ICYMI: 2025-12-04
Latest Headlines
Silver Fox Uses Fake Microsoft Teams Installer to Spread ValleyRAT Malware in China
ThreatsDay Bulletin: Wi-Fi Hack, npm Worm, DeFi Theft, Phishing Blasts— and 15 More Stories
GoldFactory Hits Southeast Asia with Modified Banking Apps Driving 11,000+ Infections
Record 29.7 Tbps DDoS Attack Linked to AISURU Botnet with up to 4 Million Infected Hosts
Cloudflare Has Blocked 416 Billion AI Bot Requests Since July 1
FBI Says DC Pipe Bomb Suspect Brian Cole Kept Buying Bomb Parts After January 6
A New Anonymous Phone Carrier Lets You Sign Up With Nothing but a Zip Code
The Louisiana Department of Wildlife and Fisheries Is Detaining People for ICE
India Rolls Back Order to Preinstall Cybersecurity App on Smartphones
Cybersecurity M&A Roundup: 30 Deals Announced in November 2025
Inotiv Says Personal Information Stolen in Ransomware Attack
Global Cyber Agencies Issue AI Security Guidance for Critical Infrastructure OT
Personal Information Compromised in Freedom Mobile Data Breach
React2Shell: In-the-Wild Exploitation Expected for Critical React Vulnerability
CISA and NSA Warns of BRICKSTORM Malware Attacking VMware ESXi and Windows Environments
Prompt Injection Flaw in GitHub Actions Hits Fortune 500 Firms
SpyCloud Data Shows Corporate Users 3x More Likely to Be Targeted by Phishing Than by Malware
New SVG Clickjacking Attack Let Attackers Create Interactive Clickjacking Attacks
CISA Warns of OpenPLC ScadaBR File Upload Vulnerability Exploited in Attacks
Arizona Attorney General Suses Chinese E-commerce Retailer Temu Over Data Theft Claims
Lazarus Group’s IT Workers Scheme Hacker Group Caught Live On Camera
Threat Actors Leveraging Foxit PDF Reader to Gain System Control and Steal Sensitive Data
New Phishing Attack Mimic as Income Tax Department of India Delivers AsyncRAT
PickleScan 0-Day Vulnerabilities Enable Arbitrary Code Execution via Malicious PyTorch Models
Hackers are exploiting ArrayOS AG VPN flaw to plant webshells
NCSC’s ‘Proactive Notifications’ warns orgs of flaws in exposed devices
Predator spyware uses new infection vector for zero-click attacks
Russia blocks FaceTime and Snapchat for alleged use by terrorists
CISA warns of Chinese “BrickStorm” malware attacks on VMware servers
Contractors with hacking records accused of wiping 96 govt databases
Critical React, Next.js flaw lets hackers execute code on servers
How strong password policies secure OT systems against cyber threats
Microsoft 365 license check bug blocks desktop app downloads
– MTZ