Ukrainian national Victoria Dubranova is in U.S. custody, accused of supporting Russian hacker group NoName057 in cyberattacks on critical infrastructure. She has pleaded not guilty. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI, and More…
Microsoft Patch Tuesday security updates for December 2025 fixed an actively exploited zero-day
Microsoft Patch Tuesday security updates for December 2025 address 57 vulnerabilities, including three critical flaws. Microsoft Patch Tuesday security updates for December 2025 addressed 57 vulnerabilities in Windows and Windows components, Office and Office Components, Microsoft Edge (Chromium-based), Exchange Server,…
U.S. CISA adds Microsoft Windows and WinRAR flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft Windows and WinRAR flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Microsoft Windows and WinRAR flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below…
Gemini Zero-Click Vulnerability Let Attackers Access Gmail, Calendar, and Docs
A critical zero-click vulnerability dubbed “GeminiJack” in Google Gemini Enterprise and previously Vertex AI Search that let attackers steal sensitive corporate data from Gmail, Calendar, and Docs with minimal effort. According to Noma Labs, it was considered an architectural flaw…
CISA Warns of WinRAR 0-Day RCE Vulnerability Exploited in Attacks
A high-priority warning regarding a critical security flaw in WinRAR, the popular file compression tool used by millions of Windows users. The vulnerability, tracked as CVE-2025-6218, is currently being exploited by attackers to compromise systems and execute malicious code. The specific…
Windows PowerShell 0-Day Vulnerability Let Attackers Execute Malicious Code
Security update addressing a dangerous Windows PowerShell vulnerability that allows attackers to execute malicious code on affected systems. The vulnerability, tracked as CVE-2025-54100, was publicly disclosed on December 9, 2025, and represents a significant security risk for organizations worldwide. The…
ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Rockwell, Schneider
Dozens of vulnerabilities have been patched by the industrial giants across their products. The post ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Rockwell, Schneider appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: ICS…
Microsoft Issues Security Fixes for 56 Flaws, Including Active Exploit and Two Zero-Days
Microsoft closed out 2025 with patches for 56 security flaws in various products across the Windows platform, including one vulnerability that has been actively exploited in the wild. Of the 56 flaws, three are rated Critical, and 53 are rated…
Microsoft Fixes Three Zero-Days in Final Patch Tuesday of 2025
December’s Patch Tuesday sees the release of patches for over 50 CVEs including three zero-days This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Fixes Three Zero-Days in Final Patch Tuesday of 2025
Met Police Seize E-Bikes In Phone Theft Crackdown
Metropolitan Police have seized 2,500 e-bikes and e-scooters this year in crackdown on phone-snatching and robbery This article has been indexed from Silicon UK Read the original article: Met Police Seize E-Bikes In Phone Theft Crackdown
Song From 1962 Becomes Top TikTok Hit
Connie Francis’ ‘Pretty Little Baby’, a hit from six decades ago, becomes TikTok top global song of the year after featuring in viral videos This article has been indexed from Silicon UK Read the original article: Song From 1962 Becomes…
Initial Access Brokers Now Central to Cyberattacks: Report
The market for initial access brokers has expanded rapidly over the past two years, creating a system that allows advanced threat actors to outsource the early stages of an intrusion, according to new research from Check Point. The report…
BigID Activity Explorer enhances visibility for insider risk investigation
BigID announced Activity Explorer, a new capability that delivers auditability and granular activity investigation to strengthen insider risk detection and response. With Activity Explorer, organizations can review, search, and analyze activity across cloud and on-prem environments, including AWS S3, SharePoint,…
Skyhigh Security debuts dashboard for unified data visibility and compliance
Skyhigh Security announced the launch of its risk-focused data visibility and compliance dashboard as part of Skyhigh DSPM’s Data Explorer. In April 2025, Data Security Posture Management (DSPM) was integrated into Skyhigh Security’s SSE framework to provide visibility into where…
Protecto Vault adds API-first protection for safer AI agent workflows
Protecto launched Protecto Vault, a SaaS platform designed specifically for AI agent builders. Featuring a pay-as-you-go model, Vault removes the primary barrier to AI adoption: enterprise refusal to share sensitive data due to security, PII exposure, and HIPAA compliance risks.…
Apptega Policy Manager streamlines policy creation and compliance oversight
Apptega revealed its Policy Manager module, expanding the company’s platform to automate the creation, review, and oversight of custom business policies. With this enhancement, Apptega enables partners and in-house security and compliance teams to maintain auditable policies with minimal manual…
EU Investigates Google Over AI Summaries
EU probe looks into whether Google is breaking competition law in its use of material from publishers, video creators to train AI tools This article has been indexed from Silicon UK Read the original article: EU Investigates Google Over AI…
Google To Launch AI Smart Glasses Next Year
Google to launch new take on AI-powered smart glasses, a decade after company’s failed first try with Google Glass This article has been indexed from Silicon UK Read the original article: Google To Launch AI Smart Glasses Next Year
Intel, AMD Processors Affected by PCIe Vulnerabilities
The PCIe flaws, found by Intel employees, can be exploited for information disclosure, escalation of privilege, or DoS. The post Intel, AMD Processors Affected by PCIe Vulnerabilities appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
Spain arrest over data records, goodbye dark Telegram, scammers poison AI search results
Spain arrest over data records Goodbye, dark Telegram Scammers poison AI search results Huge thanks to our episode sponsor, Adaptive Security This episode is brought to you by Adaptive Security, the first cybersecurity company backed by OpenAI. Picture a “new…
IT Security News Hourly Summary 2025-12-10 09h : 2 posts
2 posts were published in the last hour 8:2 : New Portuguese Law Shields Ethical Hackers from Prosecution 7:31 : Henkel CISO on the messy truth of monitoring factories built across decades
New Portuguese Law Shields Ethical Hackers from Prosecution
Portugal updates its cybercrime law (Decree Law 125/2025) to grant ethical hackers a ‘safe harbour’ from prosecution. Learn the strict rules researchers must follow, including immediate disclosure to the CNCS, and how other nations are following this trend. This article…
Henkel CISO on the messy truth of monitoring factories built across decades
In this Help Net Security interview, Stefan Braun, CISO at Henkel, discusses how smart manufacturing environments introduce new cybersecurity risks. He explains where single points of failure hide, how attackers exploit legacy systems, and why monitoring must adapt to mixed-generation…
Are there privacy risks of having home cameras?
Yes, there are privacy risks to installing security cameras at home. Especially when the cameras are connected to the internet and cover private spaces. While… The post Are there privacy risks of having home cameras? appeared first on Panda Security…