ICYMI: 2025-12-05
Latest Headlines
Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails
Critical XXE Bug CVE-2025-66516 (CVSS 10.0) Hits Apache Tika, Requires Urgent Patch
Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability
Intellexa Leaks Reveal Zero-Days and Ads-Based Vector for Predator Spyware Delivery
CISA Reports PRC Hackers Using BRICKSTORM for Long-Term Access in U.S. Systems
JPCERT Confirms Active Command Injection Attacks on Array AG Gateways
Huge Trove of Nude Images Leaked by AI Image Generator Startup’s Exposed Database
‘Signalgate’ Inspector General Report Wants Just One Change to Avoid a Repeat Debacle
In Other News: X Fined €120 Million, Array Flaw Exploited, New Iranian Backdoor
Imper.ai Emerges From Stealth Mode With $28 Million in Funding
US Organizations Warned of Chinese Malware Used for Long-Term Persistence
Lumia Security Raises $18 Million for AI Security and Governance
Helmet Security Emerges From Stealth Mode With $9 Million in Funding
Criminal IP to Host Webinar: Beyond CVEs – From Visibility to Action with ASM
Netflix Acquires Warner Bros. Studios and HBO in Landmark $82.7 Billion Megadeal
Threat Actors Deploying CoinMiner Malware via USB Drives Infecting Workstations
MuddyWater Hackers Using UDPGangster Backdoor to Attack Windows Systems Evading Network Defenses
Cloudflare Outage Traced to Emergency React2Shell Patch Deployment
AWS Execution Roles Enable Subtle Privilege Escalation in SageMaker and EC2
Hackers Using CastleRAT Malware to Attack Windows Systems and Gain Remote Access
Russian Hackers Spoof European Events in Targeted Phishing Attacks
Critical Apache Tika Core Vulnerability Exploited by Uploading Malicious PDF
Barts Health NHS discloses data breach after Oracle zero-day hack
FBI warns of virtual kidnapping scams using altered social media photos
Pharma firm Inotiv discloses data breach after ransomware attack
Critical React2Shell flaw actively exploited in China-linked attacks
Cloudflare down, websites offline with 500 Internal Server Error
– MTZ