IT Security News Daily Summary 2025-12-18

169 posts were published in the last hour

• 22:32 : RegScale Open Sources OSCAL Hub to Further Compliance-as-Code Adoption
• 22:2 : Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw
• 21:2 : HPE OneView Vulnerability Allows Remote Code Execution Attacks
• 21:2 : APT35 Leak Reveals Spreadsheets Containing Domains, Payments, and Server Information
• 21:2 : Beware of Malicious Scripts in Weaponized PDF Purchase Orders
• 21:2 : New Lazarus and Kimsuky Infrastructure Discovered with Active Tools and Tunneling Nodes
• 21:2 : RansomHouse RaaS Enhances Double Extortion with Data Theft and Encryption
• 21:2 : INE Security Expands Across Middle East and Asia to Accelerate Cybersecurity Upskilling
• 20:31 : Your car’s web browser may be on the road to cyber ruin
• 20:31 : Client ID Metadata Documents (CIMD): The Future of MCP Authentication
• 20:5 : IT Security News Hourly Summary 2025-12-18 21h : 7 posts
• 20:3 : FBI Confirms 630 Million Stolen Passwords
• 20:3 : Stolen IAM Drives AWS Crypto Mining
• 20:3 : 20 Million Hit By Prosper Data Breach
• 20:3 : Cyber Briefing: 2025.12.18
• 20:3 : New SantaStealer Malware Targets Data
• 19:31 : Cybersecurity Marketing Trends for 2026
• 19:31 : ICE Seeks Cyber Upgrade to Better Surveil and Investigate Its Employees
• 19:2 : Adios 2025, you won’t be missed
• 19:2 : Lazarus Group Embed New BeaverTail Variant in Developer Tools
• 19:2 : DIG AI: Uncensored Darknet AI Assistant at the Service of Criminals and Terrorists
• 19:2 : Crypto crooks co-opt stolen AWS creds to mine coins
• 18:32 : New Udados Botnet Launches Massive HTTP Flood DDoS Attacks Targeting Tech Sector
• 18:32 : TruffleNet and Cloud Abuse at Scale: An Identity Architecture Failure
• 18:2 : The Ultra-Realistic AI Face Swapping Platform Driving Romance Scams
• 18:2 : Salt Security Unveils its “12 Months of Innovation”
• 18:2 : Kim’s crypto thieving reached a record $2B in 2025
• 18:2 : New Microsoft e-book: 3 reasons point solutions are holding you back
• 18:2 : China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware
• 17:32 : Iranian APT ‘Prince of Persia’ Resurfaces With New Tools and Targets
• 17:32 : Siemens Interniche IP-Stack
• 17:32 : Schneider Electric EcoStruxure Foxboro DCS Advisor
• 17:32 : National Instruments LabView
• 17:32 : Inductive Automation Ignition
• 17:32 : Advantech WebAccess/SCADA
• 17:32 : Why AppSec and Network Risk Management Must Be Unified in the Modern Enterprise
• 17:32 : Trusted Browser Extensions Turn Rogue in ShadyPanda Malware Campaign Affecting Chrome and Edge
• 17:32 : AI in Cybercrime: What’s Real, What’s Exaggerated, and What Actually Matters
• 17:5 : IT Security News Hourly Summary 2025-12-18 18h : 3 posts
• 17:2 : Someone Boarded a Plane at Heathrow Without a Ticket or Passport
• 16:31 : Tech provider for NHS England confirms data breach
• 16:31 : Surge of credential-based hacking targets Palo Alto Networks GlobalProtect
• 16:2 : OpenAI Warns Future AI Models Could Increase Cybersecurity Risks and Defenses
• 16:2 : OAuth Device Code Phishing Campaigns Surge Targets Microsoft 365
• 16:2 : Cisco says China-linked hackers exploiting insecure setting in security products
• 15:32 : Why Your UEBA Isn’t Working (and How to Fix It)
• 15:32 : RansomHouse RaaS Service Upgraded with Double Extortion Strategy that Steals and Encrypt Data
• 15:32 : Microsoft Confirms Recent Windows 11 24H2/25H2 and Server 2025 Update Breaks RemoteApp Connections
• 15:32 : Cisco Unified Contact Center Express Vulnerabilities Enables Remote Code Execution Attacks
• 15:32 : HPE OneView Software Vulnerability Let Attackers Execute Remote Code
• 15:32 : CISA Adds ASUS Embedded Malicious Code Vulnerability to KEV List Following Active Exploitation
• 15:32 : HPE Patches Critical Flaw in IT Infrastructure Management Software
• 15:32 : UEFI Vulnerability in Major Motherboards Enables Early-Boot Attacks
• 15:32 : Crypto theft in 2025: North Korean hackers continue to dominate
• 15:32 : HPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code Execution
• 15:2 : AI Agent Attacks in Q4 2025 Signal New Risks for 2026
• 15:2 : Another bad week for SonicWall as SMA 1000 zero-day under active exploit
