Breaking News – Cyber Threats (last 6h)
Generated: 2025-11-12 07:00 PST
- New UK laws to strengthen critical infrastructure cyber defenses
BleepingComputer • 2025-11-12 06:08 • www.bleepingcomputer.com
The United Kingdom has introduced new legislation to boost cybersecurity defenses for hospitals, energy systems, water supplies, and transport networks against cyberattacks, linked to annual damages of nearly £15 billion ($19.6 billion). […]
https://www.bleepingcomputer.com/news/security/new-uk-laws-to-strengthen-critical-infrastructure-cyber-defenses/ - Hackers exploited Citrix, Cisco ISE flaws in zero-day attacks
BleepingComputer • 2025-11-12 06:00 • www.bleepingcomputer.com
An advanced threat actor exploited the critical vulnerabilities “Citrix Bleed 2” (CVE-2025-5777) in NetScaler ADC and Gateway, and CVE-2025-20337 affecting Cisco Identity Service Engine (ISE) as zero-days to deploy custom malware. […]
https://www.bleepingcomputer.com/news/security/hackers-exploited-citrix-cisco-ise-flaws-in-zero-day-attacks/ - Amazon Uncovers Attacks Exploited Cisco ISE and Citrix NetScaler as Zero-Day Flaws
The Hacker News • 2025-11-12 06:00 • thehackernews.com
Amazon’s threat intelligence team on Wednesday disclosed that it observed an advanced threat actor exploiting two then-zero-day security flaws in Cisco Identity Service Engine (ISE) and Citrix NetScaler ADC products as part of attacks designed to deliver custom malware.
“This discovery highlights the trend of threat actors focusing on critical identity and network access control infrastructure –
https://thehackernews.com/2025/11/amazon-uncovers-attacks-exploited-cisco.html - Synnovis notifies of data breach after 2024 ransomware attack
BleepingComputer • 2025-11-12 04:28 • www.bleepingcomputer.com
Synnovis, a leading UK pathology services provider, is notifying healthcare providers that a data breach occurred following a ransomware attack in June 2024, which resulted in the theft of some patients’ data. […]
https://www.bleepingcomputer.com/news/security/synnovis-notifies-of-data-breach-after-2024-ransomware-attack/ - Weekly Update 477
Troy Hunt • 2025-11-12 04:27 • www.troyhunt.comWhat. A. Week. It wasn't just the preceding weeks of technical pain as we tried to work out how to get this data loaded, it was all the subsequent queries we had to deal with too. Some of them are totally understandable, whilst others just resulted in endless
- On Hacking Back
Schneier on Security • 2025-11-12 04:01 • www.schneier.comFormer DoJ attorney John Carlin writes about hackback, which he defines thus: “A hack back is a type of cyber response that incorporates a counterattack designed to proactively engage with, disable, or collect evidence about an attacker. Although hack backs can take on various forms, they are—by definition—not passive defensive measures.”
His conclusion:
As the law currently stands, specific forms of purely defense measures are authorized so long as they affect on…
https://www.schneier.com/blog/archives/2025/11/on-hacking-back.html - [Webinar] Learn How Leading Security Teams Reduce Attack Surface Exposure with DASR
The Hacker News • 2025-11-12 03:55 • thehackernews.com
Every day, security teams face the same problem—too many risks, too many alerts, and not enough time. You fix one issue, and three more show up. It feels like you’re always one step behind.
But what if there was a smarter way to stay ahead—without adding more work or stress?
Join The Hacker News and Bitdefender for a free cybersecurity webinar to learn about a new approach called Dynamic Attack
https://thehackernews.com/2025/11/webinar-learn-how-leading-security.html - Active Directory Under Siege: Why Critical Infrastructure Needs Stronger Security
The Hacker News • 2025-11-12 03:07 • thehackernews.com
Active Directory remains the authentication backbone for over 90% of Fortune 1000 companies. AD’s importance has grown as companies adopt hybrid and cloud infrastructure, but so has its complexity. Every application, user, and device traces back to AD for authentication and authorization, making it the ultimate target. For attackers, it represents the holy grail: compromise Active
https://thehackernews.com/2025/11/active-directory-under-siege-why.html - Microsoft fixes Windows Task Manager bug affecting performance
BleepingComputer • 2025-11-12 02:42 • www.bleepingcomputer.com
Microsoft has resolved a known issue preventing users from quitting the Windows 11 Task Manager after installing the optional Windows 11 KB5067036 update. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-windows-task-manager-bug-affecting-performance/ - Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack
The Hacker News • 2025-11-12 02:21 • thehackernews.com
Microsoft on Tuesday released patches for 63 new security vulnerabilities identified in its software, including one that has come under active exploitation in the wild.
Of the 63 flaws, four are rated Critical and 59 are rated Important in severity. Twenty-nine of these vulnerabilities are related to privilege escalation, followed by 16 remote code execution, 11 information disclosure, three
https://thehackernews.com/2025/11/microsoft-fixes-63-security-flaws.html - Russian hacker admits helping Yanluowang ransomware infect companies
Graham Cluley • 2025-11-12 02:15 • www.bitdefender.com
A Russian hacker accused of helping ransomware gangs break into businesses across the United States is set to plead guilty, according to recently filed federal court documents.25-year-old Aleksey Olegovich Volkov worked as an “initial access broker”, a cybercriminal specialist who focuses on the earliest stage of an attack: gaining the first foothold inside a victim’s network.
Read more in my article on the Hot for Security blog.
https://www.bitdefender.com/en-us/blog/hotforsecurity/russian-hacker-admits-helping-yanluowang-ransomware-infect-companies
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
