IT Security Weekend Catch Up – December 20, 2025

Comments
close searching

20.12.2025 | 23:48

IT Security Weekend Catch Up – December 20, 2025
avatar

badcyber

comments

IT Security Weekend Catch Up – December 20, 2025

Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. What's up with the Russian spies?
  2. Polarisation is not about filter bubbles or echo chambers, here's why
  3. Amazon blocked 1,800 suspected North Korean scammers seeking jobs
  4. The Day China Hacked Google: Operation Aurora
  5. Received a message from Signal? Here’s how to recognize Signal’s official and only chat
  6. How safe is online banking? We explain how to stay safe when banking online or by smartphone app
  7. Analytics provider: We didn't expose smut site data to crims
  8. SoundCloud confirms breach after member data stolen, VPN access disrupted
  9. North Korea drives record $2 billion crypto theft year, pushing all-time total to $6.75 billion
  10. FBI disrupts virtual money laundering service used to facilitate criminal activity

For the more technical

  1. CWE Top 25 most dangerous software weaknesses
  2. Free micropatches for Windows Remote Access Connection Manager DoS (0day)
  3. Kali Linux 2025.4 release (desktop environments, Wayland & Halloween mode)
  4. Inside GhostPoster: How a PNG icon infected 50,000 Firefox users
  5. Kimwolf exposed: The massive Android botnet with 1.8 million infected devices
  6. Meet Cellik - a new Android RAT with Play Store integration
  7. 8 million users' AI conversations sold for profit by "privacy" extensions
  8. Should you trust your VPN location?
  9. GachiLoader: Defeating Node.js malware with API tracing
  10. CyberVolk returns: Flawed VolkLocker brings new features with growing pains
  11. SantaStealer is coming to town: A new, ambitious infostealer advertised on underground forums
  12. New PyStoreRAT malware targets OSINT researchers through GitHub
  13. Multiple threat actors exploit React2Shell (CVE-2025-55182)
  14. ResidentBat: Operational report & advisory on KGB spyware in Belarus in 2025
  15. ResidentBat: A new spyware family used by Belarusian KGB
  16. BlueDelta’s persistent campaign against UKR.NET
  17. Handbook on the role of non-state actors in Russian hybrid threats
  18. LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan
  19. UAT-9686 actively targets Cisco Secure Email Gateway and Secure Email and Web Manager

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.


Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy! For the less technical What’s up with the Russian spies? Polarisation is not about filter bubbles or echo chambers, here 2025-12-20T23:48:40+01:00

Comments