ICYMI: 2025-12-29
Latest Headlines
⚡ Weekly Recap: MongoDB Attacks, Wallet Breaches, Android Spyware, Insider Crime & More
MongoDB Vulnerability CVE-2025-14847 Under Active Exploitation Worldwide
27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials
Traditional Security Frameworks Leave Organizations Exposed to AI-Specific Attack Vectors
Top US Accounting Firm Sax Discloses 2024 Data Breach Impacting 220,000
Infostealer Malware Delivered in EmEditor Supply Chain Attack
Hacker Claims Theft of 40 Million Condé Nast Records After Wired Data Leak
Silver Fox Hackers Attacking Indian Entities with Income Tax Phishing Lures
New Phishing Kit with AI-assisted Development Attacking Microsoft Users to Steal Logins
Windows Event Logs Reveal the Messy Reality Behind ‘Sophisticated’ Cyberattacks
2.5 Million+ Malicious Request From Hackers Attacking Adobe ColdFusion Servers
New Vulnerabilities in Bluetooth Headphones Let Hackers Hijack Connected Smartphone
Hacktivist Proxy Operations Emerge as a Repeatable Model of Geopolitical Cyber Pressure
Hacker Threw MacBook in River to Erase Evidence in Coupang Data Breach
Windows LPE Vulnerabilities via Kernel Drivers and Named Pipes Allows Privilege Escalation
MongoBleed Detector Tool Released to Detect MongoDB Vulnerability(CVE-2025-14847)
OpenAI Hardened ChatGPT Atlas Against Prompt Injection Attacks
Coupang to split $1.17 billion among 33.7 million data breach victims
Hacker arrested for KMSAuto malware campaign with 2.8 million downloads
Trust Wallet says 2,596 wallets drained in $7 million crypto theft attack
Korean Air data breach exposes data of thousands of employees
Microsoft Copilot is rolling out GPT 5.2 as “Smart Plus” mode
Fortinet warns of 5-year-old FortiOS 2FA bypass still exploited in attacks
– MTZ