IT Security Weekend Catch Up – December 26, 2025

Comments
close searching

26.12.2025 | 16:29

IT Security Weekend Catch Up – December 26, 2025
avatar

badcyber

comments

IT Security Weekend Catch Up – December 26, 2025

Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. How Romanians helped conservative brothers in Poland win elections
  2. ChatGPT’s ‘adult mode’ is expected to debut in Q1 2026
  3. Pirate archivist group scrapes Spotify's 300TB library, posts free torrents for downloading 86,000,000 tracks
  4. Most parked domains now serving malicious content
  5. Acting CISA director failed a polygraph. Career staff are now under investigation
  6. Tren de Aragua members and leaders indicted in multi-million dollar ATM jackpotting scheme
  7. 574 arrests and USD 3 million recovered in coordinated cybercrime operation across Africa

For the more technical

  1. Operational analysis of communication channels in mobile RCS
  2. Vanguard security update: Closing the pre-boot gap
  3. Fake MAS Windows activation domain used to spread PowerShell malware
  4. Browser hijacking: Three technique studies
  5. Malicious Chrome extensions “Phantom Shuttle” masquerade as a VPN to intercept traffic and exfiltrate credentials
  6. ClickFix attacks still using the finger
  7. From ClickFix to code signed: the quiet shift of MacSync Stealer malware
  8. Technical analysis of the BlackForce phishing kit
  9. From linear to complex: An upgrade in RansomHouse encryption
  10. Phantom 3.5: Initial vector analysis & forensics
  11. GachiLoader: Defeating Node.js malware with API tracing
  12. GhostPairing attacks: From phone number to full access in WhatsApp
  13. NPM package with 56k downloads caught stealing WhatsApp messages
  14. 2025 Report: Destructive malware in open source packages
  15. Kimsuky distributing malicious mobile app via QR code
  16. BlindEagle targets Colombian government agency with Caminho and DCRAT
  17. Inside Ink Dragon: Revealing the relay network and inner workings of a stealthy offensive operation
  18. Operation Artemis: Analysis of HWP-based DLL side loading attacks
  19. Tracing a Paper Werewolf campaign through AI-generated decoys and Excel XLLs

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.


Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy! For the less technical How Romanians helped conservative brothers in Poland win elections ChatGPT’s ‘adult mode’ is expe 2025-12-26T16:29:38+01:00

Comments