CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV on November 30, 2025 Posted by The Hacker News
Friday Squid Blogging: Flying Neon Squid Found on Israeli Beach on November 28, 2025 Posted by Bruce Schneier
Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages on November 28, 2025 Posted by The Hacker News
North Korean Hackers Deploy 197 npm Packages to Spread Updated OtterCookie Malware on November 28, 2025 Posted by The Hacker News
Posted in Hacking news Salesforce Flags Unauthorized Data Access via Gainsight-Linked OAuth Activity on November 20, 2025 The Hacker News
ISC Stormcast For Friday, November 21st, 2025 https://isc.sans.edu/podcastdetail/9710, (Fri, Nov 21st) on November 20, 2025 SANS Internet Storm Center, InfoCON: green
Posted in A Little Sunshine Mozilla Says It’s Finally Done With Two-Faced Onerep on November 20, 2025 BrianKrebs
Posted in Astaroth WhatsApp compromise leads to Astaroth deployment on November 20, 2025 Mindi McDowell
Posted in Hacking news ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet on November 20, 2025 The Hacker News
Posted in Guest blog UK’s new cybersecurity bill takes aim at ransomware gangs and state-backed hackers on November 20, 2025 Graham Cluley
Posted in Hacking news Tsundere Botnet Expands Using Game Lures and Ethereum-Based C2 on Windows on November 20, 2025 The Hacker News
Oracle Identity Manager Exploit Observation from September (CVE-2025-61757), (Thu, Nov 20th) on November 20, 2025 SANS Internet Storm Center, InfoCON: green
Posted in Hacking news ThreatsDay Bulletin: 0-Days, LinkedIn Spies, Crypto Crimes, IoT Flaws and New Malware Waves on November 20, 2025 The Hacker News
