Breaking News – Cyber Threats (last 6h)
Generated: 2025-12-04 12:00 PST
- Russia blocks FaceTime and Snapchat over use in terrorist attacks
BleepingComputer • 2025-12-04 11:12 • www.bleepingcomputer.com
Russian telecommunications watchdog Roskomnadzor has blocked access to Apple’s FaceTime video conferencing platform and the Snapchat instant messaging service, claiming they’re being used to coordinate terrorist attacks. […]
https://www.bleepingcomputer.com/news/security/russia-blocks-facetime-and-snapchat-over-use-in-terrorist-attacks/ - CISA warns of Chinese "BrickStorm" malware attacks on VMware servers
BleepingComputer • 2025-12-04 10:19 • www.bleepingcomputer.com
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned network defenders of Chinese hackers backdooring VMware vSphere servers with Brickstorm malware. […]
https://www.bleepingcomputer.com/news/security/cisa-warns-of-chinese-brickstorm-malware-attacks-on-vmware-servers/ - Why the record-breaking 30 Tbps DDoS attack should concern every business
Graham Cluley • 2025-12-04 09:41 • www.fortra.com
A new warning about the threat posed by Distributed Denial of Service (DDoS) attacks should make you sit up and listen.Read more in my article on the Fortra blog.
https://www.fortra.com/blog/why-record-breaking-30-tbps-ddos-attack-concern-business - Silver Fox Uses Fake Microsoft Teams Installer to Spread ValleyRAT Malware in China
The Hacker News • 2025-12-04 09:25 • thehackernews.com
The threat actor known as Silver Fox has been spotted orchestrating a false flag operation to mimic a Russian threat group in attacks targeting organizations in China.
The search engine optimization (SEO) poisoning campaign leverages Microsoft Teams lures to trick unsuspecting users into downloading a malicious setup file that leads to the deployment of ValleyRAT (Winos 4.0), a known malware
https://thehackernews.com/2025/12/silver-fox-uses-fake-microsoft-teams.html - Contractors with hacking records accused of wiping 96 govt databases
BleepingComputer • 2025-12-04 08:30 • www.bleepingcomputer.com
U.S. prosecutors have charged two Virginia brothers arrested on Wednesday with allegedly conspiring to steal sensitive information and destroy government databases after being fired from their jobs as federal contractors. […]
https://www.bleepingcomputer.com/news/security/contractors-with-hacking-records-accused-of-wiping-96-govt-databases/ - Critical React, Next.js flaw lets hackers execute code on servers
BleepingComputer • 2025-12-04 07:11 • www.bleepingcomputer.com
A maximum severity vulnerability, dubbed ‘React2Shell’, in the React Server Components (RSC) ‘Flight’ protocol allows remote code execution without authentication in React and Next.js applications. […]
https://www.bleepingcomputer.com/news/security/critical-react2shell-flaw-in-react-nextjs-lets-hackers-run-javascript-code/ - How strong password policies secure OT systems against cyber threats
BleepingComputer • 2025-12-04 07:11 • www.bleepingcomputer.com
OT environments rely on aging systems, shared accounts, and remote access, making weak or reused passwords a major attack vector. Specops Software explains how stronger password policies and continuous checks for compromised credentials help secure critical OT infrastructure. […]
https://www.bleepingcomputer.com/news/security/how-strong-password-policies-secure-ot-systems-against-cyber-threats/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
