IT Security News Daily Summary 2025-11-27

102 posts were published in the last hour

• 21:2 : Asahi says crooks stole data of approximately 2M customers and employees
• 20:31 : Over 390 Abandoned iCalendar Sync Domains Could Expose ~4 Million Devices to Security Risks
• 19:2 : Bloody Wolf Expands Java-based NetSupport RAT Attacks in Kyrgyzstan and Uzbekistan
• 18:2 : What your firewall sees that your EDR doesn’t
• 18:2 : Why Long-Term AI Conversations Are Quietly Becoming a Major Corporate Security Weakness
• 17:31 : Report Names Teen in Scattered LAPSUS$ Hunters, Group Denies
• 17:5 : IT Security News Hourly Summary 2025-11-27 18h : 3 posts
• 17:2 : Shai Hulud v2 Exploits GitHub Actions Workflows as Attack Vector to Steal Secrets
• 17:2 : Zendesk users targeted as Scattered Lapsus$ Hunters spin up fake support sites
• 17:2 : FCC Warns of Hackers Hijacking Radio Equipment For False Alerts
• 16:4 : OpenAI data may have been exposed after a cyberattack on analytics firm Mixpanel
• 16:4 : OpenAI cuts off Mixpanel after analytics leak exposes API users
• 16:4 : Asahi Data Breach Impacts 2 Million Individuals
• 16:4 : Microsoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP Update
• 16:4 : Bloody Wolf Threat Actor Expands Activity Across Central Asia
• 15:32 : NVIDIA DGX Spark Vulnerabilities Let Attackers Execute Malicious Code and DoS Attacks
• 15:32 : Dead Man’s Switch – Widespread npm Supply Chain Attack Driving Malware Attacks
• 15:31 : Qilin RaaS Exposed 1 Million Files and 2 TB of Data Linked to Korean MSP Breach
• 15:31 : Millions at risk after nationwide CodeRED alert system outage and data breach
• 15:31 : Quttera Launches “Evidence-as-Code” API to Automate Security Compliance for SOC 2 and PCI DSS v4.0
• 15:31 : One Identity Safeguard Named a Visionary in the 2025 Gartner Magic Quadrant for PAM
• 15:3 : Lapsus$ Hunters Register 40+ Domains Impersonating Zendesk Environments
• 15:3 : “Dead Man’s Switch” Triggers Massive npm Supply Chain Malware Attack
• 15:3 : Handala Hacker Group Targets Israeli High-Tech and Aerospace Professionals
• 15:2 : Apache SkyWalking Flaw Allows Attackers to Launch XSS Attacks
• 15:2 : OpenAI Reveals Mixpanel Data Breach Exposing User Details
• 15:2 : Crypto Exchange Upbit Suffers Security Breach After $10B Deal
• 15:2 : When Buyers Discount MSPs With One Big Customer
• 15:2 : Waymo Robotaxi Films Deadly San Francisco Shooting
• 15:2 : Russian-Linked Surveillance Tech Firm Protei Hacked, Website Defaced and Data Published
• 15:2 : Detego DFIR Platform centralizes evidence, workflows, and real-time case insights
• 15:2 : Openai User Data Exposed In Mixpanel Hack
• 15:2 : Amazon Uses AI Agents For Bug Hunting
• 15:2 : Hackers Use Blender Assets To Spread StealC
• 15:2 : AI Security Firm Vijil Raises 17 Million
• 15:2 : Toddycat Tools Steal Outlook And M365 Data
• 14:33 : UK Budget 2025: Reactions From Tech Leaders
• 14:33 : Cyberattack on Multiple London Councils Exposes Fragility of Shared Public-Sector Systems
• 14:32 : Hackers Actively Exploiting IoT Vulnerabilities to Deploy New ShadowV2 Malware
• 14:32 : Gitlab Patches Multiple Vulnerabilities that Enable Authentication Bypass and DoS Attacks
• 14:32 : North Korean Hackers Exploiting npm, GitHub, and Vercel to Deliver OtterCookie Malware
• 14:32 : KawaiiGPT – Free WormGPT Variant Leveraging DeepSeek, Gemini, and Kimi-K2 AI Models
• 14:32 : FCC sounds alarm after emergency tones turned into potty-mouthed radio takeover
• 14:32 : Asahi Confirms 1.5 Million Customers Affected in Major Cyber-Attack
• 14:5 : IT Security News Hourly Summary 2025-11-27 15h : 5 posts
• 14:2 : Cronos Kicks Off $42K Global Hackathon Focused on AI-Powered On-Chain Payments
• 14:2 : Cyberattack Disrupts Services Across London Councils
• 14:2 : Holiday shoppers targeted as Amazon and FBI warn of surge in account takeover attacks
• 13:31 : Asahi admits ransomware gang may have spilled almost 2M people’s data
• 13:31 : Digital Deception Drives a Sophisticated Era of Cybercrime
• 12:31 : OpenAI API User Data Exposed in Mixpanel Breach, ChatGPT Unaffected
• 12:31 : Scottish council still rebuilding systems two years after ransomware attack
• 12:31 : OpenAI User Data Exposed in Mixpanel Hack
• 12:2 : 3 Best VPN for iPhone (2025), Tested and Reviewed
• 12:2 : Threat Actors Leverage Fake Update Lures to Deliver SocGholish Malware
• 12:2 : ByteToBreach Cybercriminal Selling Sensitive Global Data from Airlines, Banks, and Governments
• 12:2 : Angular HTTP Client Vulnerability Exposes XSRF Token to an Attacker-Controlled Domain
• 12:2 : Malicious Chrome Extension Silently Steal and Injects Hidden SOL Fees Into Solana Swaps
• 11:32 : Shai-hulud 2.0 Campaign Targets Cloud and Developer Ecosystems
• 11:32 : You’re Not Technical? That Excuse Just Expired!
