Cybersecurity Feed
Updated: 16/11/2025, 18:11:19 β€’ Items: 150
Keywords
CVE- ClickFix Malware Leak Attack 0-day zero-day RCE remote code execution privilege escalation LPE kernel exploit PoC exploit weaponized exploit KEV CISA KEV critical vulnerability supply chain attack dependency hijacking DLL sideloading code injection memory corruption SQL injection SSRF XSS sandbox escape hypervisor escape ransomware data exfiltration lateral movement APT nation state Cobalt Strike Sliver Metasploit malware campaign phishing kit loader infostealer rootkit persistence command and control C2 backdoor Fortinet FortiOS FortiGate GlobalProtect Palo Alto Cortex XDR XSIAM Prisma PAN-OS CrowdStrike SentinelOne Mandiant Elastic Security Azure AD KQL Active Directory Kerberos Golden Ticket pass-the-hash Okta identity breach session hijack exploit
SANS Internet Storm Center, InfoCON: green β€” 16/11/2025, 12:57:55

Finger.exe & ClickFix, (Sun, Nov 16th) Click here

Cyber Security News β€” 16/11/2025, 10:04:43

SilentButDeadly – Network Communication Blocker Tool That Neutralizes EDR/AV Click here

BleepingComputer β€” 16/11/2025, 00:16:19

Decades-old β€˜Finger’ protocol abused in ClickFix malware attacks Click here

The Hacker News β€” 15/11/2025, 22:05:00

RondoDox Exploits Unpatched XWiki Servers to Pull More Devices Into Its Botnet CVE-2025-24893 High Click here

BleepingComputer β€” 15/11/2025, 20:39:19

Jaguar Land Rover cyberattack cost the company over $220 million Click here

Cyber Security News β€” 15/11/2025, 20:18:55

Cisco Catalyst Center Vulnerability Let Attackers Escalate Priveleges CVE-2025-20341 Medium Click here

Cyber Security News β€” 15/11/2025, 19:32:00

PoC Exploit Tool Released for FortiWeb WAF Vulnerability Exploited in the Wild CVE-2025-64446 Critical Click here

Cyber Security News β€” 15/11/2025, 18:42:39

Critical pgAdmin4 Vulnerability Lets Attackers Execute Remote Code on Servers CVE-2025-12762 High Click here

Cyber Security News β€” 15/11/2025, 18:13:28

RONINGLOADER Weaponizes Signed Drivers to Disable Defender and Evade EDR Tools Click here

Cyber Security News β€” 15/11/2025, 16:24:35

Hackers are Weaponizing Invoices to Deliver XWorm That Steals Login Credentials High Click here

Cyber Security News β€” 15/11/2025, 16:15:42

First Large-scale Cyberattack Using AI Tools With Minimal Human Input Click here

Cyber Security News β€” 15/11/2025, 15:32:57

Highly Sophisticated macOS DigitStealer Employs Multi-Stage Attacks to Evade detection Click here

SANS Internet Storm Center, InfoCON: green β€” 15/11/2025, 15:14:35

Honeypot: FortiWeb CVE-2025-64446 Exploits, (Sat, Nov 15th) CVE-2025-64446 Click here

Cyber Security News β€” 15/11/2025, 13:13:09

Formbook Malware Delivered Using Weaponized Zip Files and Multiple Scripts High Click here

Cyber Security News β€” 15/11/2025, 12:36:13

A Multi-Stage Phishing Kit Using Telegram to Harvest Credentials and Bypass Automated Detection Click here

BleepingComputer β€” 15/11/2025, 03:48:36

Logitech confirms data breach after Clop extortion attack Click here

darkreading β€” 15/11/2025, 03:12:54

Akira RaaS Targets Nutanix VMs, Threatens Critical Orgs High Click here

darkreading β€” 15/11/2025, 02:23:37

New Security Tools Target Growing macOS Threats Click here

darkreading β€” 15/11/2025, 01:51:52

Hardened Containers Look to Eliminate Common Source of Vulnerabilities Click here

darkreading β€” 15/11/2025, 01:47:24

150,000 Packages Flood NPM Registry in Token Farming Campaign Click here

SecurityWeek β€” 15/11/2025, 01:47:24

Fortinet Confirms Active Exploitation of Critical FortiWeb Vulnerability Critical Click here

