Breaking News – Cyber Threats (last 6h)
Generated: 2025-12-19 07:00 PST
- Criminal IP and Palo Alto Networks Cortex XSOAR integrate to bring AI-driven exposure intelligence to automated incident response
BleepingComputer • 2025-12-19 06:30 • www.bleepingcomputer.com
Criminal IP (criminalip.io), the AI-powered threat intelligence and attack surface monitoring platform developed by AI SPERA, is now officially integrated into Palo Alto Networks’ Cortex XSOAR. […]
https://www.bleepingcomputer.com/news/security/criminal-ip-and-palo-alto-networks-cortex-xsoar-integrate-to-bring-ai-driven-exposure-intelligence-to-automated-incident-response/ - Denmark blames Russia for destructive cyberattack on water utility
BleepingComputer • 2025-12-19 04:28 • www.bleepingcomputer.com
Danish intelligence officials blamed Russia for orchestrating cyberattacks against Denmark’s critical infrastructure, as part of Moscow’s hybrid attacks against Western nations. […]
https://www.bleepingcomputer.com/news/security/denmark-blames-russia-for-destructive-cyberattack-on-water-utility/ - AI Advertising Company Hacked
Schneier on Security • 2025-12-19 04:02 • www.schneier.comAt least some of this is coming to light:
Doublespeed, a startup backed by Andreessen Horowitz (a16z) that uses a phone farm to manage at least hundreds of AI-generated social media accounts and promote products has been hacked. The hack reveals what products the AI-generated accounts are promoting, often without the required disclosure that these are advertisements, and allowed the hacker to take control of more than 1,000 smartphones that power the compa…
https://www.schneier.com/blog/archives/2025/12/ai-advertising-company-hacked.html - WatchGuard Warns of Active Exploitation of Critical Fireware OS VPN Vulnerability
The Hacker News • 2025-12-19 03:23 • thehackernews.com
WatchGuard has released fixes to address a critical security flaw in Fireware OS that it said has been exploited in real-world attacks.
Tracked as CVE-2025-14733 (CVSS score: 9.3), the vulnerability has been described as a case of out-of-bounds write affecting the iked process that could allow a remote unauthenticated attacker to execute arbitrary code.
“This vulnerability affects both the
https://thehackernews.com/2025/12/watchguard-warns-of-active-exploitation.html - DLLs & TLS Callbacks, (Fri, Dec 19th)
SANS ISC Diary (full) • 2025-12-19 02:55 • isc.sans.eduXavier's diary entry “Abusing DLLs EntryPoint for the Fun” inspired me to do some tests with TLS Callbacks and DLLs.
- Nigeria Arrests RaccoonO365 Phishing Developer Linked to Microsoft 365 Attacks
The Hacker News • 2025-12-19 02:26 • thehackernews.com
Authorities in Nigeria have announced the arrest of three “high-profile internet fraud suspects” who are alleged to have been involved in phishing attacks targeting major corporations, including the main developer behind the RaccoonO365 phishing-as-a-service (PhaaS) scheme.
The Nigeria Police Force National Cybercrime Centre (NPF–NCCC) said investigations conducted in collaboration with
https://thehackernews.com/2025/12/nigeria-arrests-raccoono365-phishing.html - New critical WatchGuard Firebox firewall flaw exploited in attacks
BleepingComputer • 2025-12-19 02:25 • www.bleepingcomputer.com
WatchGuard has warned customers to patch a critical, actively exploited remote code execution (RCE) vulnerability in its Firebox firewalls. […]
https://www.bleepingcomputer.com/news/security/watchguard-warns-of-new-rce-flaw-in-firebox-firewalls-exploited-in-attacks/ - Cloud Atlas activity in the first half of 2025: what changed
Securelist • 2025-12-19 02:00 • securelist.com
Kaspersky expert describes new malicious tools employed by the Cloud Atlas APT, including implants of their signature backdoors VBShower, VBCloud, PowerShower, and CloudAtlas.
https://securelist.com/cloud-atlas-h1-2025-campaign/118517/ - FTC: Instacart to refund $60M over deceptive subscription tactics
BleepingComputer • 2025-12-19 01:19 • www.bleepingcomputer.com
Grocery delivery service Instacart will refund $60 million to settle FTC claims that it misled customers with false advertising and unlawfully enrolled them in paid subscriptions. […]
https://www.bleepingcomputer.com/news/legal/instacart-to-refund-60m-over-deceptive-subscription-tactics/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
