ICYMI: 2025-11-13
Latest Headlines
Russian Hackers Create 4,300 Fake Travel Sites to Steal Hotel Guests’ Payment Data
Fake Chrome Extension “Safery” Steals Ethereum Wallet Seed Phrases Using Sui Blockchain
When Attacks Come Faster Than Patches: Why 2026 Will be the Year of Machine-Speed Security
Operation Endgame Dismantles Rhadamanthys, Venom RAT, and Elysium Botnet in Global Crackdown
CISA Flags Critical WatchGuard Fireware Flaw Exposing 54,000 Fireboxes to No-Login Attacks
Over 67,000 Fake npm Packages Flood Registry in Worm-Like Spam Attack
ChatGPT Vulnerability Exposed Underlying Cloud Infrastructure
1,000+ Servers Hit in Law Enforcement Takedown of Rhadamanthys, VenomRAT, Elysium
CISA Updates Guidance on Patching Cisco Devices Targeted in China-Linked Attacks
Tens of Thousands of Malicious NPM Packages Distribute Self-Replicating Worm
NHS Investigating Oracle EBS Hack Claims as Hackers Name Over 40 Alleged Victims
Critical WatchGuard Firebox Vulnerability Exploited in Attacks
Synnovis Confirms Patient Information Stolen in Disruptive Ransomware Attack
Cisco ISE, CitrixBleed 2 Vulnerabilities Exploited as Zero-Days: Amazon
Firefox 145 and Chrome 142 Patch High-Severity Flaws in Latest Releases
Hackers Exploiting RMM Tools LogMeIn and PDQ Connect to Deploy Malware as a Normal Program
New Wave of Steganography Attacks: Hackers Hiding XWorm in PNGs
Google Sues ‘Lighthouse’ Phishing-as-a-service Kit Behind Massive Phishing Attacks
MastaStealer Weaponizes Windows LNK Files, Executes PowerShell Command, and Evades Defender
Microsoft Teams New Premium Feature Blocks Screenshots and Recordings During Meeting
NHS Investigating Oracle EBS Hack Following Cl0p Ransomware Group Claim
Multiple GitLab Vulnerabilities Let Attackers Inject Malicious Prompts to Steal Sensitive Data
Multiple Kibana Vulnerabilities Enables SSRF and XSS Attacks
Microsoft Defender for O365 New Feature Allows Security Teams to Trigger Automated Investigations
CISA warns of Akira ransomware Linux encryptor targeting Nutanix VMs
RCE flaw in ImunifyAV puts millions of Linux-hosted sites at risk
Washington Post data breach impacts nearly 10K employees, contractors
Microsoft rolls out screen capture prevention for Teams users
CISA warns feds to fully patch actively exploited Cisco flaws
Police disrupts Rhadamanthys, VenomRAT, and Elysium malware operations
– MTZ