminals Exploit Browser Push Notifications to Deliver MalwareGrafana Patches CVSS 10.0 SCIM Flaw Enabling Impersonation and Privilege EscalationCISA Warns of Actively Exploited Critical Oracle Identity Manager Zero-Day Vulnerability
11/20/2025 November 20, 2025November 20, 2025 ~ The Cyber Beat ~ Leave a comment Google Exposes BadAudio Malware Used in APT24 Espionage CampaignsRussia Blacklists S.T.A.L.K.E.R. Game Developer, Accusing It of Aiding Ukraine’s War EffortWith the Rise of AI, Cisco Sounds an Urgent Alarm About the Risks of Aging TechLLM-Generated Malware Is Improving, but Don’t Expect Autonomous Attacks TomorrowCISA Issues New Guidance on Bulletproof Hosting ThreatKrebs: Mozilla Says It’s Finally Done With Two-Faced OnerepThe FCC Is Rolling Back Steps Meant to Stop a Repeat of a Massive Telecom HackU.S. SEC Dismisses Case Against SolarWinds, Top Security OfficerNSO Seeks to Overturn Whatsapp Case, Saying It Is ‘Catastrophic’ for the Spyware MakerFired Techie Admits Sabotaging Ex-Employer, Causing $862K in DamageSamourai Crypto Mixer Founders Sent to Prison for Laundering Over $237 MillionTV Streaming Piracy Service Photocall With 26M Yearly Visits Shut DownSalesforce Investigates Customer Data Theft via Gainsight Breach…Salesforce-Linked Data Breach Claims 200+ Victims, Has ShinyHunters’ Fingerprints All Over ItHacker Claims to Steal 2.3TB Data From Italian Rail Group, AlmaviaGlobalProtect VPN Portals Probed with 2.3 Million Scan SessionsUNC2891 Money Mule Network Reveals Full Scope of ATM Fraud OperationTamperedChef Malware Spreads via Fake Software Installers in Ongoing Global CampaignNew Sturnus Android Trojan Quietly Captures Encrypted Chats and Hijacks DevicesTsundere Botnet Expands Using Game Lures and Ethereum-Based C2 on WindowsNew SonicWall SonicOS Flaw Allows Hackers to Crash FirewallsD-Link Warns of New RCE Flaws in End-of-Life DIR-878 RoutersLawmakers Reintroduce Bill to Bolster Cybersecurity at Securities and Exchange CommissionPrivacy Oversight Board Finds FBI Does Not Buy Real-Time Location Data
11/19/2025 November 20, 2025November 20, 2025 ~ The Cyber Beat ~ Leave a comment China-Linked Operation “WrtHug” Hijacks Thousands of ASUS RoutersCloudflare Shows Internet Outages Aren’t a Matter of If — but When…Krebs: The Cloudflare Outage May Be a Security RoadmapAirline Data Broker Airlines Reporting Corporation to Stop Selling Individuals’ Travel Records to Government AgenciesVaping Is ‘Everywhere’ in Schools—Sparking a Bathroom Surveillance BoomHalf of Ransomware Access Due to Hijacked VPN CredentialsRussian Bulletproof Hosting Provider Sanctioned Over Ransomware TiesCalifornia Man Admits to Laundering Crypto Stolen in $230M HeistCoordinated Europol Operation Disrupts $55m in Cryptocurrency For PiracyPalo Alto Tops Earnings Expectations, Announces Chronosphere AcquisitionWhat AI Bubble? Nvidia’s Strong Earnings Signal There’s More Room to GrowCanadian Privacy Regulators Say Schools Share Blame for PowerSchool HackMajor Russian Insurer VSK Facing Widespread Outages After CyberattackEmail Breach at St. Anthony Hospital (IL) May Have Exposed the Information of More Than 6,600 PeopleEternidade Stealer Trojan Fuels Aggressive Brazil CybercrimePlushDaemon Hackers Unleash New Malware in China-Aligned Spy CampaignsMeet ShinySp1d3r: New Ransomware-as-a-Service Created by ShinyHuntersEdgeStepper Implant Reroutes DNS Queries to Deploy Malware via Hijacked Software UpdatesHackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)W3 Total Cache WordPress Plugin Vulnerable to PHP Command InjectionCISA Gives Gov’t Agencies 7 Days to Patch New Fortinet FlawGoogle Search Is Now Using AI to Create Interactive UI to Answer Your QuestionsThe AI Attack Surface: How Agents Raise the Cyber StakesLawmakers Reintroduce Bill to Bolster Cybersecurity at Securities and Exchange Commission
