Breaking News – Cyber Threats (last 6h)
Generated: 2025-11-24 12:00 PST
- Is Your Android TV Streaming Box Part of a Botnet?
KrebsOnSecurity • 2025-11-24 10:44 • krebsonsecurity.com
On the surface, the Superbox media streaming devices for sale at retailers like BestBuy and Walmart may seem like a steal: They offer unlimited access to more than 2,200 pay-per-view and streaming services like Netflix, ESPN and Hulu, all for a one-time fee of around $400. But security experts warn these TV boxes require intrusive software that forces the user’s network to relay Internet traffic for others, traffic that is often tied to cybercrime activity such as advertising fraud and account takeovers.
https://krebsonsecurity.com/2025/11/is-your-android-tv-streaming-box-part-of-a-botnet/ - Real-estate finance services giant SitusAMC breach exposes client data
BleepingComputer • 2025-11-24 09:36 • www.bleepingcomputer.com
SitusAMC, a company that provides back-end services for top banks and lenders, disclosed on Saturday a data breach it had discovered earlier this month that impacted customer data. […]
https://www.bleepingcomputer.com/news/security/real-estate-finance-services-giant-situsamc-breach-exposes-client-data/ - Conflicts between URL mapping and URL based access control., (Mon, Nov 24th)
SANS ISC Diary (full) • 2025-11-24 08:54 • isc.sans.eduWe continue to encounter high-profile vulnerabilities related to the use of URL mapping (or “aliases”) with URL-based access control. Last week, we wrote about the Oracle Identity Manager vulnerability. I noticed some scans for an older vulnerability with similar roots today:
- New Fluent Bit Flaws Expose Cloud to RCE and Stealthy Infrastructure Intrusions
The Hacker News • 2025-11-24 07:03 • thehackernews.com
Cybersecurity researchers have discovered five vulnerabilities in Fluent Bit, an open-source and lightweight telemetry agent, that could be chained to compromise and take over cloud infrastructures.
The security defects “allow attackers to bypass authentication, perform path traversal, achieve remote code execution, cause denial-of-service conditions, and manipulate tags,” Oligo Security said in
https://thehackernews.com/2025/11/new-fluent-bit-flaws-expose-cloud-to.html - SCCM and WSUS in a Hybrid World: Why It’s Time for Cloud-native Patching
BleepingComputer • 2025-11-24 07:01 • www.bleepingcomputer.com
Hybrid work exposes the limits of SCCM and WSUS, with remote devices often missing updates and WSUS now deprecated. Action1’s cloud-native patching keeps devices updated from any location, strengthening compliance and security. […]
https://www.bleepingcomputer.com/news/security/sccm-and-wsus-in-a-hybrid-world-why-its-time-for-cloud-native-patching/ - Shai-Hulud malware infects 500 npm packages, leaks secrets on GitHub
BleepingComputer • 2025-11-24 06:32 • www.bleepingcomputer.com
Hundreds of trojanized versions of well-known packages such as Zapier, ENS Domains, PostHog, and Postman have been planted in the npm registry in a new Shai-Hulud supply-chain campaign. […]
https://www.bleepingcomputer.com/news/security/shai-hulud-malware-infects-500-npm-packages-leaks-secrets-on-github/ - Harvard University discloses data breach affecting alumni, donors
BleepingComputer • 2025-11-24 06:06 • www.bleepingcomputer.com
Harvard University disclosed over the weekend that its Alumni Affairs and Development systems were compromised in a voice phishing attack, exposing the personal information of students, alumni, donors, staff, and faculty members. […]
https://www.bleepingcomputer.com/news/security/harvard-university-discloses-data-breach-affecting-alumni-donors/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
