Cybersecurity Articles

477/68 Thursday, November 20, 2025 Cybersecurity experts are closely monitoring the rapid spread of RondoDox, a large-scale botnet now exploiting a critical vulnerability in the XWiki platform. The flaw, tracked as CVE-2025-24893, is a Remote Code Execution (RCE) vulnerability that allows attackers to execute arbitrary malicious code on vulnerable systems. The U.S. Cybersecurity and Infrastructure […]

476/68 Wednesday, November 19, 2025 The Everest ransomware group claims to have breached the systems of Under Armour, Inc., a major U.S. sportswear company, stealing over 343 GB of internal corporate data, including personal information belonging to millions of customers across multiple countries. The attackers published sample data on their Dark Web site to prove […]

475/68 Wednesday, November 19, 2025 DoorDash, the major U.S. food-delivery platform, has disclosed a data breach affecting customers, delivery drivers (Dashers), and merchants after one of its employees fell victim to a social engineering attack, allowing unauthorized actors to access personal information. The incident was discovered on October 25, 2025, and DoorDash has begun notifying […]

474/68 Wednesday, November 19, 2025 On November 18, 2025, internet users around the world were unable to access numerous websites and applications due to a major outage at Cloudflare-one of the world’s largest internet infrastructure providers, handling roughly 20% of global internet traffic. Dane Knecht, Cloudflare’s Chief Technology Officer (CTO), explained that the incident stemmed […]

473/68 Tuesday, November 18, 2025 Google is preparing to enforce stricter Play Store policies targeting Android apps that run excessively in the background and drain battery life, using a new metric called “Excessive Partial Wake Locks,” developed in collaboration with Samsung. Apps that exhibit such behavior may face reduced visibility in Play Store recommendations or […]

472/68 Tuesday, November 18, 2025 The American Israel Public Affairs Committee (AIPAC) has disclosed a data breach resulting from unauthorized access to systems belonging to an external third-party company. The organization reported the incident to the Attorney General’s Office on November 14, 2025. According to the disclosure, the breach affected 810 individuals, with unauthorized access […]

471/68 Tuesday, November 18, 2025 The Israel National Digital Agency (INDA) has published a report revealing a new cyber-espionage campaign called “SpearSpecter,” operated by APT42, a threat group backed by the Iranian government and linked to the Islamic Revolutionary Guard Corps (IRGC). The operation was first detected in early September 2025 and is still ongoing. […]

470/68 Monday, November 17, 2025 Microsoft has confirmed that it is urgently investigating technical issues affecting the Extended Security Update (ESU) patch KB5068781 for Windows 10, released on November 11. Many enterprise users have reported that the update fails to install, returning error code 0x800f0922. According to Microsoft, the issue occurs only on devices activated […]

469/68 Monday, November 17, 2025 ASUS has released an update to fix a critical vulnerability identified as CVE-2025-59367 (CVSS 9.3), an authentication bypass flaw that allows remote attackers to access unpatched routers without authentication. The vulnerability affects the following DSL router models: DSL-AC51, DSL-N16, and DSL-AC750. ASUS has issued firmware version 1.1.2.3_1010 to address the […]

468/68 Monday, November 17, 2025 Logitech, the well-known computer peripherals manufacturer, has filed a disclosure with the U.S. Securities and Exchange Commission (SEC) confirming that a data breach did occur. The company stated that while attackers were able to access and steal certain data, the incident did not affect manufacturing operations, business continuity, or product […]