11/18/2025 November 18, 2025November 18, 2025 ~ The Cyber Beat ~ Leave a comment White House Goes on Cyber OffensiveCISA 2015 Receives Extension, Offering Brief Relief for Cyber Information SharingFCC Looks to Torch Biden-Era Cyber Rules Sparked by Salt Typhoon MessCBO Director Testifies That Hackers Have Been Expelled From Email SystemsMI5 Warns of Chinese Spies Using LinkedIn to Gain Intel on LawmakersIranian Hackers Use DEEPROOT and TWOSTROKE Malware in Aerospace and Defense AttacksA Simple WhatsApp Security Flaw Exposed 3.5 Billion Phone NumbersGenAI and Deepfakes Drive Digital Forgeries and Biometric FraudMicrosoft Teams to Let Users Report Messages Wrongly Flagged as ThreatsMicrosoft Is Turning Windows Into an ‘Agentic OS,’ Starting With the TaskbarMicrosoft to Integrate Sysmon Directly Into Windows 11, Server 2025Windows 11 Gets New Cloud Rebuild, Point-In-Time Restore ToolsMeta Expands WhatsApp Security Research with New Proxy Tool and $4M in Bounties This YearAmazon, Google Named by EU Among ‘Critical’ Tech Providers for Finance IndustryZoomers Are Officially Worse at Passwords Than 80-Year-OldsRussian Suspect Detained in Thailand Is Allegedly Tied to Void Blizzard GroupCloudflare Outage Disrupts X, ChatGPT and Other Parts of the Internet…Cloudflare Says Outage That Hit X, ChatGPT and Other Sites Is ResolvedPro-Russian Group Claims Hits on Danish Party Websites as Voters Head to PollsFrench Agency Pajemploi Reports Data Breach Affecting 1.2m PeopleLG Battery Subsidiary Says Ransomware Attack Targeted Overseas FacilityEverest Ransomware Group Allegedly Exposes 343 GB of Sensitive Data in Major Under Armour BreachMicrosoft Mitigates Record 15.72 Tbps DDoS Attack Driven by AISURU BotnetSneaky 2FA Phishing Kit Adds BitB Pop-ups Designed to Mimic the Browser Address BarNew ShadowRay Attacks Convert Ray Clusters Into Crypto MinersResearchers Detail Tuoni C2’s Role in an Attempted 2025 Real-Estate Cyber IntrusionNew npm Malware Campaign Redirects Victims to Crypto SitesRondoDox Botnet Malware Now Hacks Servers Using XWiki FlawFortinet Warns of New FortiWeb Zero-Day Exploited in AttacksGoogle Issues Security Fix for Actively Exploited Chrome V8 Zero-Day VulnerabilityMicrosoft: Windows 10 KB5072653 OOB Update Fixes ESU Install ErrorsBug Bounty Programs Rise as Key Strategic Security Solutions
11/17/2025 November 17, 2025November 17, 2025 ~ The Cyber Beat ~ Leave a comment Pentagon and Soldiers Let Too Many Secrets Slip on Social Networks, Watchdog SaysHackers Steal Maternity Ward CCTV Videos in India Cybercrime RacketGoogle Is Collecting Troves of Data From Downgraded Nest ThermostatsX Launches Chat, Its New Encrypted DMsUK Twitter Hacker Who Breached Obama’s Account Ordered to Repay $5.4 Million in BitcoinGovini Founder Eric Gillespie’s Lawyer Calls Child Sex Chat ‘Internet Fantasy,’ Not a CrimeDutch Police Seizes 250 Servers Used by “Bulletproof Hosting” ServiceKamel Ghali on What’s ‘Theoretically Possible’ in Car HackingKenyan Gov’t Websites Back Online After Hackers Deface Pages With White Supremacist MessagesPrinceton University Discloses Data Breach Affecting Donors, AlumniPennsylvania AG Confirms Data Breach After INC Ransom AttackEurofiber France Warns of Breach After Hacker Tries to Sell Customer DataDoorDash Email Spoofing Vulnerability Sparks Messy Disclosure Dispute‘Largest-Ever’ Cloud DDoS Attack Pummels Azure With 3.64b Packets per SecondNew EVALUSION ClickFix Campaign Delivers Amatera Stealer and NetSupport RATDragon Breath Uses RONINGLOADER to Disable Security Tools and Deploy Gh0st RAT
11/14-16/2025 November 17, 2025November 17, 2025 ~ The Cyber Beat ~ Leave a comment U.S. Announces New Strike Force Targeting Chinese Crypto ScammersIranian Hackers Launch ‘SpearSpecter’ Spy Operation on Defense & Government TargetsNorth Korean Hackers Turn JSON Services into Covert Malware Delivery ChannelsAnthropic Claims of Claude AI-Automated Cyberattacks Met With DoubtRansomware’s Fragmentation Reaches a Breaking Point While LockBit ReturnsGoogle to Flag Android Apps With Excessive Battery Use on the Play StoreGoogle Backpedals on New Android Developer Registration RulesCivil Society Decries Digital Rights ‘Rollback’ as European Commission Pushes Data Protection ChangesDOJ Issued Seizure Warrant to Starlink Over Satellite Internet Systems Used at Scam CompoundSuspected Russian Hacker Reportedly Detained in Thailand, Faces Possible U.S. ExtraditionFive Plead Guilty to Helping North Koreans Infiltrate U.S. FirmsUncertain Economy Takes Toll on Cybersecurity Teams…CISO Pay Increases 7% As Budget Growth SlowsFBI Flags Scam Targeting Chinese Speakers With Bogus Surgery BillsCyberattack on Russian Port Operator Aimed to Disrupt Coal, Fertilizer ShipmentsDoorDash Hit by New Data Breach in October Exposing User InformationCheckout.com Snubs Hackers After Data Breach, to Donate Ransom InsteadLogitech Leaks Data After Zero-Day AttackDecades-Old ‘Finger’ Protocol Abused in ClickFix Malware AttacksKraken Ransomware Benchmarks Systems for Optimal Encryption ChoiceCISA Warns of Akira Ransomware Linux Encryptor Targeting Nutanix VMsNow-Patched Fortinet FortiWeb Flaw Exploited in Attacks to Create Admin AccountsASUS Warns of Critical Auth Bypass Flaw in DSL Series RoutersResearchers Find Serious AI Bugs Exposing Meta, Nvidia, and Microsoft Inference FrameworksKrebs: Microsoft Patch Tuesday, November 2025 EditionMicrosoft: Windows 10 KB5068781 ESU Update May Fail With 0x800f0922 Errors
