AWS: China-linked threat actors weaponized React2Shell hours after disclosure
AWS: China-linked threat actors weaponized React2Shell hours after disclosure Pierluigi Paganini December 08, 2025 Multiple China-linked threat actors began exploiting...
Security
Proofpoint Completes Acquisition of Hornetsecurity
Strategic acquisition expands Proofpoint’s global leadership in human- and agent-centric security, deepens commitment to MSP and SMB markets Sunnyvale, Calif....
Google Confirms Rising ‘Account Takeovers ’— Users Told to Check Chrome Settings
Image: Generated via Google’s Nano Banana Hackers are getting good at stealing your whole online life. Google has acknowledged an...
New Splunk Windows Flaw Enables Privilege Escalation Attacks
Image generated by Google’s Nano Banana A newly disclosed high-severity flaw in Splunk for Windows allows local users to escalate...
Architecting Security for Agentic Capabilities in Chrome
Posted by Nathan Parker, Chrome security team Chrome has been advancing the web’s security for well over 15 years, and...
U.S. CISA adds a Meta React Server Components flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds a Meta React Server Components flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December 08, 2025 U.S....
Sneeit WordPress RCE Exploited in the Wild While ICTBroadcast Bug Fuels Frost Botnet Attacks
A critical security flaw in the Sneeit Framework plugin for WordPress is being actively exploited in the wild, per data...
MuddyWater Deploys UDPGangster Backdoor in Targeted Turkey-Israel-Azerbaijan Campaign
Dec 08, 2025Ravie LakshmananNetwork Security / Vulnerability The Iranian hacking group known as MuddyWater has been observed leveraging a new...
Apple and Google Alert Users Worldwide After New Spyware Activity Surfaces
Image: Zulfugar Karimov/Unsplash Apple and Google confirmed last week that they have issued a new round of threat notifications to...
Microsoft Gives All Eligible PCs the Green Light for Windows 11 25H2
Image: Sunrise King/Unsplash Following the end of support for Windows 10, Microsoft is making a concerted effort to move its...
Strengthening Fraud Prevention with Real-Time Mobile Identity Signals
Fraud is growing faster than businesses can keep up with, especially as customers move more of their interactions into digital...
You can’t secure what you can’t see: the data challenge
The tidal wave of data Data is undoubtedly a key asset today, but all it takes is a breach to...
Security Affairs newsletter Round 553 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs newsletter Round 553 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini December 07, 2025 A new round of...
Porsche outage in Russia serves as a reminder of the risks in connected vehicle security
Porsche outage in Russia serves as a reminder of the risks in connected vehicle security Pierluigi Paganini December 07, 2025...
Attackers launch dual campaign on GlobalProtect portals and SonicWall APIs
Attackers launch dual campaign on GlobalProtect portals and SonicWall APIs Pierluigi Paganini December 06, 2025 A hacking campaign is targeting...
