CYBERSIXT
Signal Over Noise
← November 2025
December 2025
January 2026 →
Keyword
From
To
Search
Clear
Sun
Mon
Tue
Wed
Thu
Fri
Sat
1
47
47 items
1
47
John P. Meehan Agency was hacked in July 2024. Affected customers were first finding out in November 2025.
Ransomware blog claims New Horizons Medical has been attacked
Tomiris Unleashes 'Havoc' With New Tools, Tactics
+44 more
2
57
57 items
2
57
Update on Dos-OP’s report on Nova RaaS
Iran's 'MuddyWater' Levels Up With MuddyViper Backdoor
U.S. CISA adds Android Framework flaws to its Known Exploited Vulnerabilities catalog
+54 more
3
59
59 items
3
59
Admins and defenders gird themselves against maximum-severity server vulnerability
King Addons flaw lets anyone become WordPress admin
Virginia Twins Arrested for Conspiring to Destroy Government Databases
+56 more
4
54
54 items
4
54
How Agentic AI Can Boost Cyber Defense
SMS Phishers Pivot to Points, Taxes, Fake Retailers
CISA Warns of 'Ongoing' Brickstorm Backdoor Attacks
+51 more
5
46
46 items
5
46
New Prompt Injection Attack Vectors Through MCP Sampling
Rust Code Delivers Better Security, Also Streamlines DevOps
UK Government Considers Computer Misuse Act Revision
+43 more
6
9
9 items
6
9
Attackers launch dual campaign on GlobalProtect portals and SonicWall APIs
Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks
Drones to Diplomas: How Russia’s Largest Private University is Linked to a $25M Essay Mill
+6 more
7
8
8 items
7
8
They’ve escaped a lot of media attention, but Anubis RaaS is a threat to the medical sector
“In the most expedient time possible…”
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 74
+5 more
8
49
49 items
8
49
Apache Issues Max-Severity Tika CVE After Patch Miss
Exploitation Activity Ramps Up Against React2Shell
Chinese Malware Delivery Domains Part IV
+46 more
9
60
60 items
9
60
Microsoft Patch Tuesday, December 2025 Edition
Microsoft Fixes Exploited Zero Day in Light Patch Tuesday
Ivanti warns customers of new EPM flaw enabling remote code execution
+57 more
10
58
58 items
10
58
Fortinet fixed two critical authentication-bypass vulnerabilities
Storm-0249 Abuses EDR Processes in Stealthy Attacks
ClickFix Style Attack Uses Grok, ChatGPT for Malware Delivery
+55 more
11
56
56 items
11
56
Critical Gogs zero-day under attack, 700 servers hacked
GeminiJack zero-click flaw in Gemini Enterprise allowed corporate data exfiltration
Attackers Exploited Gogs Zero-Day Flaw for Months
+53 more
12
50
50 items
12
50
Doxers Posing as Cops Are Tricking Big Tech Firms Into Sharing People’s Private Data
Notepad++ fixed updater bugs that allowed malicious update hijacking
Virginia Urology Silent on Possible Data Breach as Purported Patient Data Begins to Leak
+47 more
13
10
10 items
13
10
Germany calls in Russian Ambassador over air traffic control hack claims
CISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE Attacks
U.S. CISA adds Google Chromium and Sierra Wireless AirLink ALEOS flaws to its Known Exploited Vulnerabilities catalog
+7 more
14
4
4 items
14
4
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 75
Security Affairs newsletter Round 554 by Pierluigi Paganini – INTERNATIONAL EDITION
Askul says 740,000 sets of data breached in cyberattack
+1 more
15
51
51 items
15
51
How Cyber Insurance MGAs Shape Policies for Evolving Cyber Risks
Apple Patches More Zero-Days Used in 'Sophisticated' Attack
Microsoft will finally kill obsolete cipher that has wreaked decades of havoc
+48 more
16
51
51 items
16
51
A cyber attack hit Petróleos de Venezuela (PDVSA) disrupting export operations
The APT35 Dump Episode 4: Leaking The Backstage Pass To An Iranian Intelligence Operation