11/13/2025 November 13, 2025November 13, 2025 ~ The Cyber Beat ~ Leave a comment Chinese Hackers Used Anthropic’s AI to Automate CyberattacksU.S. Dismisses Chinese Accusation of Extensive LuBian Mining Pool HackTwo Key Cyber Laws Are Back as President Trump Signs Bill to End ShutdownMicrosoft Rolls Out Screen Capture Prevention for Teams UsersGoogle Will Let ‘Experienced Users’ Keep Sideloading Android AppsKrebs: Google Sues to Disrupt Chinese SMS Phishing TriadOperation Endgame Dismantles Rhadamanthys, Venom RAT, and Elysium Botnet in Global CrackdownFBI: Akira Gang Has Received Nearly $250 Million in RansomsNHS Supplier Ends Probe Into Ransomware Attack That Contributed to Patient DeathKazakhstan Becomes Latest Country to Ban ‘LGBT Propaganda’ OnlineKenya Kicks Off ‘Code Nation’ With a Nod to CybersecurityOrgs Move to SSO, Passkeys to Solve Bad Password HabitsWashington Post Data Breach Impacts Nearly 10K Employees, ContractorsPopular Android-Based Photo Frames Download Malware on BootPhishing Campaign Targets Customers of Major Italian Web Hosting ProviderRussian Hackers Create 4,300 Fake Travel Sites to Steal Hotel Guests’ Payment DataFake Chrome Extension “Safery” Steals Ethereum Wallet Seed Phrases Using Sui Blockchain“IndonesianFoods” npm Worm Publishes 44,000 Malicious PackagesOver 67,000 Fake npm Packages Flood Registry in Worm-Like Spam AttackRCE Flaw in ImunifyAV Puts Millions of Linux-Hosted Sites at RiskCISA Flags Critical WatchGuard Fireware Flaw Exposing 54,000 Fireboxes to No-Login AttacksCISA Warns Feds to Fully Patch Actively Exploited Cisco FlawsUbuntu 25.10’s Rusty Sudo Holes Quickly Welded Shut
11/12/2025 November 13, 2025November 13, 2025 ~ The Cyber Beat ~ Leave a comment Australia at Risk of ‘High-Impact Sabotage’ From China, Says Spy ChiefUK Plans Tougher Laws to Protect Public Services From Cyberattacks…British Government Unveils Long-Awaited Landmark Cybersecurity BillArmy Officer With Indo-Pacific Experience Emerges as Potential Cyber Command, NSA PickU.S. Announces ‘Strike Force’ to Counter Southeast Asian Cyber Scams, Sanctions Myanmar Armed GroupLighthouse: This Is the Platform Google Claims Is Behind a ‘Staggering’ Scam Text OperationGerman Extremist Arrested Over Operating Alleged Darknet Assassination MarketplaceDHS Kept Chicago Police Records for Months in Violation of Domestic Espionage RulesSynnovis Notifies of Data Breach After 2024 Ransomware AttackDanaBot Malware Is Back to Infecting Windows After 6-Month BreakAmazon Uncovers Attacks Exploited Cisco ISE and Citrix NetScaler as Zero-Day FlawsWindows 11 Now Supports 3rd-Party Apps for Native Passkey ManagementCybersecurity Firm Deepwatch Lays off Dozens, Citing Move to ‘Accelerate’ AI InvestmentBridging the Skills Gap: How Military Veterans Are Strengthening CybersecurityRussia Imposes 24-Hour Mobile Internet Blackout for Travelers Returning HomeRhadamanthys Infostealer Disrupted as Cybercriminals Lose Server Access
11/10-11/2025 November 11, 2025November 13, 2025 ~ The Cyber Beat ~ Leave a comment China-Aligned UTA0388 Uses AI Tools in Global Phishing CampaignsAndroid Devices Targeted By KONNI APT in Find Hub ExploitationCISA Orders Feds to Patch Samsung Zero-Day Used in Spyware AttacksUK Asks Cyberspies to Probe Whether Chinese Buses Can Be Switched off RemotelyChina Accuses U.S. of Orchestrating $13 Billion Bitcoin HackAmerica’s Cybersecurity Defenses Are CrackingShutdown Deal Would Revive Cyber Intelligence-Sharing BillEU’s Reforms of GDPR, AI Slated by Privacy Activists for ‘Playing Into Big Tech’s Hands’Yanluowang Initial Access Broker Pleaded Guilty to Ransomware Attacks“Bitcoin Queen” Gets 11 Years in Prison for $7.3 Billion Bitcoin ScamMozilla Firefox Gets New Anti-Fingerprinting DefensesData Privacy Whistleblowers Would Get Expanded Protections Under California ProposalFormer Trump Official Named NSO Group Executive ChairmanMicrosoft Releases KB5068781 — The first Windows 10 Extended Security UpdateHitachi-Owned GlobalLogic Admits Data Stolen on 10K Current and Former StaffWakefield & Associates (TN) Announces Breach of Client DataQilin Ransomware Activity Surges as Attacks Target Small BusinessesQuantum Route Redirect PhaaS Targets Microsoft 365 Users WorldwideWhatsApp Malware ‘Maverick’ Hijacks Browser Sessions to Target Brazil’s Biggest BanksLarge-Scale ClickFix Phishing Attacks Target Hotel Systems with PureRAT MalwareAndroid Trojan ‘Fantasy Hub’ Malware Service Turns Telegram Into a Hub for HackersResearchers Detect Malicious npm Package Targeting GitHub-Owned RepositoriesHackers Exploit Critical Flaw in Gladinet’s Triofox File Sharing ProductPopular JavaScript Library Expr-Eval Vulnerable to RCE FlawSAP Fixes Hardcoded Credentials Flaw in SQL Anywhere MonitorSynology Fixes BeeStation Zero-Days Demoed at Pwn2Own IrelandMicrosoft November 2025 Patch Tuesday Fixes 1 Zero-Day, 63 Flaws