BleepingComputer β€” 15/11/2025, 00:01:16

Anthropic claims of Claude AI-automated cyberattacks met with doubt Click here

The Hacker News β€” 14/11/2025, 23:55:00

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels Click here

BleepingComputer β€” 14/11/2025, 22:30:42

Fortinet confirms silent patch for FortiWeb zero-day exploited in attacks Critical Click here

SecurityWeek β€” 14/11/2025, 21:00:00

In Other News: Deepwatch Layoffs, macOS Vulnerability, Amazon AI Bug Bounty High Click here

The Hacker News β€” 14/11/2025, 20:50:00

Researchers Find Serious AI Bugs Exposing Meta, Nvidia, and Microsoft Inference Frameworks High Click here

BleepingComputer β€” 14/11/2025, 20:24:30

US announces new strike force targeting Chinese crypto scammers Click here

The Hacker News β€” 14/11/2025, 20:10:00

Iranian Hackers Launch β€˜SpearSpecter’ Spy Operation on Defense & Government Targets Click here

SANS Internet Storm Center, InfoCON: green β€” 14/11/2025, 19:12:55

Microsoft Office Russian Dolls, (Fri, Nov 14th) Click here

SecurityWeek β€” 14/11/2025, 17:34:12

Akira Ransomware Group Made $244 Million in Ransom Proceeds High Click here

All CISA Advisories β€” 14/11/2025, 17:30:00

CISA Adds One Known Exploited Vulnerability to Catalog CVE-2025-64446 Critical Click here

All CISA Advisories β€” 14/11/2025, 17:30:00

Fortinet Releases Security Advisory for Relative Path Traversal Vulnerability Affecting FortiWeb Products CVE-2025-64446 Critical Click here

The Hacker News β€” 14/11/2025, 16:07:00

Ransomware's Fragmentation Reaches a Breaking Point While LockBit Returns High Click here

The Hacker News β€” 14/11/2025, 15:23:00

Chinese Hackers Use Anthropic's AI to Launch Automated Cyber Espionage Campaign Click here

SecurityWeek β€” 14/11/2025, 15:05:44

Imunify360 Vulnerability Could Expose Millions of Sites to Hacking Click here

The Hacker News β€” 14/11/2025, 14:30:00

Now-Patched Fortinet FortiWeb Flaw Exploited in Attacks to Create Admin Accounts Click here

SecurityWeek β€” 14/11/2025, 13:52:53

Anthropic Says Claude AI Powered 90% of Chinese Espionage Campaign Click here

BleepingComputer β€” 14/11/2025, 08:11:28

Fortinet FortiWeb flaw with public PoC exploited to create admin users Critical Click here

Krebs on Security β€” 13/11/2025, 20:17:22

Google Sues to Disrupt Chinese SMS Phishing Triad Click here

darkreading β€” 13/11/2025, 19:30:00

Coyote, Maverick Banking Trojans Run Rampant in Brazil Click here

Threat Intelligence β€” 13/11/2025, 19:30:00

Time Travel Triage: An Introduction to Time Travel Debugging using a .NET Process Hollowing Case Study Click here

Red Canary β€” 13/11/2025, 18:38:04

Sniffing out TruffleHog in AWS Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Mitsubishi Electric MELSEC iQ-F Series CVE-2025-10259 Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Siemens LOGO! 8 BM Devices CVE-2025-40815 High Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Siemens SICAM P850 family and SICAM P855 family CVE-2023-30901 Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Siemens COMOS CVE-2023-45133 Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Siemens Software Center and Solid Edge CVE-2025-40827 Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Siemens Altair Grid Engine CVE-2025-40760 Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

