472/68 Tuesday, November 18, 2025 The American Israel Public Affairs Committee (AIPAC) has disclosed a data breach resulting from unauthorized access to systems belonging to an external third-party company. The organization reported the incident to the Attorney General’s Office on November 14, 2025. According to the disclosure, the breach affected 810 individuals, with unauthorized access […]
471/68 Tuesday, November 18, 2025 The Israel National Digital Agency (INDA) has published a report revealing a new cyber-espionage campaign called “SpearSpecter,” operated by APT42, a threat group backed by the Iranian government and linked to the Islamic Revolutionary Guard Corps (IRGC). The operation was first detected in early September 2025 and is still ongoing. […]
470/68 Monday, November 17, 2025 Microsoft has confirmed that it is urgently investigating technical issues affecting the Extended Security Update (ESU) patch KB5068781 for Windows 10, released on November 11. Many enterprise users have reported that the update fails to install, returning error code 0x800f0922. According to Microsoft, the issue occurs only on devices activated […]
469/68 Monday, November 17, 2025 ASUS has released an update to fix a critical vulnerability identified as CVE-2025-59367 (CVSS 9.3), an authentication bypass flaw that allows remote attackers to access unpatched routers without authentication. The vulnerability affects the following DSL router models: DSL-AC51, DSL-N16, and DSL-AC750. ASUS has issued firmware version 1.1.2.3_1010 to address the […]
468/68 Monday, November 17, 2025 Logitech, the well-known computer peripherals manufacturer, has filed a disclosure with the U.S. Securities and Exchange Commission (SEC) confirming that a data breach did occur. The company stated that while attackers were able to access and steal certain data, the incident did not affect manufacturing operations, business continuity, or product […]
467/68 Friday, November 14, 2025 Researchers have detected new DanaBot activity, marking the return of the malware after it was dismantled during the large-scale international Operation Endgame in May. The newly observed variant features a rebuilt command-and-control (C2) infrastructure using Tor-based (.onion) domains and backconnect nodes to remotely control infected devices. Investigators also identified several […]
466/68 Friday, November 14, 2025 Google and Mozilla have released their latest security updates for the Chrome and Firefox browsers, addressing several high-severity vulnerabilities. In the Chrome 142 update, Google patched CVE-2025-13042, an inappropriate implementation issue in the V8 JavaScript engine. Although specific technical details have not yet been disclosed, the flaw could potentially lead […]
465/68 Friday, November 14, 2025 Security researchers at the Genians Security Center (GSC) have uncovered highly concerning findings, revealing that the KONNI hacking group – believed to be supported by North Korea and linked to Kimsuky (APT37) – has developed sophisticated attack techniques to spy on and wipe data from victims’ Android devices. The campaign […]
464/68 Thursday, November 13, 2025 Microsoft has issued its monthly Patch Tuesday security update, addressing more than 60 vulnerabilities across the company’s products – including a Zero-Day vulnerability actively exploited in the wild on Windows systems. The Zero-Day, CVE-2025-62215, is a Privilege Escalation flaw rated Important, allowing attackers to elevate their privileges to the highest […]
463/68 Thursday, November 13, 2025 SAP has released its November 2025 security updates, addressing a total of 19 vulnerabilities — including one Critical flaw (CVSS 10.0), tracked as CVE-2025-42890, affecting SQL Anywhere Monitor (Non-GUI). The vulnerability stems from insecure key and secret management due to hardcoded credentials embedded directly in the code. This flaw allows […]
