Breaking News – Cyber Threats (last 6h)
Generated: 2025-11-12 12:00 PST
- Windows 11 now supports 3rd-party apps for native passkey management
BleepingComputer • 2025-11-12 10:18 • www.bleepingcomputer.com
Microsoft announced that passwordless authentication is now easier on Windows 11 through native support for third-party passkey managers, the first ones supported being 1Password and Bitwarden. […]
https://www.bleepingcomputer.com/news/security/windows-11-now-supports-3rd-party-apps-for-native-passkey-management/ - DanaBot malware is back to infecting Windows after 6-month break
BleepingComputer • 2025-11-12 08:34 • www.bleepingcomputer.com
The DanaBot malware has returned with a new version observed in attacks, six-months after law enforcement’s Operation Endgame disrupted its activity in May. […]
https://www.bleepingcomputer.com/news/security/danabot-malware-is-back-to-infecting-windows-after-6-month-break/ - Google Sues China-Based Hackers Behind $1 Billion Lighthouse Phishing Platform
The Hacker News • 2025-11-12 07:48 • thehackernews.com
Google has filed a civil lawsuit in the U.S. District Court for the Southern District of New York (SDNY) against China-based hackers who are behind a massive Phishing-as-a-Service (PhaaS) platform called Lighthouse that has ensnared over 1 million users across 120 countries.
The PhaaS kit is used to conduct large-scale SMS phishing attacks that exploit trusted brands like E-ZPass and USPS to
https://thehackernews.com/2025/11/google-sues-china-based-hackers-behind.html - Microsoft fixes bug causing false Windows 10 end-of-support alerts
BleepingComputer • 2025-11-12 07:29 • www.bleepingcomputer.com
Microsoft has resolved a bug causing incorrect Windows 10 end-of-support warnings on systems with active security coverage or still under active support after installing the October 2025 updates. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-bug-causing-false-windows-10-end-of-support-alerts/ - Extending Zero Trust to AI Agents: “Never Trust, Always Verify” Goes Autonomous
BleepingComputer • 2025-11-12 07:25 • www.bleepingcomputer.com
As AI agents gain autonomy to act, decide, and access data, traditional Zero Trust models fall short. Token Security explains how to extend “never trust, always verify” to agentic AI with scoped access, continuous monitoring, and human accountability. […]
https://www.bleepingcomputer.com/news/security/extending-zero-trust-to-ai-agents-never-trust-always-verify-goes-autonomous/ - Leading AI companies accidentally leak their passwords and digital keys on GitHub – what you need to know
Graham Cluley • 2025-11-12 06:45 • www.fortra.com
Many of the world’s top artificial intelligence companies are making a simple but dangerous mistake. They are accidentally publishing their passwords and digital keys on GitHub, the popular code-sharing website that is used by millions of developers every day.Read more in my article on the Fortra blog.
https://www.fortra.com/blog/ai-companies-accidentally-leak-passwords-digital-keys-github - New UK laws to strengthen critical infrastructure cyber defenses
BleepingComputer • 2025-11-12 06:08 • www.bleepingcomputer.com
The United Kingdom has introduced new legislation to boost cybersecurity defenses for hospitals, energy systems, water supplies, and transport networks against cyberattacks, linked to annual damages of nearly £15 billion ($19.6 billion). […]
https://www.bleepingcomputer.com/news/security/new-uk-laws-to-strengthen-critical-infrastructure-cyber-defenses/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
