π΄ Google confirms new Chrome zero-day under attack.
The flaw β CVE-2025-13223 β lets hackers run code through a crafted web page.
Itβs the third V8 exploit this year, and itβs already being used in the wild.
Patch now β https://thehackernews.com/2025/11/google-issues-security-fix-for-actively.html
The flaw β CVE-2025-13223 β lets hackers run code through a crafted web page.
Itβs the third V8 exploit this year, and itβs already being used in the wild.
Patch now β https://thehackernews.com/2025/11/google-issues-security-fix-for-actively.html
π±18π₯9π4π2π1
π₯ Microsoft stopped the biggest DDoS attack ever seen in the cloud β 5.72 Tbps from over 500,000 hacked routers and cameras.
The attack came from an IoT botnet called AISURU.
The devices are still infected β and could strike again.
Read here β https://thehackernews.com/2025/11/microsoft-mitigates-record-572-tbps.html
The attack came from an IoT botnet called AISURU.
The devices are still infected β and could strike again.
Read here β https://thehackernews.com/2025/11/microsoft-mitigates-record-572-tbps.html
π24π5π5
β οΈ Seven npm packages were caught hiding crypto scams.
They used a cloaking tool called Adspect to dodge detection β even blocking dev tools to stay invisible.
Learn more β https://thehackernews.com/2025/11/seven-npm-packages-use-adspect-cloaking.html
They used a cloaking tool called Adspect to dodge detection β even blocking dev tools to stay invisible.
Learn more β https://thehackernews.com/2025/11/seven-npm-packages-use-adspect-cloaking.html
π8
Dev teams often waste valuable time and effort sifting through vulnerabilities⦠just to determine if a container is safe.
ActiveStateβs new Secure Container Image Catalog simplifies how teams find, compare, and pull secure containers.
The growing catalog, which offers free container images for languages like Python and Java, provides:
πΉ Real-time vulnerability insights and VEX advisories
πΉ Full SBOMs and component details for complete transparency
πΉ Reliable architecture and compatibility data
πΉ The ability to directly compare and pull secure images
Check out the catalog to simplify your container image selection: https://thn.news/state-images
ActiveStateβs new Secure Container Image Catalog simplifies how teams find, compare, and pull secure containers.
The growing catalog, which offers free container images for languages like Python and Java, provides:
πΉ Real-time vulnerability insights and VEX advisories
πΉ Full SBOMs and component details for complete transparency
πΉ Reliable architecture and compatibility data
πΉ The ability to directly compare and pull secure images
Check out the catalog to simplify your container image selection: https://thn.news/state-images
π₯5
π€ Most cyberattacks donβt start with hackers β they start with machine accounts.
Non-human identities now outnumber people 50 to 1, and most orgs still canβt see or secure them.
A new approach called Identity Security Fabric fixes that.
Read how it works β https://thehackernews.com/2025/11/beyond-iam-silos-why-identity-security.html
Non-human identities now outnumber people 50 to 1, and most orgs still canβt see or secure them.
A new approach called Identity Security Fabric fixes that.
Read how it works β https://thehackernews.com/2025/11/beyond-iam-silos-why-identity-security.html
π6π2π2
Iranβs UNC1549 hackers hit defense networks without even touching them.
They broke in through third-party Citrix and Azure accounts and dropped backdoors β TWOSTROKE and DEEPROOT β that can sit quiet for months.
Theyβre now active across the Middle Eastβs aerospace supply chain.
Read this latest report β https://thehackernews.com/2025/11/iranian-hackers-use-deeproot-and.html
They broke in through third-party Citrix and Azure accounts and dropped backdoors β TWOSTROKE and DEEPROOT β that can sit quiet for months.
Theyβre now active across the Middle Eastβs aerospace supply chain.
Read this latest report β https://thehackernews.com/2025/11/iranian-hackers-use-deeproot-and.html
π10π±5π₯1π1
π A U.S. real-estate giant was nearly hacked β through a fake Microsoft Teams chat.
Attackers used Tuoni, a free red-team tool from GitHub, to run hidden code straight in memory.
