Breaking News – Cyber Threats (last 6h)
Generated: 2025-12-17 21:00 PST
- Cisco Warns of Active Attacks Exploiting Unpatched 0-Day in AsyncOS Email Security Appliances
The Hacker News • 2025-12-17 20:10 • thehackernews.com
Cisco has alerted users of a maximum-severity zero-day flaw in Cisco AsyncOS software that has been actively exploited by a China-nexus advanced persistent threat (APT) actor codenamed UAT-9686 in attacks targeting Cisco Secure Email Gateway and Cisco Secure Email and Web Manager.
The networking equipment major said it became aware of the intrusion campaign on December 10, 2025, and that it
https://thehackernews.com/2025/12/cisco-warns-of-active-attacks.html - ISC Stormcast For Thursday, December 18th, 2025 https://isc.sans.edu/podcastdetail/9744, (Thu, Dec 18th)
SANS ISC Diary (full) • 2025-12-17 18:00 • isc.sans.edu
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
https://isc.sans.edu/diary/rss/32582 - Smashing Security podcast #448: The Kindle that got pwned
Graham Cluley • 2025-12-17 16:30 • grahamcluley.com
Think your Kindle is harmless? Think again! In this episode, we unpack a Black Hat Europe talk revealing how a boobytrapped audiobook could exploit the Amazon eBook reader – potentially letting an attacker break into your account and seize control of your credit card.Plus a blast from 2021’s “summer of ransomware” returns to haunt Ireland’s Health Service Executive, as victims are offered €750 each.
And because it’s the last show before the Christmas break, there’s also a Pick of the Week that veers from cosy rom-com comfort to pointy-polygon nostalgia.
All this and much more is discus…
https://grahamcluley.com/smashing-security-podcast-448/ - Zeroday Cloud hacking event awards $320,0000 for 11 zero days
BleepingComputer • 2025-12-17 15:09 • www.bleepingcomputer.com
The Zeroday Cloud hacking competition in London has awarded researchers $320,000 for demonstrating critical remote code execution vulnerabilities in components used in cloud infrastructure. […]
https://www.bleepingcomputer.com/news/security/zeroday-cloud-hacking-event-awards-320-0000-for-11-zero-days/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