AVEVA Edge CVE-2025-9317 Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

General Industrial Controls Lynx+ Gateway CVE-2025-55034 Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Rockwell Automation FactoryTalk DataMosaix Private Cloud CVE-2025-11084 Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

CISA and Partners Release Advisory Update on Akira Ransomware High Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

CISA Releases 18 Industrial Control Systems Advisories Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Rockwell Automation AADvance-Trusted SIS Workstation CVE-2024-48510 High Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Brightpick Mission Control / Internal Logic Control CVE-2025-64307 High Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Rockwell Automation Verve Asset Manager CVE-2025-11862 Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Rockwell Automation FactoryTalk Policy Manager CVE-2024-22019 Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Rockwell Automation Studio 5000 Simulation Interface CVE-2025-11696 Medium Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

AVEVA Application Server IDE CVE-2025-8386 Medium Click here

All CISA Advisories β€” 13/11/2025, 17:30:00

Siemens Spectrum Power 4 CVE-2024-32008 Medium Click here

The Hacker News β€” 13/11/2025, 17:00:00

When Attacks Come Faster Than Patches: Why 2026 Will be the Year of Machine-Speed Security Click here

The Hacker News β€” 13/11/2025, 16:46:00

Operation Endgame Dismantles Rhadamanthys, Venom RAT, and Elysium Botnet in Global Crackdown High Click here

Threats - Cisco Talos Blog β€” 13/11/2025, 16:30:38

Unleashing the Kraken ransomware group High Click here

The Hacker News β€” 13/11/2025, 15:40:00

ThreatsDay Bulletin: Cisco 0-Days, AI Bug Bounties, Crypto Heists, State-Linked Leaks and 20 More Stories Click here

Proofpoint News Feed β€” 13/11/2025, 15:21:30

Operation Endgame targets malware networks in global crackdown Click here

SANS Internet Storm Center, InfoCON: green β€” 13/11/2025, 14:17:41

Formbook Delivered Through Multiple Scripts, (Thu, Nov 13th) Click here

The Hacker News β€” 13/11/2025, 12:53:00

CISA Flags Critical WatchGuard Fireware Flaw Exposing 54,000 Fireboxes to No-Login Attacks CVE-2025-9242 Critical Click here

The Hacker News β€” 13/11/2025, 10:28:00

Over 67,000 Fake npm Packages Flood Registry in Worm-Like Spam Attack Click here

Cloud Threat Landscape β€” 13/11/2025, 05:30:00

Cisco ISE Vulnerability Exploited as 0day by APT (Campaign) CVE-2025-20337 Critical Click here

darkreading β€” 13/11/2025, 04:00:39

'CitrixBleed 2' Wreaks Havoc as Zero-Day Bug CVE-2025-5777 Critical Click here

darkreading β€” 13/11/2025, 03:19:46

Google Looks to Dim 'Lighthouse' Phishing-as-a-Service Op Click here

SANS Internet Storm Center, InfoCON: green β€” 13/11/2025, 03:19:32

SmartApeSG campaign uses ClickFix page to push NetSupport RAT, (Wed, Nov 12th) Medium Click here

SOC Prime β€” 12/11/2025, 21:29:52

CVE-2025-62215: Microsoft Patches Windows Kernel Zero-Day Vulnerability Under Active Exploitation CVE-2025-62215 Critical Click here

darkreading β€” 12/11/2025, 21:18:14

Phishing Tool Uses Smart Redirects to Bypass Detection Click here

The Hacker News β€” 12/11/2025, 21:18:00

Google Sues China-Based Hackers Behind $1 Billion Lighthouse Phishing Platform Click here

The Hacker News β€” 12/11/2025, 19:30:00

Amazon Uncovers Attacks Exploited Cisco ISE and Citrix NetScaler as Zero-Day Flaws Critical Click here

All CISA Advisories β€” 12/11/2025, 17:30:00

CISA Adds Three Known Exploited Vulnerabilities to Catalog CVE-2025-9242 Critical Click here

