Breaking News – Cyber Threats (last 6h)
Generated: 2025-11-11 12:00 PST
- Microsoft Patch Tuesday for November 2025, (Tue, Nov 11th)
SANS ISC Diary (full) • 2025-11-11 11:24 • isc.sans.eduToday's Microsoft Patch Tuesday offers fixes for 80 different vulnerabilities. One of the vulnerabilities is already being exploited, and five are rated as critical.
- Microsoft: Windows 11 23H2 Home and Pro reach end of support
BleepingComputer • 2025-11-11 11:12 • www.bleepingcomputer.com
Microsoft has reminded customers today that systems running Home and Pro editions of Windows 11 23H2 have stopped receiving security updates. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-windows-11-23h2-home-and-pro-reach-end-of-support/ - Microsoft releases KB5068781 — The first Windows 10 extended security update
BleepingComputer • 2025-11-11 11:09 • www.bleepingcomputer.com
Microsoft has released the KB5068781 update, the first Windows 10 extended security update since the operating system reached end of support last month. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-kb5068781-the-first-windows-10-extended-security-update/ - Microsoft November 2025 Patch Tuesday fixes 1 zero-day, 63 flaws
BleepingComputer • 2025-11-11 10:45 • www.bleepingcomputer.com
Today is Microsoft’s November 2025 Patch Tuesday, which includes security updates for 63 flaws, including one actively exploited zero-day vulnerability. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-november-2025-patch-tuesday-fixes-1-zero-day-63-flaws/ - WhatsApp Malware 'Maverick' Hijacks Browser Sessions to Target Brazil's Biggest Banks
The Hacker News • 2025-11-11 10:37 • thehackernews.com
Threat hunters have uncovered similarities between a banking malware called Coyote and a newly disclosed malicious program dubbed Maverick that has been propagated via WhatsApp.
According to a report from CyberProof, both malware strains are written in .NET, target Brazilian users and banks, and feature identical functionality to decrypt, targeting banking URLs and monitor banking applications.
https://thehackernews.com/2025/11/whatsapp-malware-maverick-hijacks.html - Windows 11 KB5068861 & KB5068865 cumulative updates released
BleepingComputer • 2025-11-11 10:32 • www.bleepingcomputer.com
Microsoft has released Windows 11 KB5068861 and KB5068865 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities, bugs, and add new features. […]
https://www.bleepingcomputer.com/news/microsoft/windows-11-kb5068861-and-kb5068865-cumulative-updates-released/ - Microsoft: Emergency Windows 10 update fixes ESU enrollment bug
BleepingComputer • 2025-11-11 10:28 • www.bleepingcomputer.com
Microsoft has released an emergency out-of-band update to address a known issue preventing Windows 10 users from enrolling in the Extended Security Updates (ESU) program. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-emergency-windows-10-update-fixes-esu-enrollment-bug/ - “Bitcoin Queen” gets 11 years in prison for $7.3 billion Bitcoin scam
BleepingComputer • 2025-11-11 09:07 • www.bleepingcomputer.com
A Chinese woman known as the “Bitcoin Queen” was sentenced in London to 11 years and eight months in jail for laundering Bitcoin from a £5.5 billion ($7.3 billion) cryptocurrency investment scheme. […]
https://www.bleepingcomputer.com/news/security/bitcoin-queen-gets-11-years-in-prison-for-73-billion-bitcoin-scam/ - GootLoader Is Back, Using a New Font Trick to Hide Malware on WordPress Sites
The Hacker News • 2025-11-11 07:44 • thehackernews.com
The malware known as GootLoader has resurfaced yet again after a brief spike in activity earlier this March, according to new findings from Huntress.
The cybersecurity company said it observed three GootLoader infections since October 27, 2025, out of which two resulted in hands-on keyboard intrusions with domain controller compromise taking place within 17 hours of initial infection.
“
https://thehackernews.com/2025/11/gootloader-is-back-using-new-font-trick.html - SAP fixes hardcoded credentials flaw in SQL Anywhere Monitor
BleepingComputer • 2025-11-11 07:38 • www.bleepingcomputer.com
SAP has released its November security updates that address multiple security vulnerabilities, including a maximum severity flaw in the non-GUI variant of the SQL Anywhere Monitor and a critical code injection issue in the Solution Manager platform. […]
https://www.bleepingcomputer.com/news/security/sap-fixes-hardcoded-credentials-flaw-in-sql-anywhere-monitor/ - The AI Fix #76: AI self-awareness, and the death of comedy
Graham Cluley • 2025-11-11 07:27 • grahamcluley.com
In episode 76 of The AI Fix, two US federal judges blame AI for imaginary case law, a Chinese “humanoid” dramatically sheds its skin onstage, Toyota unveils a crabby walking chair creeps us out, Google plans AI chips in orbit, robot dogs get jobs at Sellafield, and AI writes cruise-ship gags from the 1950s (but a little less racist.)Plus: Graham gives all his credit card numbers away in an attempt to buy AI-generated jokes, and Mark asks a terrifying question: if you make an LLM “notice its noticing,” does it start sounding… conscious?
All this and much more is discussed in the latest …
https://grahamcluley.com/the-ai-fix-76/ - GlobalLogic warns 10,000 employees of data theft after Oracle breach
BleepingComputer • 2025-11-11 07:24 • www.bleepingcomputer.com
GlobalLogic, a provider of digital engineering services part of the Hitachi group, is notifying over 10,000 current and former employees that their data was stolen in an Oracle E-Business Suite (EBS) data breach. […]
https://www.bleepingcomputer.com/news/security/globallogic-warns-10-000-employees-of-data-theft-after-oracle-breach/ - How a CPU spike led to uncovering a RansomHub ransomware attack
BleepingComputer • 2025-11-11 07:01 • www.bleepingcomputer.com
A sudden CPU spike turned out to be the first clue of an in-progress RansomHub ransomware attack. Varonis breaks down how their team traced the attack from fake browser updates to domain-admin takeover, ultimately stopping the attack before files were encrypted. […]
https://www.bleepingcomputer.com/news/security/how-a-cpu-spike-led-to-uncovering-a-ransomhub-ransomware-attack/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