Venezuelan Oil Company Downplays Alleged US Cyberattack
+48 more
17
55
55 items
17
55
Critical Fortinet Flaws Under Active Attack
In Cybersecurity, Claude Leaves Other LLMs in the Dust
'Cellik' Android RAT Leverages Google Play Store
+52 more
18
47
47 items
18
47
SonicWall Edge Access Devices Hit by Zero-Day Attacks
Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw
INE Security Expands Across Middle East and Asia to Accelerate Cybersecurity Upskilling
+44 more
19
58
58 items
19
58
Code Orange: Fail Small — Our resilience plan following recent incidents
Cisco VPNs, Email Services Hit in Separate Threat Campaigns
Thailand Conference Launches International Initiative to Fight Online Scams
+55 more
20
13
13 items
20
13
ATM Jackpotting ring busted: 54 indicted by DoJ
ANNOUNCE: Survey on threats experienced by journalists and security researchers
Ukrainian National Pleads Guilty to Conspiracy to Use Nefilim Ransomware to Attack Companies in the United States and Other Countries
+10 more
21
4
4 items
21
4
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 76
Security Affairs newsletter Round 555 by Pierluigi Paganini – INTERNATIONAL EDITION
Massive Android botnet Kimwolf infects millions, strikes with DDoS
+1 more
22
42
42 items
22
42
Romanian Waters confirms cyberattack, critical water operations unaffected
Threat Actors Exploit Zero-Day in WatchGuard Firebox Devices
Uzbek Users Under Attack by Android SMS Stealers
+39 more
23
51
51 items
23
51
Red Hat GitLab breach exposes data of 21,000 Nissan customers
Industry Continues to Push Back on HIPAA Security Rule Overhaul
ServiceNow Buys Armis for $7.75B, Gets 'AI Control Tower'
+48 more
24
30
30 items
24
30
FBI seized ‘web3adspanels.org’ hosting stolen logins
Singing River Health System temporarily shut down access to patient medical records
New MacSync macOS Stealer Uses Signed App to Bypass Apple Gatekeeper
+27 more
25
26
26 items
25
26
Five-year-old Fortinet FortiOS SSL VPN vulnerability actively exploited
Hackers Unredact Epstein Files — What You Need To Know
Pen testers accused of ‘blackmail’ after reporting Eurostar chatbot flaws
+23 more
26
21
21 items
26
21
Trust Wallet warns users to update Chrome extension after $7M security loss
Pro-Russian group Noname057 claims cyberattack on La Poste services
Trust Wallet Chrome Extension Breach Caused $7 Million Crypto Loss via Malicious Code
+18 more
27
4
4 items
27
4
OrthopedicsNY fined $500K by NYS for patient data breach
LangChain core vulnerability allows prompt injection and data exposure
NPM package with 56,000 downloads compromises WhatsApp accounts
+1 more
28
15
15 items
28
15
Hacker Who Stole Millions in Seconds Finally Caught
Condé Nast faces major data breach: 2.3M WIRED records leaked, 40M more at risk
Steward Health Care insurance mess leaves doctors liable for settlements
+12 more
29
39
39 items
29
39
Romania’s Oltenia Energy Complex suffers major ransomware attack
Happy 16th Birthday, KrebsOnSecurity.com!
Top US Accounting Firm Sax Discloses 2024 Data Breach Impacting 220,000
+36 more
30
28
28 items
30
28
Coupang announces $1.17B compensation plan for 33.7M data breach victims
CSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code Execution
Mustang Panda deploys ToneShell via signed kernel-mode rootkit driver
+25 more
31
27
27 items
31
27
Sunken Ships: Will Orgs Learn From Ivanti EPMM Attacks?
Trust Wallet Chrome Extension Hack Drains $8.5M via Shai-Hulud Supply Chain Attack
Attorney General James Secures $500,000 from Capital Region Health Care Provider for Failing to Protect Patients’ Information
+24 more
Results
No results. Try different dates or keywords.
← Back
Use
↑
/
↓
or
j
/
k
to move
X
Pick an article on the left.