Breaking News – Cyber Threats (last 6h)
Generated: 2025-12-23 02:00 PST
- Baker University says 2024 data breach impacts 53,000 people
BleepingComputer • 2025-12-23 01:50 • www.bleepingcomputer.com
Baker University has disclosed a data breach after attackers gained access to its network one year ago and stole the personal, health, and financial information of over 53,000 individuals. […]
https://www.bleepingcomputer.com/news/security/baker-university-data-breach-impacts-over-53-000-individuals/ - U.S. DoJ Seizes Fraud Domain Behind $14.6 Million Bank Account Takeover Scheme
The Hacker News • 2025-12-23 00:15 • thehackernews.com
The U.S. Justice Department (DoJ) on Monday announced the seizure of a web domain and database that it said was used to further a criminal scheme designed to target and defraud Americans by means of bank account takeover fraud.
The domain in question, web3adspanels[.]org, was used as a backend web panel to host and manipulate illegally harvested bank login credentials. Users to the website are
https://thehackernews.com/2025/12/us-doj-seizes-fraud-domain-behind-146.html - From cheats to exploits: Webrat spreading via GitHub
Securelist • 2025-12-23 00:00 • securelist.com
We dissect the new Webrat campaign where the Trojan spreads via GitHub repositories, masquerading as critical vulnerability exploits to target cybersecurity researchers.
https://securelist.com/webrat-distributed-via-github/118555/ - 167: Threatlocker
Darknet Diaries • 2025-12-23 00:00 • darknetdiaries.comA manufacturer gets hit with ransomware. A hospital too. Learn how Threatlocker stops these types of attacks. This episode is brought to you by Threatlocker.
Sponsors
This episode is sponsored by ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the ke…
https://darknetdiaries.com/episode/167/ - Critical n8n Flaw (CVSS 9.9) Enables Arbitrary Code Execution Across Thousands of Instances
The Hacker News • 2025-12-22 23:34 • thehackernews.com
A critical security vulnerability has been disclosed in the n8n workflow automation platform that, if successfully exploited, could result in arbitrary code execution under certain circumstances.
The vulnerability, tracked as CVE-2025-68613, carries a CVSS score of 9.9 out of a maximum of 10.0. The package has about 57,000 weekly downloads, according to statistics on npm.
“Under certain
https://thehackernews.com/2025/12/critical-n8n-flaw-cvss-99-enables.html - FCC Bans Foreign-Made Drones and Key Parts Over U.S. National Security Risks
The Hacker News • 2025-12-22 22:58 • thehackernews.com
The U.S. Federal Communications Commission (FCC) on Monday announced a ban on all drones and critical components made in a foreign country, citing national security concerns.
To that end, the agency has added to its Covered List Uncrewed aircraft systems (UAS) and UAS critical components produced in a foreign country, and all communications and video surveillance equipment and services pursuant
https://thehackernews.com/2025/12/fcc-bans-foreign-made-drones-and-key.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