11/6-9/2025 November 10, 2025November 10, 2025 ~ The Cyber Beat ~ Leave a comment U.S. Congressional Budget Office (CBO) Hit by Cybersecurity Incident…Congressional Budget Office Implementing New Security Controls Following CyberattackData Breach at Chinese Infosec Firm Reveals Cyber-Weapons and Target ListTrojanized ESET Installers Drop Kalambur Backdoor in Phishing Attacks on UkraineRussian Hacking Group Sandworm Deploys New Wiper Malware in UkrainePreviously Unknown Landfall Spyware Used in 0-Day Attacks on Samsung PhonesScam Ads Are Flooding Social Media. These Former Meta Staffers Have a PlanKrebs: Cloudflare Scrubs Aisuru Botnet from Top Domains ListKrebs: Drilling Down on Uncle Sam’s Proposed TP-Link BanThe Government Shutdown Is a Ticking Cybersecurity Time BombJapan Plans to Revise Foreign Investment Law to Sharpen Security ScreeningMexico City Is the Most Video-Surveilled Metropolis in the AmericasLost iPhone? Don’t Fall for Phishing Texts Saying It Was FoundItalian Communications Executive Reveals He Was Targeted With Paragon SpywareEdtech Company Fined $5.1 Million for Poor Data Security Practices Leading to HackGoogle Launches New Maps Feature to Help Businesses Report Review-Based Extortion Attempts“I Paid Twice” Phishing Campaign Targets Booking.comHow a Ransomware Gang Encrypted Nevada Government’s SystemsWashington Post Confirms Data Breach Linked to Oracle HacksLouvre’s Pathetic Passwords Belong in a Museum, Just Not That OneCybersecurity Investigation Closes Manassas City Public Schools (VA) MondayCybercrims Plant Destructive Time Bomb Malware in Industrial .Net ExtensionsCurly COMrades Hackers Weaponize Windows Hyper-V to Hide Linux VM and Evade EDR DetectionGlassWorm Malware Returns on OpenVSX with 3 New VSCode ExtensionsVibe-Coded Malicious VS Code Extension Found with Built-In Ransomware CapabilitiesClickFix Malware Attacks Evolve with Multi-OS Support, Video TutorialsMicrosoft Uncovers ‘Whisper Leak’ Attack That Identifies AI Chat Topics in Encrypted TrafficMulti-Turn Attacks Expose Weaknesses in Open-Weight LLM ModelsCritical Cisco UCCX Flaw Lets Attackers Run Commands as RootCisco Warns of New Firewall Attack Exploiting CVE-2025-20333 and CVE-2025-20362Dangerous runC Flaws Could Allow Hackers to Escape Docker ContainersQNAP Fixes Seven NAS Zero-Day Flaws Exploited at Pwn2Own
11/5/2025 November 5, 2025November 5, 2025 ~ The Cyber Beat ~ Leave a comment SonicWall Says State-Sponsored Hackers Behind September Security BreachRussia-Linked ‘Curly COMrades’ Turn to Malicious Virtual Machines for Digital Spy CampaignsZohran Mamdani Just Inherited the NYPD Surveillance StateChina Sentences 5 Myanmar Scam Kingpins to DeathOperation Chargeback Uncovers €300m Fraud Scheme in 193 CountriesUK Carriers to Block Spoofed Phone Numbers in Fraud CrackdownTelecoms Cyber Chiefs Adopt Financial Sector’s Model of Collective DefenseGoogle Gets the U.S. Government’s Green Light to Acquire Wiz for $32BArmis Raises $435 Million, Valuing Cybersecurity Startup at $6.1 BillionCyberattack Ate up Profits for First Half of Year, Retailer M&S SaysUNK_SmudgedSerpent Targets Academics With Political LuresHyundai AutoEver America Data Breach Exposes SSNs, Drivers LicensesCentral New Jersey Medical Center Suffers Ransomware AttackUniversity of Pennsylvania Confirms Hacker Stole Data During CyberattackGootloader Malware Is Back With a Bang With New Tricks After 7-Month BreakResearchers Find ChatGPT Vulnerabilities That Let Attackers Trick AI Into Leaking DataGoogle Uncovers PROMPTFLUX Malware That Uses Gemini AI to Rewrite Its Code HourlyAMD Red-Faced Over Random-Number Bug That Kills Cryptographic SecurityCISA Adds Gladinet and CWP Flaws to KEV Catalog Amid Active Exploitation Evidence
