Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!
For the less technical
- Will the EU spy on all our conversations?
- Agents of chaos: The shadow campaign against the West
- Meta is earning a fortune on a deluge of fraudulent ads, documents show
- Manufacturer issues remote kill command to disable smart vacuum after engineer blocks it from collecting data — user revives it with custom hardware and Python scripts to run offline
- Chicago firm that resolves ransomware attacks had rogue workers carrying out their own hacks, FBI says
- Akira ransomware claims it stole 23GB from Apache OpenOffice
For the more technical
- Android Security Bulletin—November 2025
- Analysis of NGate malware campaign (NFC relay)
- What's changed in the OWASP Top 10 for 2025
- Clop ransomware: Dissecting network
- Curly COMrades: Evasion and persistence via Hidden Hyper-V virtual machines
- Gootloader returns: What goodies did they bring?
- Malicious infrastructure finds stability with aurologic GmbH
- Fantasy Hub: Another Russian based RAT as M-a-a-S
- LeakyInjector and LeakyStealer duo hunts for crypto and browser history
- Remote access, real cargo: cybercriminals targeting trucking and logistics
- Phishing campaigns “I paid twice” targeting Booking.com hotels and customers
- UNC6384 weaponizes ZDI-CAN-25373 vulnerability to deploy PlugX against Hungarian and Belgian diplomatic entities
- Operation SkyCloak: Tor campaign targets military of Russia & Belarus
- GTIG AI threat tracker: Advances in threat actor usage of AI tools
- DPRK’s playbook: Kimsuky’s HttpTroy and Lazarus’s new BLINDINGCAN variant
- Operation Peek-a-Baku: Silent Lynx APT makes sluggish shift to Dushanbe
- Crossed wires: a case study of Iranian espionage and attribution
Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.
Comments