Even the script showed signs of AI-written code.
How ethical hacking tools are turning against us β https://thehackernews.com/2025/11/researchers-detail-tuoni-c2s-role-in.html
Attackers used Tuoni, a free red-team tool from GitHub, to run hidden code straight in memory.
Even the script showed signs of AI-written code.
How ethical hacking tools are turning against us β https://thehackernews.com/2025/11/researchers-detail-tuoni-c2s-role-in.html
π7π₯4π1
βοΈ Your cloud might already be wide open.
One weak access rule can expose everything β data, customers, compliance.
Join our free WEBINAR with CyberArk experts to learn simple ways to close those gaps fast & keep your data safe.
Save your spot now β https://thehackernews.com/2025/11/learn-how-leading-companies-secure.html
One weak access rule can expose everything β data, customers, compliance.
Join our free WEBINAR with CyberArk experts to learn simple ways to close those gaps fast & keep your data safe.
Save your spot now β https://thehackernews.com/2025/11/learn-how-leading-companies-secure.html
π4π2π₯1
Meta just expanded WhatsAppβs security research.
πΉ New βResearch Proxyβ tool lets experts dig deeper
πΉ$4M paid to bug hunters this year
Big money. Bigger stakes.
Read here β https://thehackernews.com/2025/11/meta-expands-whatsapp-security-research.html
πΉ New βResearch Proxyβ tool lets experts dig deeper
πΉ$4M paid to bug hunters this year
Big money. Bigger stakes.
Read here β https://thehackernews.com/2025/11/meta-expands-whatsapp-security-research.html
π11π€2π1
This media is not supported in your browser
VIEW IN TELEGRAM
π¨ Hackers just upgraded their phishing game. A fake Microsoft login now looks 100% real β even showing a real URL and CAPTCHA check.
Itβs part of a new βSneaky 2FAβ phishing kit that lets anyone steal accounts without real skills.
Even pros are getting tricked.
Hereβs how it works β https://thehackernews.com/2025/11/sneaky-2fa-phishing-kit-adds-bitb-pop.html
Itβs part of a new βSneaky 2FAβ phishing kit that lets anyone steal accounts without real skills.
Even pros are getting tricked.
Hereβs how it works β https://thehackernews.com/2025/11/sneaky-2fa-phishing-kit-adds-bitb-pop.html
π₯19π€―4π2π2
Fortinet has confirmed a new FortiWeb flaw β CVE-2025-58034 β already exploited in the wild.
It lets authenticated attackers execute OS commands via crafted requests.
Full story β https://thehackernews.com/2025/11/fortinet-warns-of-new-fortiweb-cve-2025.html
It lets authenticated attackers execute OS commands via crafted requests.
Full story β https://thehackernews.com/2025/11/fortinet-warns-of-new-fortiweb-cve-2025.html
π6π5β‘2
We say βtrust but verify.β
In SaaS, most teams trust onceβand never verify again. Old tokens stay valid. Apps keep broad access.
Thatβs how attackers move in quietly.
Gal Nakash explains why Zero Trust fails in practice and what to fix β https://thehackernews.com/expert-insights/2025/11/the-problem-with-trust-but-verify-is.html
In SaaS, most teams trust onceβand never verify again. Old tokens stay valid. Apps keep broad access.
Thatβs how attackers move in quietly.
Gal Nakash explains why Zero Trust fails in practice and what to fix β https://thehackernews.com/expert-insights/2025/11/the-problem-with-trust-but-verify-is.html
π€9π4π₯3π1
π¨ Hackers turned software updates into malware.
ESET found a China-linked group called PlushDaemon using a tool named EdgeStepper to hijack internet routers and reroute updates straight to fake servers.
So that βsafe updateβ? It could install spyware instead.
Full story β https://thehackernews.com/2025/11/edgestepper-implant-reroutes-dns.html
ESET found a China-linked group called PlushDaemon using a tool named EdgeStepper to hijack internet routers and reroute updates straight to fake servers.
So that βsafe updateβ? It could install spyware instead.