All CISA Advisories β€” 12/11/2025, 17:30:00

Update: Implementation Guidance for Emergency Directive on Cisco ASA and Firepower Device Vulnerabilities CVE-2025-20333 Click here

The Hacker News β€” 12/11/2025, 17:25:00

[Webinar] Learn How Leading Security Teams Reduce Attack Surface Exposure with DASR Click here

The Hacker News β€” 12/11/2025, 16:37:00

Active Directory Under Siege: Why Critical Infrastructure Needs Stronger Security Click here

The Hacker News β€” 12/11/2025, 15:51:00

Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack Critical Click here

Blog β€” 12/11/2025, 11:30:00

November 2025 Patch Tuesday: One Zero-Day and Five Critical Vulnerabilities Among 63 CVEs Critical Click here

darkreading β€” 12/11/2025, 01:53:44

Patch Now: Microsoft Flags Zero-Day & Critical Zero-Click Bugs Critical Click here

The Hacker News β€” 12/11/2025, 00:07:00

WhatsApp Malware 'Maverick' Hijacks Browser Sessions to Target Brazil's Biggest Banks Click here

SOC Prime β€” 11/11/2025, 21:50:09

CVE-2025-12480 Detection: Hackers Exploit the Now-Patched Unauthenticated Access Control Vulnerability in Gladinet’s Triofox CVE-2025-12480 Critical Click here

The Hacker News β€” 11/11/2025, 21:14:00

GootLoader Is Back, Using a New Font Trick to Hide Malware on WordPress Sites Click here

The Hacker News β€” 11/11/2025, 17:28:00

CISO's Expert Guide To AI Supply Chain Attacks Click here

The Hacker News β€” 11/11/2025, 17:14:00

Android Trojan 'Fantasy Hub' Malware Service Turns Telegram Into a Hub for Hackers Click here

darkreading β€” 11/11/2025, 17:10:59

Kimsuky APT Takes Over South Korean Androids, Abuses KakaoTalk Click here

Unit 42 β€” 11/11/2025, 10:00:09

You Thought It Was Over? Authentication Coercion Keeps Evolving Click here

darkreading β€” 11/11/2025, 03:23:50

GlassWorm Returns, Slices Back into VS Code Extensions Click here

The Hacker News β€” 11/11/2025, 02:19:00

Hackers Exploiting Triofox Flaw to Install Remote Access Tools via Antivirus Feature CVE-2025-12480 Click here

The Hacker News β€” 11/11/2025, 01:59:00

Konni Hackers Turn Google’s Find Hub into a Remote Data-Wiping Weapon Click here

darkreading β€” 10/11/2025, 20:46:58

ClickFix Campaign Targets Hotels, Spurs Secondary Customer Attacks Click here

Threat Intelligence β€” 10/11/2025, 19:30:00

No Place Like Localhost: Unauthenticated Remote Access via Triofox Vulnerability CVE-2025-12480 CVE-2025-12480 Critical Click here

The Hacker News β€” 10/11/2025, 18:21:00

⚑ Weekly Recap: Hyper-V Malware, Malicious AI Bots, RDP Exploits, WhatsApp Lockdown and More Critical Click here

All CISA Advisories β€” 10/11/2025, 17:30:00

CISA Adds One Known Exploited Vulnerability to Catalog CVE-2025-21042 Critical Click here

The Hacker News β€” 10/11/2025, 14:41:00

Large-Scale ClickFix Phishing Attacks Target Hotel Systems with PureRAT Malware Click here

The Hacker News β€” 10/11/2025, 14:21:00

GlassWorm Malware Discovered in Three VS Code Extensions with Thousands of Installs Click here

