Breaking News – Cyber Threats (last 6h)
Generated: 2025-12-01 16:00 PST
- [Guest Diary] Hunting for SharePoint In-Memory ToolShell Payloads, (Tue, Dec 2nd)
SANS ISC Diary (full) • 2025-12-01 15:27 • isc.sans.edu[This is a Guest Diary by James Woodworth, an ISC intern as part of the SANS.edu Bachelor&#;39;s Degree in Applied Cybersecurity (BACS) program [1].
- Glassworm malware returns in third wave of malicious VS Code packages
BleepingComputer • 2025-12-01 13:08 • www.bleepingcomputer.com
The Glassworm campaign, which first emerged on the OpenVSX and Microsoft Visual Studio marketplaces in October, is now in its third wave, with 24 new packages added on the two platforms. […]
https://www.bleepingcomputer.com/news/security/glassworm-malware-returns-in-third-wave-of-malicious-vs-code-packages/ - SmartTube YouTube app for Android TV breached to push malicious update
BleepingComputer • 2025-12-01 10:56 • www.bleepingcomputer.com
The popular open-source SmartTube YouTube client for Android TV was compromised after an attacker gained access to the developer’s signing keys, leading to a malicious update being pushed to users. […]
https://www.bleepingcomputer.com/news/security/smarttube-youtube-app-for-android-tv-breached-to-push-malicious-update/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