Full story β https://thehackernews.com/2025/11/edgestepper-implant-reroutes-dns.html
π₯6π5π2
π¨ New exploit found in ServiceNowβs Now Assist AI platform.
Researchers showed one AI agent could recruit others to steal data and send emails β even with protections enabled.
Misconfigurations, not models, opened the door.
How it happened β https://thehackernews.com/2025/11/servicenow-ai-agents-can-be-tricked.html
Researchers showed one AI agent could recruit others to steal data and send emails β even with protections enabled.
Misconfigurations, not models, opened the door.
How it happened β https://thehackernews.com/2025/11/servicenow-ai-agents-can-be-tricked.html
π5π2
π΅οΈββοΈ How many AI assets are running in your organization right now? If you canβt answer that, youβre not alone.
From hidden models in Jupyter notebooks to AI-powered features buried in SaaS tools, AI is spreading faster than most teams can track.
Tomorrow! Join this live webinar to learn:
πΉ How to discover and catalog AI assets you didnβt know existed
πΉ Why AI inventory is the foundation for effective AI security and governance
π https://thn.news/guide-ai-inventory
From hidden models in Jupyter notebooks to AI-powered features buried in SaaS tools, AI is spreading faster than most teams can track.
Tomorrow! Join this live webinar to learn:
πΉ How to discover and catalog AI assets you didnβt know existed
πΉ Why AI inventory is the foundation for effective AI security and governance
π https://thn.news/guide-ai-inventory
π6π5
β οΈ Hackers just took over tens of thousands of old ASUS routers around the world.
They used six known bugs to build a massive hidden network β still active right now. Each router even shares a weird 100-year security certificate.
Full story β https://thehackernews.com/2025/11/wrthug-exploits-six-asus-wrt-flaws-to.html
They used six known bugs to build a massive hidden network β still active right now. Each router even shares a weird 100-year security certificate.
Full story β https://thehackernews.com/2025/11/wrthug-exploits-six-asus-wrt-flaws-to.html
π11π3π₯2
Hackers are using trusted apps to attack.
ThreatLockerβs Ringfencingβ’ stops them β blocking PowerShell, macros, and other risky actions before they spread.
Learn how it works β https://thehackernews.com/2025/11/application-containment-how-to-use.html
ThreatLockerβs Ringfencingβ’ stops them β blocking PowerShell, macros, and other risky actions before they spread.
Learn how it works β https://thehackernews.com/2025/11/application-containment-how-to-use.html
π€6
βοΈ Your cloud is growing faster than your security.
π One stolen login could bring it all down.
Join the LIVE session next week and learn how top teams lock it down β without slowing down devs.
π Save your spot now β https://thehacker.news/securing-cloud-workloads
π One stolen login could bring it all down.
Join the LIVE session next week and learn how top teams lock it down β without slowing down devs.
π Save your spot now β https://thehacker.news/securing-cloud-workloads
β‘8
π¨ A new WhatsApp worm is spreading fast in Brazil.
It hijacks chats, sends fake messages to all your contacts, and installs a program that steals bank and crypto logins.
... and it updates itself through an email inbox to stay hidden.
Read here β https://thehackernews.com/2025/11/python-based-whatsapp-worm-spreads.html
It hijacks chats, sends fake messages to all your contacts, and installs a program that steals bank and crypto logins.
... and it updates itself through an email inbox to stay hidden.
Read here β https://thehackernews.com/2025/11/python-based-whatsapp-worm-spreads.html
π€―9π5π₯3π±2β‘1
β οΈ Hackers are exploiting a new 7-Zip flaw right now.
A simple ZIP file can break into Windows through a hidden link trick.
The bugβs been patched β but many still havenβt updated.
Details here (CVE-2025-11001) β https://thehackernews.com/2025/11/hackers-actively-exploiting-7-zip.html
A simple ZIP file can break into Windows through a hidden link trick.
The bugβs been patched β but many still havenβt updated.
Details here (CVE-2025-11001) β https://thehackernews.com/2025/11/hackers-actively-exploiting-7-zip.html
π10π€5π₯4π±2