11/4/2025 November 4, 2025November 4, 2025 ~ The Cyber Beat ~ Leave a comment Russian Spies Pack Custom Malware Into Hidden VMs on Windows MachinesOperation SkyCloak Deploys Tor-Enabled OpenSSH Backdoor Targeting Defense SectorsData Brokers Selling Location Info That Can Be Used to Track EU Officials, Report FindsEurope Sees Increase in Ransomware, Extortion AttacksA Cybercrime Merger Like No Other — Scattered Spider, LAPSUS$, and ShinyHunters Join ForcesDragonForce Cartel Emerges as Conti-Derived Ransomware ThreatLawmakers Say Stolen Police Logins Are Exposing Flock Surveillance Cameras to HackersFBI Warns of Criminals Posing as ICE, Urges Agents to ID ThemselvesTreasury Sanctions 8 for Laundering North Korea Earnings From Cybercrime, IT Worker SchemeEuropol and Eurojust Dismantle €600 Million Crypto Fraud Network in Global SweepFrench Police Seize €1.6m Amid Crypto Scam Network CrackdownHealth Privacy Bill Seeks Protections for Data Collected by Apps, SmartwatchesData Breach at Major Swedish Software Supplier Impacts 1.5 MillionMedia Giant Nikkei Reports Data Breach Impacting 17,000 PeoplePolish Loan Platform Hacked; Mobile Payment System and Other Businesses DisruptedHundreds of South Gloucestershire Residents’ Details Shared in Data BreachPenn Data Breach Involves Decades of Student and Alumni InformationApache OpenOffice Disputes Data Breach Claims by Akira Ransomware GangMalicious Android Apps on Google Play Downloaded 42 Million TimesMicrosoft Teams Bugs Let Attackers Impersonate Colleagues and Edit Messages UnnoticedHackers Exploit WordPress Plugin Post SMTP to Hijack Admin AccountsHackers Exploit Critical Auth Bypass Flaw in JobMonster WordPress ThemeGoogle’s AI ‘Big Sleep’ Finds 5 New Vulnerabilities in Apple’s Safari WebKitMicrosoft Removing Defender Application Guard From Office
11/3/2025 November 4, 2025November 4, 2025 ~ The Cyber Beat ~ Leave a comment New HttpTroy Backdoor Poses as VPN Invoice in Targeted Cyberattack on South KoreaHomeland Security Biometric Policy for Foreign Travelers Poses Data-Theft RisksHack Exposes Kansas City’s Secret Police Misconduct ListCybercrooks Team Up With Organized Crime to Steal Pricey CargoRansomware Negotiator, Pay Thyself!…U.S. Cybersecurity Experts Indicted for BlackCat Ransomware AttacksMIT Sloan Quietly Shelves AI Ransomware Study After Researcher Calls BSAWS, Nvidia, CrowdStrike Seek Security Startups to Enter the ArenaData Breach Costs Lead to 90% Drop In Operating Profit at South Korean Telecom GiantHackers Are Attacking Britain’s Drinking Water SuppliersHacker Steals Over $120 Million From Balancer DeFi Crypto ProtocolJapanese Retailer Askul Confirms Data Leak After Cyberattack Claimed by Russia-Linked GroupMalicious VSX Extension “SleepyDuck” Uses Ethereum to Keep Its Command Server AliveResearchers Uncover BankBot-YNRK and DeliveryRAT Android Trojans Stealing Financial DataMicrosoft: SesameOp Malware Abuses OpenAI Assistants API in AttacksNew GDI Flaws Could Enable Remote Code Execution in WindowsMicrosoft: Patch for WSUS Flaw Disabled Windows Server HotpatchingCISA and NSA Outline Best Practices to Secure Exchange Servers
10/31-11/2/2025 November 2, 2025November 2, 2025 ~ The Cyber Beat ~ Leave a comment China-Linked Tick Group Exploits Lanscope Zero-Day to Hijack Corporate SystemsNation-State Hackers Deploy New Airstalk Malware in Suspected Supply Chain AttackHow to Hack a Poker Game RevealedSecurity Concerns Persist Over System at Heart of Digital IDKrebs: Alleged Jabber Zeus Coder ‘MrICQ’ in U.S. CustodyAlleged Conti Ransomware Gang Affiliate Appears in Tennessee Court After Ireland ExtraditionRussia Finally Bites the Cybercrooks It Raised, Arresting Suspected Meduza Infostealer DevsFCC Plans Vote to Remove Cyber Regulations Installed After Theft of Trump Info From TelecomsSling TV Settles With California for Allegedly Violating State Consumer Privacy LawHackers Threaten to Leak ‘Woke’ University of Pennsylvania Student DataAttackers Dig Up $11M in Garden Finance Crypto ExploitEclipse Foundation Revokes Leaked Open VSX Tokens Following Wiz DiscoveryRhysida Oysterloader Malvertising Campaign Leverages 40+ Code-Signing CertificatesASD Warns of Ongoing BADCANDY Attacks Exploiting Cisco IOS XE VulnerabilityCISA: High-Severity Linux Flaw Now Exploited by Ransomware GangsChinese Hackers Scanning, Exploiting Cisco ASA Firewalls Used by Governments WorldwideMicrosoft Edge Gets Scareware Sensor for Faster Scam DetectionCybersecurity Earnings Rise as AI Dominates Strategies
