ICYMI: 2025-12-18
Latest Headlines
China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware
HPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code Execution
ThreatsDay Bulletin: WhatsApp Hijacks, MCP Leaks, AI Recon, React2Shell Exploit and 15 More Stories
North Korea-Linked Hackers Steal $2.02 Billion in 2025, Leading Global Crypto Theft
Kimsuky Spreads DocSwap Android Malware via QR Phishing Posing as Delivery App
CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation
Cisco Warns of Active Attacks Exploiting Unpatched 0-Day in AsyncOS Email Security Appliances
ICE Seeks Cyber Upgrade to Better Surveil and Investigate Its Employees
The Ultra-Realistic AI Face Swapping Platform Driving Romance Scams
UEFI Vulnerability in Major Motherboards Enables Early-Boot Attacks
HPE Patches Critical Flaw in IT Infrastructure Management Software
113,000 Impacted by Data Breach at Virginia Mental Health Authority
France Probes ‘Foreign Interference’ After Remote Control Malware Found on Passenger Ferry
China-Linked Hackers Exploiting Zero-Day in Cisco Security Gear
New Udados Botnet Launches Massive HTTP Flood DDoS Attacks Targeting Tech Sector
CISA Adds ASUS Embedded Malicious Code Vulnerability to KEV List Following Active Exploitation
HPE OneView Software Vulnerability Let Attackers Execute Remote Code
Cisco Unified Contact Center Express Vulnerabilities Enables Remote Code Execution Attacks
Microsoft Confirms Recent Windows 11 24H2/25H2 and Server 2025 Update Breaks RemoteApp Connections
RansomHouse RaaS Service Upgraded with Double Extortion Strategy that Steals and Encrypt Data
Researchers Uncovered New Lazarus and Kimsuky Infrastructure with Active Tools and Tunnelling Nodes
Hackers Hijacking VNC Connections to Gain Access to OT Control Devices in Critical Infrastructure
Chinese-based Ink Dragon Compromises Asia and South America into European Government Networks
University of Sydney suffers data breach exposing student and staff info
Clop ransomware targets Gladinet CentreStack in data theft attacks
New password spraying attacks target Cisco, PAN VPN gateways
US seizes E-Note crypto exchange for laundering ransomware payments
France arrests Latvian for installing malware on Italian ferry
Microsoft: Recent Windows updates break RemoteApp connections
– MTZ