Breaking News – Cyber Threats (last 6h)
Generated: 2025-12-22 12:00 PST
- Interpol-led action decrypts 6 ransomware strains, arrests hundreds
BleepingComputer • 2025-12-22 10:38 • www.bleepingcomputer.com
An Interpol-coordinated initiative called Operation Sentinel led to the arrest of 574 individuals and the recovery of $3 million linked to business email compromise, extortion, and ransomware incidents. […]
https://www.bleepingcomputer.com/news/security/interpol-led-action-decrypts-6-ransomware-strains-arrests-hundreds/ - Microsoft Is Finally Killing RC4
Schneier on Security • 2025-12-22 09:05 • www.schneier.comAfter twenty-six years, Microsoft is finally upgrading the last remaining instance of the encryption algorithm RC4 in Windows.
of the most visible holdouts in supporting RC4 has been Microsoft. Eventually, Microsoft upgraded Active Directory to support the much more secure AES encryption standard. But by default, Windows servers have continued to respond to RC4-based authentication requests and return an RC4-based response. The RC4 fallb…
https://www.schneier.com/blog/archives/2025/12/microsoft-is-finally-killing-rc4.html - Fake WhatsApp API Package on npm Steals Messages, Contacts, and Login Tokens
The Hacker News • 2025-12-22 08:28 • thehackernews.com
Cybersecurity researchers have disclosed details of a new malicious package on the npm repository that works as a fully functional WhatsApp API, but also contains the ability to intercept every message and link the attacker’s device to a victim’s WhatsApp account.
The package, named “lotusbail,” has been downloaded over 56,000 times since it was first uploaded to the registry by a user named “
https://thehackernews.com/2025/12/fake-whatsapp-api-package-on-npm-steals.html - Malicious npm package steals WhatsApp accounts and messages
BleepingComputer • 2025-12-22 08:08 • www.bleepingcomputer.com
A malicious package in the Node Package Manager (NPM) registry poses as a legitimate WhatsApp Web API library to steal WhatsApp messages, collect contacts, and gain access to the account. […]
https://www.bleepingcomputer.com/news/security/malicious-npm-package-steals-whatsapp-accounts-and-messages/ - Romanian water authority hit by ransomware attack over weekend
BleepingComputer • 2025-12-22 07:25 • www.bleepingcomputer.com
Romanian Waters (Administrația Națională Apele Române), the country’s water management authority, was hit by a ransomware attack over the weekend. […]
https://www.bleepingcomputer.com/news/security/romanian-water-authority-hit-by-ransomware-attack-over-weekend/ - University of Phoenix data breach impacts nearly 3.5 million individuals
BleepingComputer • 2025-12-22 06:18 • www.bleepingcomputer.com
The Clop ransomware gang has stolen the data of nearly 3.5 million University of Phoenix (UoPX) students, staff, and suppliers after breaching the university’s network in August. […]
https://www.bleepingcomputer.com/news/security/university-of-phoenix-data-breach-impacts-nearly-35-million-individuals/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