10/30/2025 October 30, 2025November 2, 2025 ~ The Cyber Beat ~ Leave a comment Diplomatic Entities in Belgium and Hungary Hacked in China-Linked Spy CampaignLeaker Reveals Which Pixels Are Vulnerable to Cellebrite Phone HackingShadow AI: One In Four Employees Use Unapproved AI Tools, Research FindsLinkedIn Phishing Targets Finance Execs With Fake Board InvitesProton Trains New Service to Expose Corporate Infosec Cover-UpsNASA’s Quiet Supersonic Jet Takes FlightCoalition Calls on FTC to Block Meta From Using Chatbot Interactions to Target Ads, Personalize ContentThreat Actors Utilize AdaptixC2 for Malicious Payload DeliveryCritical Flaws Found in Elementor King Addons Affect 10,000 SitesMassive Surge of NFC Relay Malware Steals Europeans’ Credit CardsMalicious NPM Packages Fetch Infostealer for Windows, Linux, macOSCISA Orders Feds to Patch VMware Tools Flaw Exploited by Chinese HackersCyber Info Sharing ‘Holding Steady’ Despite Lapse in CISA 2015, Official SaysThe AI Trust Paradox: Why Security Teams Fear Automated Remediation
10/29/2025 October 29, 2025October 29, 2025 ~ The Cyber Beat ~ Leave a comment U.S. Company Ribbon Communications With Access to Biggest Telecom Firms Uncovers Breach by Unnamed Nation-State HackersRussian Hackers Target Ukrainian Organizations Using Stealthy Living-Off-the-Land TacticsNew Names Surface for NSA Director, Other Top Jobs at Spy AgencyThe Microsoft Azure Outage Shows the Harsh Reality of Cloud FailuresKrebs: Aisuru Botnet Shifts from DDoS to Residential ProxiesNew AI-Targeted Cloaking Attack Tricks AI Crawlers Into Citing Fake Info as Verified FactsEx-L3Harris Cyber Boss Pleads Guilty to Selling Trade Secrets to Russian FirmCISOs Finally Get a Seat at the Board’s Table — But There’s a Big CatchCanada Says Hacktivists Breached Water and Energy FacilitiesCloud Atlas Hackers Target Russian Agriculture Sector Ahead of Industry ForumEY Exposes 4TB+ SQL Database to Open Internet for Who Knows How LongTata Motors Confirms It Fixed Security Flaws, Which Exposed Company and Customer DataMore Than 10 Million Impacted by Breach of Government Contractor ConduentInvestment Scams Spread Across Asia With International ReachPhantomRaven: Npm Malware Uses Invisible Dependencies to Infect Dozens of PackagesWordPress Security Plugin Exposes Private Data to Site SubscribersWindows 11 KB5067036 Update Rolls out Administrator Protection Feature
10/28/2025 October 28, 2025October 28, 2025 ~ The Cyber Beat ~ Leave a comment SideWinder Adopts New ClickOnce-Based Attack Chain Targeting South Asian DiplomatsResearchers Expose GhostCall and GhostHire: BlueNoroff’s New Malware ChainsNation-State Cyber Ecosystems Weakened by Sanctions, Report RevealsClearview AI Faces Criminal Heat for Ignoring EU Data FinesAI Browsers Face a Security Flaw as Inevitable as Death and TaxesPalo Alto Networks Debuts Automated AI Agents to Fight CyberattacksSublime Raises $150 Million for AI-Powered Email SecurityA Quarter of Scam Victims Have Considered Self-HarmAdvertising Giant Dentsu Reports Data Breach at Subsidiary MerkleNew Android Trojan ‘Herodotus’ Outsmarts Anti-Fraud Systems by Typing Like a HumanNew Atroposia Malware Comes With a Local Vulnerability ScannerNew TEE.Fail Side-Channel Attack Extracts Secrets from Intel and AMD DDR5 Secure EnclavesCISA Warns of Two More Actively Exploited Dassault VulnerabilitiesGoogle Chrome to Warn Users by Default Before Opening Insecure HTTP SitesFCC Adopts New Rule Targeting RobocallsF5 Expects Big Revenue Hit From Recent Cyber Attack Compromising Many
10/27/2025 October 27, 2025October 27, 2025 ~ The Cyber Beat ~ Leave a comment Chatbots Are Pushing Sanctioned Russian PropagandaIran’s School for Cyberspies Could’ve Used a Few More Lessons in Preventing BreachesItalian Spyware Vendor Linked to Chrome Zero-Day AttacksEuropol Warns of Rising Threat From Caller ID Spoofing Attacks‘There Isn’t Really Another Choice:’ Signal Chief Explains Why the Encrypted Messenger Relies on AWSX: Re-Enroll 2FA Security Keys by November 10 or Get Locked OutYou Have One Week to Opt Out or Become Fodder for LinkedIn AI TrainingShaquille O’Neal’s Custom Range Rover Stolen During Transport in Suspected HackHundreds of People With ‘Top Secret’ Clearance Exposed by House Democrats’ WebsiteGoogle Disputes False Claims of Massive Gmail Data BreachSweden’s Power Grid Operator Confirms Data Breach Claimed by Everest Ransomware GangQilin Ransomware Group Publishes Over 40 Cases MonthlyRansomware Profits Drop as Victims Stop Paying HackersQNAP Warns of Critical ASP.NET Flaw in its Windows Backup SoftwareCISA Releases Warning About Windows Server Update Service Bug, Orders Agencies to PatchGoogle Says Everyone Will Be Able to Vibe Code Video Games