• 14:32 : Check Point Infinity Global Services Launches First AI Security Training Courses
• 14:32 : The Power of Large Language Models for Cybersecurity
• 14:32 : Malicious Software Compromises 26000 Devices Across New Zealand
• 14:31 : India Witnesses Sharp Surge in Cybercrime, Fraud Dominates NCRB 2023 Report
• 14:31 : Clipping Scripted Sparrow’s wings: Tracking a global phishing ring
• 14:31 : Apiiro unveils AI SAST built on deep code analysis to eliminate false positives
• 14:5 : IT Security News Hourly Summary 2025-12-18 15h : 12 posts
• 14:2 : From the Hill: The AI-Cybersecurity Imperative in Financial Services
• 14:2 : Researchers Uncovered New Lazarus and Kimsuky Infrastructure with Active Tools and Tunnelling Nodes
• 14:2 : The ghosts of WhatsApp: How GhostPairing hijacks accounts
• 14:2 : FBI dismantles alleged $70M crypto laundering operation
• 14:2 : What the Latest OpenAI Security Breach Reveals About the State of AI Protection
• 14:2 : Microsoft 365 users targeted in device code phishing attacks
• 14:2 : AppGate extends zero trust to secure AI workloads with Agentic AI Core Protection
• 13:32 : Chrome extension slurps up AI chats after users installed it for privacy
• 13:32 : NHS tech supplier probes cyberattack on internal systems
• 13:31 : CISA Warns of Exploited Flaw in Asus Update Tool
• 13:31 : North Korea-Linked Hackers Steal $2.02 Billion in 2025, Leading Global Crypto Theft
• 13:31 : ThreatsDay Bulletin: WhatsApp Hijacks, MCP Leaks, AI Recon, React2Shell Exploit and 15 More Stories
• 13:2 : Why Organizations Need to Modify Their Cybersecurity Strategy for 2026
• 13:2 : GhostPairing Attack: How Hackers Secretly Hijack WhatsApp
• 13:2 : North Korea Steals Over $2bn in Crypto in 2025
• 12:31 : Agentic AI in Cloud-Native Systems: Security and Architecture Patterns
• 12:31 : The Case for Dynamic AI-SaaS Security as Copilots Scale
• 12:3 : FBI Seizes Crypto Laundering Hub E-Note Linked to Russian Admin
• 12:3 : Chinese-based Ink Dragon Compromises Asia and South America into European Government Networks
• 12:3 : Hackers Hijacking VNC Connections to Gain Access to OT Control Devices in Critical Infrastructure
• 12:3 : React2Shell exploitation spreads as Microsoft counts hundreds of hacked machines
• 12:3 : New BeaverTail Malware Variant Linked to Lazarus Group
• 11:32 : Microsoft December Update Breaks Critical IIS Servers
• 11:32 : 113,000 Impacted by Data Breach at Virginia Mental Health Authority
• 11:32 : The Biggest Cyber Stories of the Year: What 2025 Taught Us
• 11:32 : 2025 Federal Retrospective: The Year of Resilient Innovation
• 11:5 : IT Security News Hourly Summary 2025-12-18 12h : 12 posts
• 11:2 : FTC Probes Instacart Over AI Pricing Tool
• 11:2 : U.S. CISA adds Cisco, SonicWall, and ASUS flaws to its Known Exploited Vulnerabilities catalog
• 11:2 : IoT Security Firm Exein Raises €100 Million
• 11:2 : More than half of public vulnerabilities bypass leading WAFs
• 10:32 : Apple Allows Alternative App Stores In Japan
• 10:32 : Threats Actors Registering Fake Shopping Domains to Attack Users in this Holiday Season
• 10:32 : BugTrace – AI-based Penetration Testing Tool to Detect Potential Vulnerabilities
• 10:32 : Critical Vulnerability in Popular Node.js Library Exposes Windows Systems to RCE Attacks
• 10:31 : Critical Apache Commons Text Vulnerability Enables Remote Code Execution Attacks
• 10:31 : Phantom Stealer Attacking Users to Steal Sensitive Data like Passwords, Browser Cookies, Credit Card Data
• 10:31 : France Probes ‘Foreign Interference’ After Remote Control Malware Found on Passenger Ferry
• 10:31 : Group Policy abuse reveals China-aligned espionage group targeting governments
• 10:3 : Families Sue Meta Over Instagram ‘Sextortion’ Deaths
• 10:3 : GhostPairing campaign abuses WhatsApp device linking to hijack accounts
• 10:3 : Industrial routers bear the brunt of OT cyberattacks, new Forescout research finds
• 10:3 : DVSA’s clapped-out booking system gets bot slapped as new boss rides in
• 10:3 : How CISOs Can Beat the Ransomware Blame Game
• 9:32 : Bitcoin Investor Seeks To Build Community On Island
• 9:32 : Oracle Says Data Centre On Track Amid Financing Turbulence
• 9:32 : Chinese Hackers Breach Cisco’s Email Security Systems
• 9:32 : UK surveillance law still full of holes, watchdog warns
