🔐 Google is shutting down its dark web monitoring tool less than two years after launch.

Google admitted the tool surfaced breached data but didn’t give people clear next steps. Alerts without action paths don’t change outcomes.

🔗 Read here: https://thehackernews.com/2025/12/google-to-shut-down-dark-web-monitoring.html

Attackers are abusing React2Shell to plant Linux backdoors like KSwapDoor and ZnDoor.

This hits orgs that left React and Next.js servers unpatched.

Microsoft saw reverse shells, Cobalt Strike, and stolen cloud tokens tied to CVE-2025-55182, and Shadowserver tracks over 111,000 exposed IPs.

🔗 Details → https://thehackernews.com/2025/12/react2shell-vulnerability-actively.html

🚨 Fortinet FortiGate devices are under active attack via SSO authentication bypass flaws.

CVE-2025-59718 and CVE-2025-59719 both have CVSS scores of 9.8 and exploit the FortiCloud SSO feature.

Disable FortiCloud SSO until systems are fully updated.

🔗 Details → https://thehackernews.com/2025/12/fortinet-fortigate-under-active-attack.html

⚠️ Most privacy risks aren't malicious.
It’s accidental.

A log statement. A helper function. An AI SDK someone added on Friday.

If you only look in production, you’re blind by design.

Read more → https://thehackernews.com/2025/12/why-data-security-and-privacy-need-to.html

⚡ Amazon confirms a Russian GRU unit hacked Western energy and infrastructure networks for years.

The threat wasn’t malware, it was silent credential theft from live traffic.

From 2021–2025, APT44 relied less on zero-days and more on exposed routers and VPN gateways.

🔗 Read → https://thehackernews.com/2025/12/amazon-exposes-years-long-gru-cyber.html

💰 A fake NuGet package stole crypto wallets for more than five years.

It copied a popular .NET tracing library and hid as a normal dependency. One extra letter in the author name led to about 2,000 downloads since 2020.

It exfiltrated Stratis wallet JSON files and passwords to a Russian IP.

🔗 Read: https://thehackernews.com/2025/12/rogue-nuget-package-poses-as-tracerfody.html

🛑 Amazon flagged a new AWS crypto-mining campaign using custom persistence techniques.

Attackers validate permissions with DryRun, deploy miners across ECS and EC2, then enable instance termination protection to block cleanup.

🔗 Learn more: https://thehackernews.com/2025/12/compromised-iam-credentials-power-large.html

https://github.com/niedev/RTranslator

RTranslator (Beta)

RTranslator is an (almost) open-source, free, and offline real-time translation app for Android.

Connect to someone who has the app, connect Bluetooth headphones, put the phone in your pocket and you can have a conversation as if the other person spoke your language.