10/24-26/2025 October 27, 2025October 27, 2025 ~ The Cyber Beat ~ Leave a comment Blitz Spear Phishing Campaign Targets NGOs Supporting UkraineUN Cybercrime Treaty to Be Signed in Hanoi to Tackle Global OffencesFake LastPass Death Claims Used to Breach Password VaultsMPs Urge Government to Stop Britain’s Phone Theft Wave Through TechHow Hacked Card Shufflers Allegedly Enabled a Mob-Fueled Poker Scam That Rocked the NBAHackers Earn $1,024,750 for 73 Zero-Days at Pwn2Own IrelandEverest Ransomware Says It Stole 1.5m Dublin Airport Passenger RecordsNew LockBit Ransomware Victims Identified by Security ResearchersHackers Steal Discord Accounts With RedTiger-Based InfostealerHackers Launch Mass Attacks Exploiting Outdated WordPress PluginsWindows Server Emergency Patches Fix WSUS Bug with PoC Exploit…Critical WSUS Flaw in Windows Server Now Exploited in Attacks
10/23/2025 October 23, 2025October 23, 2025 ~ The Cyber Beat ~ Leave a comment Lazarus Group’s Operation DreamJob Targets European Defense FirmsPakistani-Linked Hacker Group Targets Indian Government with DeskRATHackers Posing as Kyrgyz Officials Target Russian Agencies in Cyber Espionage CampaignEurope’s Offshore Wind Sector Faces Dilemma Over China’s Grip on SectorUK Cyber Law Delays ‘Deeply Concerning,’ Say MPsThe ‘Universal Browser’ Privacy Browser Has Dangerous Hidden Features23andMe’s Data-Theft Victims Offered ‘Genetic Monitoring’ to Ward Off HackersFormer Polish Official Indicted Over Spyware PurchasePlaytime’s Over: Crooks Swipe Toys R Us Canada Customer Data and Dump It Online“Jingle Thief” Hackers Exploit Cloud Infrastructure to Steal Millions in Gift CardsSpoofed AI Sidebars Can Trick Atlas, Comet Users Into Dangerous ActionsTired of Unpaid Toll Texts? Blame the ‘Smishing Triad’CISA Warns of Lanscope Endpoint Manager Flaw Exploited in AttacksMicrosoft Disables File Explorer Preview for Downloads to Block AttacksGoogle Nukes 3,000 YouTube Videos That Sowed Malware Disguised as Cracked SoftwareTrump Pardons Former Binance CEO After Guilty Plea in Letting Cybercrime Proceeds Flow Through Platform
10/22/2025 October 22, 2025October 22, 2025 ~ The Cyber Beat ~ Leave a comment PhantomCaptcha Campaign Targets Ukraine Relief OrganizationsMuddyWater Uses Compromised Mailboxes in Global Phishing CampaignThe Long Tail of the AWS OutageScattered Lapsus$ Hunters Signal Shift in TacticsUN Cybercrime Pact to Be Signed in Hanoi Raises Hopes, ConcernsKrebs: Canada Fines Cybercrime Friendly Cryptomus $176MJLR Hack UK’s Costliest Ever, Hitting Economy with £1.9bn LossNo, ICE (Probably) Didn’t Buy Guided Missile WarheadsSpaceX Disables More Than 2,000 Starlink Devices Used in Myanmar Scam CompoundsIt Takes Only 250 Documents to Poison Any AI ModelCyber Incidents in Texas, Tennessee and Indiana Impacting Critical Government ServicesRansomware Gang Steals Meeting Videos, Financial Secrets From Fence WholesalerSummit Golf Brands Allegedly Subjected to Massive INC Ransom BreachFake Nethereum NuGet Package Used Homoglyph Trick to Steal Crypto Wallet KeysTARmageddon Flaw in Async-Tar Rust Library Could Enable Remote Code ExecutionHackers Exploiting Critical “SessionReaper” Flaw in Adobe MagentoChinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft’s July PatchPwn2Own Day 2: Hackers Exploit 56 Zero-Days for $790,000
10/21/2025 October 22, 2025October 22, 2025 ~ The Cyber Beat ~ Leave a comment Russian Coldriver Hackers Deploy New ‘NoRobot’, ‘YesRobot’, and ‘MaybeRobot’ Malware‘PassiveNeuron’ Cyber Spies Target Orgs With Custom MalwareLumma Stealer Developers Doxxed in Underground Rival Cybercrime CampaignMeta Rolls Out New Tools to Protect WhatsApp and Messenger Users from ScamsHow Malware Vaccines Could Stop Ransomware’s RampageMedical Specialist Group Fined £100K After Hack Exposed Patient DataCloud Data Firm Veeam to Buy Securiti AI for $1.73 BillionRussia Pressures Apple to Make Russian Search Engines Default on Locally-Sold iPhonesAmazon Says AWS Cloud Service Back to Normal After Outage Disrupts Businesses WorldwideSingapore Officials Impersonated in Sophisticated Investment ScamHackers Used Snappybee Malware and Citrix Flaw to Breach European Telecom NetworkVidar Stealer 2.0 Adds Multi-Threaded Data Theft, Better EvasionPolarEdge Targets Cisco, ASUS, QNAP, Synology Routers in Expanding Botnet CampaignCursor, Windsurf IDEs Riddled with 94+ N-Day Chromium VulnerabilitiesTP-Link Warns of Critical Command Injection Flaw in Omada GatewaysHackers Exploit 34 Zero-Days on the First Day of Pwn2Own Ireland 2025
