Breaking News – Cyber Threats (last 6h)
Generated: 2025-12-15 12:00 PST
- Ongoing SoundCloud issue blocks VPN users with 403 server error
BleepingComputer • 2025-12-15 10:20 • www.bleepingcomputer.com
Users accessing the SoundCloud audio streaming platform through a virtual private network (VPN) connection are denied access to the service and see a 403 ‘forbidden’ error. […]
https://www.bleepingcomputer.com/news/security/ongoing-soundcloud-issue-blocks-vpn-users-with-403-server-error/ - Featured Chrome Browser Extension Caught Intercepting Millions of Users' AI Chats
The Hacker News • 2025-12-15 09:46 • thehackernews.com
A Google Chrome extension with a “Featured” badge and six million users has been observed silently gathering every prompt entered by users into artificial intelligence (AI)-powered chatbots like OpenAI ChatGPT, Anthropic Claude, Microsoft Copilot, DeepSeek, Google Gemini, xAI Grok, Meta AI, and Perplexity.
The extension in question is Urban VPN Proxy, which has a 4.7 rating on the Google Chrome
https://thehackernews.com/2025/12/featured-chrome-browser-extension.html - 700Credit data breach impacts 5.8 million vehicle dealership customers
BleepingComputer • 2025-12-15 08:49 • www.bleepingcomputer.com
700Credit, a U.S.-based financial services and fintech company, will start notifying more than 5.8 million people that their personal information has been exposed in a data breach incident. […]
https://www.bleepingcomputer.com/news/security/700credit-data-breach-impacts-58-million-vehicle-dealership-customers/ - 2025’s Top Phishing Trends and What They Mean for Your Security Strategy
BleepingComputer • 2025-12-15 07:05 • www.bleepingcomputer.com
Phishing attacks in 2025 increasingly moved beyond email, with attackers using social platforms, search ads, and browser-based techniques to bypass MFA and steal sessions. Push Security outlines key phishing trends and what security teams must know as identity-based attacks continue to evolve in 2026. […]
https://www.bleepingcomputer.com/news/security/2025s-top-phishing-trends-and-what-they-mean-for-your-security-strategy/ - Microsoft: Recent Windows updates break VPN access for WSL users
BleepingComputer • 2025-12-15 06:34 • www.bleepingcomputer.com
Microsoft says that recent Windows 11 security updates are causing VPN networking failures for enterprise users running Windows Subsystem for Linux. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-recent-windows-updates-cause-wsl-networking-issues/ - FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE
The Hacker News • 2025-12-15 06:32 • thehackernews.com
Multiple security vulnerabilities have been disclosed in the open-source private branch exchange (PBX) platform FreePBX, including a critical flaw that could result in an authentication bypass under certain configurations.
The shortcomings, discovered by Horizon3.ai and reported to the project maintainers on September 15, 2025, are listed below –CVE-2025-61675 (CVSS score: 8.6) – Numerous
https://thehackernews.com/2025/12/freepbx-authentication-bypass-exposed.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