Krebs on Security β€” 09/11/2025, 23:44:40

Drilling Down on Uncle Sam’s Proposed TP-Link Ban Click here

The Hacker News β€” 08/11/2025, 19:59:00

Microsoft Uncovers 'Whisper Leak' Attack That Identifies AI Chat Topics in Encrypted Traffic Click here

darkreading β€” 08/11/2025, 02:45:29

'Landfall' Malware Targets Samsung Galaxy Users Click here

The Hacker News β€” 07/11/2025, 23:30:00

Samsung Mobile Flaw Exploited as Zero-Day to Deploy LANDFALL Android Spyware CVE-2025-21042 Critical Click here

The Hacker News β€” 07/11/2025, 21:37:00

From Log4j to IIS, China’s Hackers Turn Legacy Bugs into Global Espionage Tools Click here

darkreading β€” 07/11/2025, 19:30:00

Ollama, Nvidia Flaws Put AI Infrastructure at Risk High Click here

The Hacker News β€” 07/11/2025, 17:25:00

Hidden Logic Bombs in Malware-Laced NuGet Packages Set to Detonate Years After Installation Click here

Unit 42 β€” 07/11/2025, 16:30:23

LANDFALL: New Commercial-Grade Android Spyware in Exploit Chain Targeting Samsung Devices CVE-2025-21042 Click here

The Hacker News β€” 07/11/2025, 12:18:00

Vibe-Coded Malicious VS Code Extension Found with Built-In Ransomware Capabilities High Click here

darkreading β€” 07/11/2025, 02:21:47

SonicWall Firewall Backups Stolen by Nation-State Actor High Click here

The Hacker News β€” 06/11/2025, 21:01:00

Trojanized ESET Installers Drop Kalambur Backdoor in Phishing Attacks on Ukraine Click here

The Hacker News β€” 06/11/2025, 20:28:00

Cisco Warns of New Firewall Attack Exploiting CVE-2025-20333 and CVE-2025-20362 CVE-2025-20333 Click here

Red Canary β€” 06/11/2025, 20:06:01

A defender’s guide to phishing Click here

All CISA Advisories β€” 06/11/2025, 17:30:00

Ubia Ubox CVE-2025-12636 Click here

All CISA Advisories β€” 06/11/2025, 17:30:00

Advantech DeviceOn/iEdge CVE-2025-64302 High Click here

All CISA Advisories β€” 06/11/2025, 17:30:00

ABB FLXeon Controllers CVE-2024-48842 High Click here

All CISA Advisories β€” 06/11/2025, 17:30:00

CISA Releases Four Industrial Control Systems Advisories Click here

The Hacker News β€” 06/11/2025, 17:10:00

ThreatsDay Bulletin: AI Tools in Malware, Botnets, GDI Flaws, Election Attacks & More Click here

darkreading β€” 06/11/2025, 15:30:00

Multiple ChatGPT Security Bugs Allow Rampant Data Theft Click here

Threat Research & Intelligence Archives - Sekoia.io Blog β€” 06/11/2025, 13:00:00

Phishing Campaigns β€œI Paid Twice” Targeting Booking.com Hotels and Customers Click here

The Hacker News β€” 06/11/2025, 12:52:00

Hackers Weaponize Windows Hyper-V to Hide Linux VM and Evade EDR Detection Click here

darkreading β€” 06/11/2025, 07:30:00

APT 'Bronze Butler' Exploits Zero-Day to Root Japan Orgs CVE-2025-61932 Critical Click here

darkreading β€” 06/11/2025, 03:46:16

Nikkei Suffers Breach Via Slack Compromise Click here

darkreading β€” 05/11/2025, 21:03:28

Operational Technology Security Poses Inherent Risks for Manufacturers Click here

The Hacker News β€” 05/11/2025, 21:03:00

Google Uncovers PROMPTFLUX Malware That Uses Gemini AI to Rewrite Its Code Hourly Click here

darkreading β€” 05/11/2025, 20:05:12

Critical Site Takeover Flaw Affects 400K WordPress Sites Click here

SOC Prime β€” 05/11/2025, 19:55:32

CVE-2025-48593: Critical Zero-Click Vulnerability in Android Enables Remote Code Execution CVE-2025-48593 High Click here

