Breaking News – Cyber Threats (last 6h)
Generated: 2025-11-21 12:00 PST
- Nvidia confirms October Windows updates cause gaming issues
BleepingComputer • 2025-11-21 11:57 • www.bleepingcomputer.com
Nvidia has confirmed that last month’s security updates are causing gaming performance issues on Windows 11 24H2 and Windows 11 25H2 systems. […]
https://www.bleepingcomputer.com/news/technology/nvidia-fixes-gaming-issues-caused-by-october-windows-update/ - More on Rewiring Democracy
Schneier on Security • 2025-11-21 11:07 • www.schneier.comIt’s been a month since Rewiring Democracy: How AI Will Transform Our Politics, Government, and Citizenship was published. From what we know, sales are good.
Some of the book’s forty-three chapters are available online: chapters 2, 12, 28, https://www.schneier.com/blog/archives/2025/11/71226.html
- Microsoft: Out-of-band update fixes Windows 11 hotpatch install loop
BleepingComputer • 2025-11-21 10:02 • www.bleepingcomputer.com
Microsoft has released an out-of-band cumulative update to fix a known issue causing the November 2025 KB5068966 hotpatch update to reinstall on Windows 11 systems repeatedly. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-out-of-band-update-fixes-windows-11-hotpatch-install-loop/ - Grafana warns of max severity admin spoofing vulnerability
BleepingComputer • 2025-11-21 09:58 • www.bleepingcomputer.com
Grafana Labs is warning of a maximum severity vulnerability (CVE-2025-41115) in its Enterprise product that can be exploited to treat new users as administrators or for privilege escalation. […]
https://www.bleepingcomputer.com/news/security/grafana-warns-of-max-severity-admin-spoofing-vulnerability/ - CrowdStrike catches insider feeding information to hackers
BleepingComputer • 2025-11-21 08:48 • www.bleepingcomputer.com
American cybersecurity firm CrowdStrike has confirmed that an insider shared screenshots taken on internal systems with hackers after they were leaked on Telegram by the Scattered Lapsus$ Hunters threat actors. […]
https://www.bleepingcomputer.com/news/security/crowdstrike-catches-insider-feeding-information-to-hackers/ - FCC rolls back cybersecurity rules for telcos, despite state-hacking risks
BleepingComputer • 2025-11-21 08:01 • www.bleepingcomputer.com
The Federal Communications Commission (FCC) has rolled back a previous ruling that required U.S. telecom carriers to implement stricter cybersecurity measures following the massive hack from the Chinese threat group known as Salt Typhoon. […]
https://www.bleepingcomputer.com/news/security/fcc-rolls-back-cybersecurity-rules-for-telcos-despite-state-hacking-risks/ - 'Scattered Spider' teens plead not guilty to UK transport hack
BleepingComputer • 2025-11-21 07:41 • www.bleepingcomputer.com
Two British teenagers have denied charges related to an investigation into the breach of Transport for London (TfL) in August 2024, which caused millions of pounds in damage and exposed customer data. […]
https://www.bleepingcomputer.com/news/security/scattered-spider-teens-plead-not-guilty-to-uk-transport-hack/ - Grafana Patches CVSS 10.0 SCIM Flaw Enabling Impersonation and Privilege Escalation
The Hacker News • 2025-11-21 07:40 • thehackernews.com
Grafana has released security updates to address a maximum severity security flaw that could allow privilege escalation or user impersonation under certain configurations.
The vulnerability, tracked as CVE-2025-41115, carries a CVSS score of 10.0. It resides in the System for Cross-domain Identity Management (SCIM) component that allows automated user provisioning and management. First
https://thehackernews.com/2025/11/grafana-patches-cvss-100-scim-flaw.html - Avast Makes AI-Driven Scam Defense Available for Free Worldwide
BleepingComputer • 2025-11-21 07:00 • www.bleepingcomputer.com
Avast is rolling out Scam Guardian, a free AI-powered protection layer that analyzes websites, messages, and links to detect rising scam threats. Powered by Gen Threat Labs data, it reveals hidden dangers in code and adds 24/7 scam guidance through the Avast Assistant. […]
https://www.bleepingcomputer.com/news/security/avast-makes-ai-driven-scam-defense-available-for-free-worldwide/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