10/20/2025 October 20, 2025October 20, 2025 ~ The Cyber Beat ~ Leave a comment Amazon’s AWS Struggles to Recover After Major Outage Disrupts Apps, Services Worldwide…What the Huge AWS Outage Reveals About the InternetSalt Typhoon Uses Citrix Flaw in Global Cyber-AttackFlawed Vendor Guidance Exposes Enterprises to Avoidable RiskCyberattacks Cripple Small Businesses, Even When They Aren’t HackedDNS0.EU Private DNS Service Shuts Down Over Sustainability IssuesEvilginx’s Creator Reckons With the Dark Side of Red-Team ToolsJudge Bars NSO From Targeting WhatsApp Users With Spyware, Reduces Damages in Landmark CaseWhat to Know About the Shocking Louvre Jewelry HeistThe Fraudster Behind Steve Ballmer’s NBA NightmareRetail Giant Muji Halts Online Sales After Ransomware Attack on SupplierHome Security Firm Verisure Reports Data Breach at Swedish SubsidiaryJapanese Retailer Askul Halts Online Orders, Shipments After Ransomware Attack131 Chrome Extensions Caught Hijacking WhatsApp Web for Massive Spam CampaignSelf-Spreading GlassWorm Malware Hits OpenVSX, VS Code RegistriesCyber Defenders From All Around Sound the Alarm as F5 Hack Exposes Broad RisksCISA: High-Severity Windows SMB Flaw Now Exploited in Attacks…Five New Exploited Bugs Land in CISA’s Catalog — Oracle and Microsoft Among TargetsMicrosoft Warns of Windows Smart Card Auth Issues After October Updates
10/17-19/2025 October 20, 2025October 20, 2025 ~ The Cyber Beat ~ Leave a comment Hackers Dox Hundreds of DHS, ICE, FBI, and DOJ OfficialsNorth Korean Hackers Combine BeaverTail and OtterCookie into Advanced JS MalwareTeen Tied to Russian Hackers in Dutch Cyber Espionage ProbeOver 266,000 F5 BIG-IP Instances Exposed to Remote AttacksChina Accuses U.S. of Cyberattack on National Time CenterMicrosoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware CampaignEuropol Dismantles SIM Farm Network Powering 49 Million Fake Accounts WorldwideExperian Fined $3.2 Million for Mass-Collecting Personal DataLabor Unions Sue Trump Administration Over Social Media SurveillanceAmerican Airlines Subsidiary Envoy Air Confirms Oracle Data Theft AttackAI Girlfriend Apps Leak Millions of Private ChatsNew .NET CAPI Backdoor Targets Russian Auto and E-Commerce Firms via Phishing ZIPsKrebs: Email Bombs Exploit Lax Authentication in ZendeskGoogle Ads for Fake Homebrew, LogMeIn Sites Push InfostealersTikTok Videos Continue to Push Infostealers, Including Aura Stealer, in ClickFix AttacksResearchers Uncover WatchGuard VPN Bug That Could Let Attackers Take Over DevicesConnectWise Fixes Automate Bug Allowing AiTM Update AttacksMicrosoft Fixes Highest-Severity ASP.NET Core Flaw Ever
10/16/2025 October 16, 2025October 20, 2025 ~ The Cyber Beat ~ Leave a comment Why the F5 Hack Created an ‘Imminent Threat’ for Thousands of Networks…Breach at U.S.-Based Cybersecurity Provider F5 Blamed on China, Say Sources…Cybersecurity Firm F5′S Stock Sinks 10%‘Categorically Untrue’ That China Hacked UK Intelligence Systems, Say OfficialsHacked Airport P.A. Systems Broadcast Anti-Trump and Pro-Hamas MessagesNorth Korean Hackers Use EtherHiding to Hide Malware Inside Blockchain Smart ContractsMicrosoft Disrupts Ransomware Attacks Targeting Teams UsersMicrosoft Debuts Copilot Actions for Agentic AI-Driven Windows TasksRing to Partner With Flock, Giving Law Enforcement Easier Access to Home Security Camera FootageCambodia to Repatriate South Koreans Ensnared by Scam Industry Amid Diplomatic PressureEx-Trump National Security Adviser Bolton Charged With Storing and Sharing Classified InformationVulnerability Scores, Huh, What Are They Good For? Almost NothingNintendo Denies Data Leak After Online ReportsAuction Giant Sotheby’s Says Data Breach Exposed Customer InformationHave I Been Pwned: Prosper Data Breach Impacts 17.6 Million AccountsList of Major Companies Hit by Massive Salesforce Data Breach Continues to GrowDairy Farmers of America Confirms June Cyberattack Leaked Personal DataHackers Abuse Blockchain Smart Contracts to Spread Malware via Infected WordPress SitesMicrosoft Warns of a 32% Surge in Identity Hacks, Mainly Driven by Stolen PasswordsLinkPro Linux Rootkit Uses eBPF to Hide and Activates via Magic TCP PacketsNew Rootkit Campaign Exploits Cisco SNMP Flaw to Gain PersistenceGladinet Fixes Actively Exploited Zero-Day CVE-2025-11371 in File-Sharing SoftwareCISA Flags Adobe AEM Flaw with Perfect 10.0 Score — Already Under Active Attack