Breaking News – Cyber Threats (last 6h)
Generated: 2025-12-18 12:00 PST
- I am not a robot: ClickFix used to deploy StealC and Qilin
Sophos Threat Research • 2025-12-18 11:15 • news.sophos.com
The fake human verification process led to infostealer and ransomware infections
https://news.sophos.com/en-us/2025/12/18/i-am-not-a-robot-clickfix-used-to-deploy-stealc-and-qilin/ - China-Aligned Threat Group Uses Windows Group Policy to Deploy Espionage Malware
The Hacker News • 2025-12-18 09:34 • thehackernews.com
A previously undocumented China-aligned threat cluster dubbed LongNosedGoblin has been attributed to a series of cyber attacks targeting governmental entities in Southeast Asia and Japan.
The end goal of these attacks is cyber espionage, Slovak cybersecurity company ESET said in a report published today. The threat activity cluster has been assessed to be active since at least September 2023.
“
https://thehackernews.com/2025/12/china-aligned-threat-group-uses-windows.html - New password spraying attacks target Cisco, PAN VPN gateways
BleepingComputer • 2025-12-18 09:27 • www.bleepingcomputer.com
An automated campaign is targeting multiple VPN platforms, with credential-based attacks being observed on Palo Alto Networks GlobalProtect and Cisco SSL VPN. […]
https://www.bleepingcomputer.com/news/security/new-password-spraying-attacks-target-cisco-pan-vpn-gateways/ - Someone Boarded a Plane at Heathrow Without a Ticket or Passport
Schneier on Security • 2025-12-18 08:41 • www.schneier.comI’m sure there’s a story here:
Sources say the man had tailgated his way through to security screening and passed security, meaning he was not detected carrying any banned items.
The man deceived the BA check-in agent by posing as a family member who had their passports and boarding passes inspected in the usual way.
- US seizes E-Note crypto exchange for laundering ransomware payments
BleepingComputer • 2025-12-18 08:13 • www.bleepingcomputer.com
Law enforcement has seized the servers and domains of the E-Note cryptocurrency exchange, allegedly used by cybercriminal groups to launder more than $70 million. […]
https://www.bleepingcomputer.com/news/security/us-seizes-e-note-crypto-exchange-for-laundering-ransomware-payments/ - NIS2 compliance: How to get passwords and MFA right
BleepingComputer • 2025-12-18 07:01 • www.bleepingcomputer.com
NIS2 puts identity and access controls under the spotlight, with weak passwords and poor authentication now a compliance risk. Specops Software explains how to align password policies and MFA with NIS2 requirements. […]
https://www.bleepingcomputer.com/news/security/nis2-compliance-how-to-get-passwords-and-mfa-right/ - HPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code Execution
The Hacker News • 2025-12-18 06:39 • thehackernews.com
Hewlett Packard Enterprise (HPE) has resolved a maximum-severity security flaw in OneView Software that, if successfully exploited, could result in remote code execution.
The critical vulnerability, assigned the CVE identifier CVE-2025-37164, carries a CVSS score of 10.0. HPE OneView is an IT infrastructure management software that streamlines IT operations and controls all systems via a
https://thehackernews.com/2025/12/hpe-oneview-flaw-rated-cvss-100-allows.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