• 9:32 : SonicWall Patches Exploited SMA 1000 Zero-Day
• 9:32 : Hospital Ransomware Really is The Pitt
• 9:32 : Concentric AI expands Private Scan Manager with Azure support for regulated industries
• 9:32 : HMRC Warns of Over 135,000 Scam Reports
• 9:32 : ENGINE code removed from the OpenSSL Library
• 9:2 : Sekoia.io Strengthens Collective Cyber Defense at NATO CCDCOE’s Crossed Swords 2025 Exercise
• 9:2 : Phantom Stealer Targeting Users to Steal Sensitive Data
• 9:2 : Critical Apache Commons Text Flaw Lets Hackers Execute Remote Code
• 9:2 : Chinese Ink Dragon Breaches European Government Networks, Affecting Asia and South America
• 9:2 : Hackers Actively Exploit SonicWall SMA1000 Zero-Day to Escalate Privileges
• 9:2 : New Reports Reveal WAFs Are Ineffective Against Latest React2Shell Exploit
• 9:2 : 2026 Cyber Predictions: Accelerating AI, Data Sovereignty, and Architecture Rationalization
• 9:2 : Push Security detects and blocks malicious copy-and-paste activity
• 9:2 : Kimsuky Spreads DocSwap Android Malware via QR Phishing Posing as Delivery App
• 8:32 : Positive trends related to public IP ranges from the year 2025, (Thu, Dec 18th)
• 8:32 : Man Charged After £1.5m Crypto Robbery In Oxford
• 8:32 : Stanford Finds China’s Open Source Models ‘Catch Up’ To US
• 8:32 : Kimwolf Android Botnet Hijacked 1.8 Million Android Devices Worldwide
• 8:31 : Let’s Encrypt Unveils New “Generation Y” Root and 45-Day Certificates
• 8:31 : FTC orders crypto to pay, New exploit of React2Shell, Ukraine fraud ring take down
• 8:5 : IT Security News Hourly Summary 2025-12-18 09h : 9 posts
• 8:2 : SoundCloud Cyberattack Leaves 28M Users Exposed
• 8:2 : AUTOSUR – 487,226 breached accounts
• 7:32 : Kimwolf Android Botnet Compromises 1.8 Million Devices Worldwide
• 7:32 : Cybercriminals Registering Fake Shopping Domains to Target Users This Holiday Season
• 7:32 : Hackers Actively Target Cisco and Palo Alto VPN Gateways to Steal Login Credentials
• 7:32 : Microsoft 365 Outage Disrupts Teams, Outlook, and Copilot in Japan and China
• 7:31 : Critical Node.js Library Flaw Lets Hackers Execute Remote Commands on Windows
• 7:31 : China-Linked Hackers Exploiting Zero-Day in Cisco Security Gear
• 7:31 : The soft underbelly of space isn’t in orbit, it’s on the ground
• 7:2 : Privacy risks sit inside the ads that fill your social media feed
• 6:31 : Private Certificate Authority 101: From Setup to Management
• 6:2 : What cybersecurity leaders are reading to stay ahead
• 6:2 : Should AI access be treated as a civil right across generations?
• 6:2 : CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation
• 5:31 : The Botting Network – 96,320 breached accounts
• 5:31 : Scientists prove “impossible” Earth-to-space quantum link is feasible
• 5:31 : Security Measures at NOWPayments: What Businesses Need to Know
• 5:5 : IT Security News Hourly Summary 2025-12-18 06h : 2 posts
• 5:2 : What’s Powering Enterprise AI in 2025: ThreatLabz Report Sneak Peek
• 5:2 : Cisco Warns of Active Attacks Exploiting Unpatched 0-Day in AsyncOS Email Security Appliances
• 4:2 : Hackers Actively Attacking Cisco and Palo Alto Networks VPN Gateways to Gain Login Access
• 4:2 : Cisco AsyncOS 0-Day Vulnerability Exploited in the Wild to run System-level Commands
• 4:2 : NAKIVO v11.1 Introduces Stronger Protection for Virtual Environments
• 3:2 : Microsoft 365 Services Including Teams, Outlook and Copilot Outage Hits Users in Japan and China
• 3:2 : LLM10: Unbounded Consumption – FireTail Blog
• 2:5 : IT Security News Hourly Summary 2025-12-18 03h : 1 posts
• 2:3 : ISC Stormcast For Thursday, December 18th, 2025 https://isc.sans.edu/podcastdetail/9744, (Thu, Dec 18th)
• 1:2 : Web Hosting Talk – 515,149 breached accounts
• 0:31 : France Arrests 22 Year Old After Hack of Interior Ministry Systems
• 23:31 : How to detect a deepfake with visual clues and AI tools
• 23:31 : Why Venture Capital Is Betting Against Traditional SIEMs
• 23:5 : IT Security News Hourly Summary 2025-12-18 00h : 6 posts
• 23:2 : 140K Childcare Records Exposed in CRM Database Leak
• 23:2 : CEO spills the Tea about massive token farming campaigns
• 23:2 : Attacks pummeling Cisco AsyncOS 0-day since late November
• 22:55 : IT Security News Daily Summary 2025-12-17