Breaking News – Cyber Threats (last 6h)
Generated: 2025-11-10 16:00 PST
- Mozilla Firefox gets new anti-fingerprinting defenses
BleepingComputer • 2025-11-10 14:25 • www.bleepingcomputer.com
Mozilla announced a major privacy upgrade in Firefox 145 that reduces even more the number of users vulnerable to digital fingerprinting. […]
https://www.bleepingcomputer.com/news/security/mozilla-firefox-gets-new-anti-fingerprinting-defenses/ - Quantum Route Redirect PhaaS targets Microsoft 365 users worldwide
BleepingComputer • 2025-11-10 13:29 • www.bleepingcomputer.com
A new phishing automation platform named Quantum Route Redirect is using around 1,000 domains to steal Microsoft 365 users’ credentials. […]
https://www.bleepingcomputer.com/news/security/quantum-route-redirect-phaas-targets-microsoft-365-users-worldwide/ - Hackers Exploiting Triofox Flaw to Install Remote Access Tools via Antivirus Feature
The Hacker News • 2025-11-10 12:49 • thehackernews.com
Google’s Mandiant Threat Defense on Monday said it discovered n-day exploitation of a now-patched security flaw in Gladinet’s Triofox file-sharing and remote access platform.
The critical vulnerability, tracked as CVE-2025-12480 (CVSS score: 9.1), allows an attacker to bypass authentication and access the configuration pages, resulting in the upload and execution of arbitrary payloads.
The
https://thehackernews.com/2025/11/hackers-exploiting-triofox-flaw-to.html - Konni Hackers Turn Google’s Find Hub into a Remote Data-Wiping Weapon
The Hacker News • 2025-11-10 12:29 • thehackernews.com
The North Korea-affiliated threat actor known as Konni (aka Earth Imp, Opal Sleet, Osmium, TA406, and Vedalia) has been attributed to a new set of attacks targeting both Android and Windows devices for data theft and remote control.
“Attackers impersonated psychological counselors and North Korean human rights activists, distributing malware disguised as stress-relief programs,” the Genians
https://thehackernews.com/2025/11/konni-hackers-turn-googles-find-hub.html - CISA orders feds to patch Samsung zero-day used in spyware attacks
BleepingComputer • 2025-11-10 12:00 • www.bleepingcomputer.com
CISA ordered U.S. federal agencies today to patch a critical Samsung vulnerability that has been exploited in zero-day attacks to deploy LandFall spyware on devices running WhatsApp. […]
https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-samsung-zero-day-used-in-spyware-attacks/ - Yanluowang initial access broker pleaded guilty to ransomware attacks
BleepingComputer • 2025-11-10 11:12 • www.bleepingcomputer.com
A Russian national will plead guilty to acting as an initial access broker (IAB) for Yanluowang ransomware attacks that targeted at least eight U.S. companies between July 2021 and November 2022. […]
https://www.bleepingcomputer.com/news/security/yanluowang-initial-access-broker-pleaded-guilty-to-ransomware-attacks/ - Popular JavaScript library expr-eval vulnerable to RCE flaw
BleepingComputer • 2025-11-10 10:32 • www.bleepingcomputer.com
A critical vulnerability in the popular expr-eval JavaScript library, with over 800,000 weekly downloads on NPM, can be exploited to execute code remotely through maliciously crafted input. […]
https://www.bleepingcomputer.com/news/security/popular-javascript-library-expr-eval-vulnerable-to-rce-flaw/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