• 11:32 : OpenAI Warns of Mixpanel Data Breach Impacting API Users
• 11:5 : IT Security News Hourly Summary 2025-11-27 12h : 5 posts
• 11:2 : Stock Exchanges Warn SEC Over Tokenisation
• 11:2 : Is your phone number safe? The story of how WhatsApp nearly leaked it
• 11:2 : ThreatsDay Bulletin: AI Malware, Voice Bot Flaws, Crypto Laundering, IoT Attacks — and 20 More Stories
• 11:2 : Fraud Fears But No Breach Spike Expected This Festive Season
• 10:31 : China Said To Bar ByteDance From Using Nvidia
• 10:2 : S&P Downgrades Tether Stablecoin To Lowest Level
• 10:2 : Hackers Actively Attacking Telecommunications & Media Industry to Deploy Malicious Payloads
• 10:2 : OpenAI Discloses Mixpanel Data Breach – Name, Email Address and Operating System Details Exposed
• 9:32 : European Parliament Calls For Child Social Media Restrictions
• 9:32 : Scattered Lapsus$ Hunters Take Aim At Zendesk Users
• 9:2 : France Takes Action Against AliExpress, Joom
• 9:2 : New ASUS firmware patches critical AiCloud vulnerability
• 9:2 : Hackers Exploiting Fake Battlefield 6 Popularity to Deploy Stealers and C2 Agents
• 9:2 : Key provisions of the UK Cyber Resilience Bill Revealed
• 8:32 : Uber, WeRide Go Fully Autonomous In Abu Dhabi
• 8:31 : AWS outage botnet smacks 28 countries, LLMs help malware authors evade detection, Anthropic pressed over Claude espionage
• 8:5 : IT Security News Hourly Summary 2025-11-27 09h : 5 posts
• 8:2 : Multiple London Councils Disrupted By Cyber-Attacks
• 8:2 : Clover raises $36 million to scale product security through AI-native design
• 7:32 : OpenAI Security Incident With Third Party Data Analytics Mixpanel
• 7:31 : China Software Developer Network – 6,414,990 breached accounts
• 7:31 : Gainsight Expands Impacted Customer List Following Salesforce Security Alert
• 7:2 : New Malware-as-a-Service Olymp Loader Advertised on Hacker Forums with It’s Anti-analysis and Detection Features
• 7:2 : Hackers Tricks macOS Users to Execute Command in Terminal to Deliver FlexibleFerret Malware
• 7:2 : Threat Actors Allegedly Listed iOS 26 Full‑Chain 0‑Day Exploit on Dark Web
• 6:32 : Belonging at Akamai: My Journey of Inclusion, Growth, and Connection
• 6:32 : Full Circle: How Akamai’s Evolution Set the Stage for the AI Inference Era
• 6:31 : Hottest cybersecurity open-source tools of the month: November 2025
• 6:2 : Microsoft Teams Guest Chat Vulnerability Exposes Users to Malware Attack
• 6:2 : The identity mess your customers feel before you do
• 6:2 : Your critical infrastructure is running out of time
• 5:32 : Cybersecurity Update: Incorrect Company Naming, Major Breaches, and New Malware Campaigns
• 5:5 : IT Security News Hourly Summary 2025-11-27 06h : 2 posts
• 5:2 : Criminal networks industrialize payment fraud operations
• 4:32 : Shai-Hulud v2 Spreads From npm to Maven, as Campaign Exposes Thousands of Secrets
• 2:31 : New Unauthenticated DoS Vulnerability Crashes Next.js Servers with a Single Request
• 1:2 : North Korean Hackers Evade UN Sanctions Leveraging Cyber Capabilities, IT Workers and Crypto Activities
• 23:5 : IT Security News Hourly Summary 2025-11-27 00h : 2 posts
• 23:2 : Elena Lazar: Failures are Inevitable – Reliability is a Choice
• 22:55 : IT Security News Daily Summary 2025-11-26