Breaking News – Cyber Threats (last 6h)
Generated: 2025-11-25 07:00 PST
- Microsoft is speeding up the Teams desktop client for Windows
BleepingComputer • 2025-11-25 06:24 • www.bleepingcomputer.com
Microsoft says it will add a new Teams call handler beginning in January 2026 to reduce launch times and boost call performance for the Windows desktop client. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-to-boost-teams-performance-with-new-call-handler/ - JackFix Uses Fake Windows Update Pop-Ups on Adult Sites to Deliver Multiple Stealers
The Hacker News • 2025-11-25 06:18 • thehackernews.com
Cybersecurity researchers are calling attention to a new campaign that’s leveraging a combination of ClickFix lures and fake adult websites to deceive users into running malicious commands under the guise of a “critical” Windows security update.
“Campaign leverages fake adult websites (xHamster, PornHub clones) as its phishing mechanism, likely distributed via malvertising,” Acronis said in a
https://thehackernews.com/2025/11/jackfix-uses-fake-windows-update-pop.html - Year-end approaches: How to maximize your cyber spend
BleepingComputer • 2025-11-25 06:03 • www.bleepingcomputer.com
Year-end budgeting is the perfect time to close real security gaps by strengthening identity controls, reducing redundant tools, and investing in outcome-driven engagements. The article highlights how targeting credential risks and documenting results helps teams maximize spend and justify next year’s budget. […]
https://www.bleepingcomputer.com/news/security/year-end-approaches-how-to-maximize-your-cyber-spend/ - Code beautifiers expose credentials from banks, govt, tech orgs
BleepingComputer • 2025-11-25 04:01 • www.bleepingcomputer.com
Thousands of credentials, authentication keys, and configuration data impacting organizations in sensitive sectors have been sitting in publicly accessible JSON snippets submitted to the JSONFormatter and CodeBeautify online tools that format and structure code. […]
https://www.bleepingcomputer.com/news/security/code-beautifiers-expose-credentials-from-banks-govt-tech-orgs/ - Four Ways AI Is Being Used to Strengthen Democracies Worldwide
Schneier on Security • 2025-11-25 04:00 • www.schneier.comDemocracy is colliding with the technologies of artificial intelligence. Judging from the audience reaction at the recent World Forum on Democracy in Strasbourg, the general expectation is that democracy will be the worse for it. We have another narrative. Yes, there are risks to democracy from AI, but there are also opportunities.
We have just published the book Rewiring Democracy: How AI will Transform Politics, Government, and Citizenship.<...
https://www.schneier.com/blog/archives/2025/11/four-ways-ai-is-being-used-to-strengthen-democracies-worldwide.html - ToddyCat’s New Hacking Tools Steal Outlook Emails and Microsoft 365 Access Tokens
The Hacker News • 2025-11-25 03:36 • thehackernews.com
The threat actor known as ToddyCat has been observed adopting new methods to obtain access to corporate email data belonging to target companies, including using a custom tool dubbed TCSectorCopy.
“This attack allows them to obtain tokens for the OAuth 2.0 authorization protocol using the user’s browser, which can be used outside the perimeter of the compromised infrastructure to access
https://thehackernews.com/2025/11/toddycats-new-hacking-tools-steal.html - 3 SOC Challenges You Need to Solve Before 2026
The Hacker News • 2025-11-25 03:30 • thehackernews.com
2026 will mark a pivotal shift in cybersecurity. Threat actors are moving from experimenting with AI to making it their primary weapon, using it to scale attacks, automate reconnaissance, and craft hyper-realistic social engineering campaigns.
The Storm on the Horizon
Global world instability, coupled with rapid technological advancement, will force security teams to adapt not just their
https://thehackernews.com/2025/11/3-soc-challenges-you-need-to-solve.html - Hackers Hijack Blender 3D Assets to Deploy StealC V2 Data-Stealing Malware
The Hacker News • 2025-11-25 03:28 • thehackernews.com
Cybersecurity researchers have disclosed details of a new campaign that has leveraged Blender Foundation files to deliver an information stealer known as StealC V2.
“This ongoing operation, active for at least six months, involves implanting malicious .blend files on platforms like CGTrader,” Morphisec researcher Shmuel Uzan said in a report shared with The Hacker News.
“Users unknowingly
https://thehackernews.com/2025/11/hackers-hijack-blender-3d-assets-to.html - Dartmouth College confirms data breach after Clop extortion attack
BleepingComputer • 2025-11-25 03:12 • www.bleepingcomputer.com
Dartmouth College has disclosed a data breach after the Clop extortion gang leaked data allegedly stolen from the school’s Oracle E-Business Suite servers on its dark web leak site. […]
https://www.bleepingcomputer.com/news/security/dartmouth-college-confirms-data-breach-after-clop-extortion-attack/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