The Hacker News β€” 05/11/2025, 19:34:00

Researchers Find ChatGPT Vulnerabilities That Let Attackers Trick AI Into Leaking Data Click here

darkreading β€” 05/11/2025, 19:30:00

Risk 'Comparable' to SolarWinds Incident Lurks in Popular Software Update Tool Click here

Threat Intelligence β€” 05/11/2025, 19:30:00

GTIG AI Threat Tracker: Advances in Threat Actor Usage of AI Tools Critical Click here

Check Point Research β€” 05/11/2025, 17:34:59

How an Attacker Drained $128M from Balancer Through Rounding Error Exploitation Click here

The Hacker News β€” 05/11/2025, 16:50:00

Mysterious 'SmudgedSerpent' Hackers Target U.S. Policy Experts Amid Iran–Israel Tensions Click here

darkreading β€” 05/11/2025, 15:30:00

Iran's Elusive "SmudgedSerpent' APT Phishes Influential US Policy Wonks Click here

Proofpoint News Feed β€” 05/11/2025, 13:41:37

Iran's Elusive "SmudgedSerpent' APT Phishes Influential US Policy Wonks Click here

Blog β€” 05/11/2025, 11:30:00

CrowdStrike Leads New Evolution of Security Automation with Charlotte Agentic SOAR Click here

Blog β€” 05/11/2025, 11:30:00

CrowdStrike Expands Agentic Security Workforce with New Agents Click here

darkreading β€” 05/11/2025, 07:30:00

Kimsuky Debuts HTTPTroy Backdoor Against South Korea Users Click here

Cloud Threat Landscape β€” 05/11/2025, 05:30:00

China-Linked Actors Target U.S. Policy-Oriented Non-Profit Organisations (Campaign) Click here

darkreading β€” 05/11/2025, 03:01:42

What Makes Ransomware Groups Successful? High Click here

darkreading β€” 05/11/2025, 02:45:42

Europe Sees Increase in Ransomware, Extortion Attacks High Click here

darkreading β€” 04/11/2025, 20:11:11

SesameOp Backdoor Uses OpenAI API for Covert C2 Click here

Business Insights Cybersecurity Blog by Bitdefender β€” 04/11/2025, 19:25:00

Curly COMrades: Evasion and Persistence via Hidden Hyper-V Virtual Machines Click here

Check Point Research β€” 04/11/2025, 19:23:52

Exploiting Microsoft Teams: Impersonation and Spoofing Vulnerabilities Exposed CVE-2024-38197 Click here

SOC Prime β€” 04/11/2025, 18:04:53

CVE-2024-1086 Vulnerability: Critical Privilege Escalation Flaw in Linux Kernel Exploited in the Ransomware Attacks CVE-2024-1086 Critical Click here

All CISA Advisories β€” 04/11/2025, 17:30:00

CISA Adds Two Known Exploited Vulnerabilities to Catalog CVE-2025-11371 Critical Click here

All CISA Advisories β€” 04/11/2025, 17:30:00

Fuji Electric Monitouch V-SFT-6 CVE-2025-54496 High Click here

darkreading β€” 04/11/2025, 03:49:13

Android Malware Mutes Alerts, Drains Crypto Wallets Click here

darkreading β€” 04/11/2025, 00:31:15

On the Road Again: Hackers Hijack Physical Cargo Freight Click here

SentinelLabs - We are hunters, reversers, exploit developers, and tinkerers shedding light on the world of malware, exploits, APTs, and cybercrime across all platforms. β€” 03/11/2025, 19:30:50

LABScon25 Replay | LLM-Enabled Malware In the Wild Critical Click here

darkreading β€” 03/11/2025, 19:30:00

Let's Get Physical: A New Convergence for Electrical Grid Security Click here

Check Point Research β€” 03/11/2025, 19:28:21

Beating XLoader at Speed: Generative AI as a Force Multiplier for Reverse Engineering Critical Click here

↑