Latest Internet & Cybersecurity News
Cisco Email Security Zero-Day Actively Exploited by Chinese Threat Group
A suspected Chinese-nexus group has compromised Cisco email security devices since late November 2025, planting backdoors and log-purging tools. CVE-2025-20393 allows unauthenticated remote code execution with CVSS 10.0, added to CISA KEV catalog; over 100 devices affected worldwide.
Cisco urges immediate patching by December 24.
PornHub Suffers Major Data Breach Exposing 1.2M User Credentials
Attackers stole usernames, emails, and encrypted passwords from over 1.2 million PornHub accounts, fueling credential stuffing risks. The breach highlights vulnerabilities in adult platforms and third-party risk management.
Investigations ongoing amid extortion attempts linked to Mixpanel data exposure.
SoundCloud Breached and Hit by Repeated DoS Attacks
SoundCloud confirmed a data breach and ongoing denial-of-service attacks, causing VPN user connection failures. Users reported errors in days leading to disclosure on December 22, 2025.
The incident underscores risks to streaming services during high traffic periods.
PCPcat Malware Compromises 59,000 Servers via Next.js and React RCE Flaws
PCPcat exploits CVE-2025-29927 and CVE-2025-66478 for unauthenticated RCE, hijacking Node.js processes in under 48 hours. Attackers exfiltrate credentials and deploy tunneling tools like GOST and FRP.
Over 59,000 servers impacted globally.
Holiday Phishing and AI-Driven Scams Surge 30% During Christmas 2025
Cybercriminals exploit shoppers with fake deals, 33,500+ Christmas-themed phishing emails, and 10,000 daily phony ads. AI lowers barriers for realistic scams impersonating Walmart, FedEx via urgent delivery notifications.
Delivery scams doubled since 2024, stealing credentials en masse.
Ransomware Payments Hit Record $2.1 Billion in 2025
Global ransomware payments soared to $2.1 billion this year, driven by aggressive attacks on critical sectors. Nation-state actors amplify disruptions in infrastructure.
Financial incentives fuel escalating threats into 2026.
North Korean Hackers Lead Crypto Theft with $2.02 Billion Stolen in 2025
North Korea-linked groups stole $2.02 billion in cryptocurrency, topping global theft via large-service breaches. Chainalysis reports shift to high-value targets for quick monetization.
Microsoft 365 users also targeted in device code phishing.
Russian APT28 Targets Ukrainian UKR.NET with Credential Harvesting
BlueDelta (Fancy Bear) sends fake PDFs linking to phishing portals, stealing logins, 2FA, and IPs via ngrok tunnels. Campaign hits popular Ukrainian webmail and news service.
Infrastructure masks C2 for persistent access.
CISA Adds Multiple Flaws to KEV: Cisco, SonicWall, Fortinet, Apple
U.S. CISA cataloged exploited vulnerabilities in Cisco IOS XE, SonicWall SMA, Fortinet products, WatchGuard, ASUS, and Apple. SonicWall flaw actively exploited; hackers hit Fortinet days post-patch.
Agencies mandate urgent mitigations.
Scripted Sparrow BEC Ring Tracked in Global Phishing Campaigns
Fortra tracked Scripted Sparrow from June 2024-December 2025, posing as firms to phish finance teams for wire transfers. Highly targeted emails evade detection in persistent operation.
ESET uncovers LongNosedGoblin APT using Group Policy for Southeast Asia surveillance.
GhostPairing Abuses WhatsApp Linking for Account Hijacking
GhostPairing campaign exploits WhatsApp device pairing from phone numbers to gain full access. Attackers hijack accounts via malicious links.
Added to ongoing threats in weekly security roundups.
DDoS Attacks Surge Dramatically in 2025 Targeting Critical Infrastructure
Distributed Denial of Service attacks escalated, risking online services and key sectors. Android botnet Kimwolf infects 1.8M+ devices for DDoS strikes.
SoundCloud among recent high-profile victims.