ThaiCERT

536/68 Friday, December 19, 2025 SonicWall has issued a security advisory urging customers to immediately apply security patches for SMA1000 (Appliance Management Console) devices after Google Threat Intelligence reported active zero-day exploitation involving two vulnerabilities. The attack chain begins with a critical pre-authentication deserialization vulnerability, CVE-2025-23006, which allows remote compromise without authentication, followed by CVE-2025-40602, […]

535/68 Friday, December 19, 2025 Askul, a major Japanese e-commerce and logistics provider, has confirmed that it detected a ransomware attack on October 19, 2025, during which attackers gained access to the company’s infrastructure and exfiltrated sensitive data. The incident disrupted order processing, delivery services, and automated logistics systems, causing service outages before partial operations […]

534/68 Friday, December 19, 2025 Security researchers from QiAnXin XLab have identified a large-scale botnet named “Kimwolf”, which has compromised more than 1.8 million Android-based devices worldwide, including Android TV boxes, digital set-top boxes, and tablets. The infections are especially prevalent among low-cost consumer devices commonly used in households. What makes Kimwolf particularly alarming is […]

533/68 Thursday, December 18, 2025 Cybersecurity researchers have uncovered a new malware campaign dubbed “GhostPoster”, which was distributed through 17 Firefox browser extensions with a combined total of more than 50,000 downloads. The malware uses steganography to conceal malicious JavaScript code inside the image files used as extension logos, allowing it to evade browser security […]

532/68 Thursday, December 18, 2025 Venezuela’s state-owned oil company, Petróleos de Venezuela (PDVSA), disclosed that it experienced a cyberattack last week that affected certain systems related to export operations. The company stated, however, that the incident was limited to administrative systems and did not impact core operations or oil production processes. PDVSA emphasized that, thanks […]

531/68 Thursday, December 18, 2025 A newly discovered Android malware named “Cellik” has been identified operating as a Malware-as-a-Service (MaaS) offering on underground markets, with subscription prices starting at approximately $150 per month. According to cybersecurity firm iVerify, one of Cellik’s most concerning capabilities is its ability to take any legitimate application from the Google […]

530/68 Wednesday, December 17, 2025 Security researchers have warned of a serious vulnerability in JumpCloud Remote Assist for Windows, tracked as CVE-2025-34352 with a CVSS score of 8.5. The flaw allows a low-privileged local user to escalate privileges to SYSTEM, enabling full compromise of the affected endpoint. The issue stems from insecure handling of temporary […]

529/68 Wednesday, December 17, 2025 Audio streaming platform SoundCloud has confirmed that recent service disruptions and issues accessing the platform via VPN connections were caused by a data breach, following unauthorized access to and theft of a portion of its user database. The incident aligns with widespread user reports of being unable to access SoundCloud […]

528/68 Wednesday, December 17, 2025 Cybersecurity researchers have identified a new information-stealing malware called “SantaStealer,” which is being advertised for sale on Telegram channels and underground hacking forums. The malware is offered under a Malware-as-a-Service (MaaS) model and promotes its ability to operate primarily in memory to evade detection. However, in-depth analysis by Rapid7 researchers […]

527/68 Tuesday, December 16, 2025 Apple has released emergency security updates across all of its operating systems-including macOS, iOS, iPadOS, tvOS, watchOS, and visionOS-to address two zero-day vulnerabilities, tracked as CVE-2025-14174 and CVE-2025-43529. These flaws involve memory corruption and use-after-free issues within the WebKit engine used by the Safari browser. Both vulnerabilities could allow attackers […]