Category: SecurityNews

Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Dec 22, 2025 1:19 PM

Tags: access, attack, automation, awareness, breach, china, conference, credentials, cybercrime, data, email, espionage, exploit, finance, government, group, hacker, hacking, linkedin, malicious, microsoft, military, phishing, qr, russia, tactics, threat, tool, unauthorized

Tools of the trade: What’s driving the surge is the availability of tools that make these attacks easy to execute. Proofpoint identified two primary kits: SquarePhish2 and Graphish.SquarePhish2 is an updated version of a tool originally published by Dell Secureworks in 2022. It automates the OAuth Device Grant Authorization flow and integrates QR code functionality.The…
Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Dec 22, 2025 1:19 PM

Tags: access, attack, automation, awareness, breach, china, conference, credentials, cybercrime, data, email, espionage, exploit, finance, government, group, hacker, hacking, linkedin, malicious, microsoft, military, phishing, qr, russia, tactics, threat, tool, unauthorized

Tools of the trade: What’s driving the surge is the availability of tools that make these attacks easy to execute. Proofpoint identified two primary kits: SquarePhish2 and Graphish.SquarePhish2 is an updated version of a tool originally published by Dell Secureworks in 2022. It automates the OAuth Device Grant Authorization flow and integrates QR code functionality.The…
Insider Threat: Hackers Paying Company Insiders to Bypass Security

Dec 22, 2025 1:19 PM

Tags: access, apple, cyber, dark-web, finance, hacker, threat

A new report from Check Point Research reveals a growing trend of cyber criminals recruiting employees at banks, telecoms, and tech giants. Learn how hackers use the darknet and Telegram to offer payouts up to $15,000 for internal access to companies like Apple, Coinbase, and the Federal Reserve. First seen on hackread.com Jump to article:…
WatchGuard Firebox firewalls under attack (CVE-2025-14733)

Dec 22, 2025 1:19 PM

Tags: attack, cve, firewall, Internet, remote-code-execution, vulnerability

More than 115,000 internet-facing WatchGuard Firebox firewalls may be vulnerable to compromise via CVE-2025-14733, a remote code execution vulnerability actively targeted by … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/12/22/watchguard-firebox-vulnerability-cve-2025-14733/
NHS Supplier Confirms Cyber-Attack, Operations Unaffected

Dec 22, 2025 1:19 PM

Tags: attack, breach, cyber, international

DXS International, an official partner of NHS England, said the breach has not affected its operations First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/uk-nhs-supplier-confirms/
10 Best Multi-Factor Authentication Solutions in 2026

Dec 22, 2025 12:19 PM

Tags: authentication, mfa, tool

Explore the 10 best MFA solutions in 2026. Compare features, pricing, pros, cons, and find the right multi-factor authentication tool for your business. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/12/10-best-multi-factor-authentication-solutions-in-2026/
15 Best Passwordless Authentication Solutions in 2026

Dec 22, 2025 12:19 PM

Tags: authentication

Compare the 15 best passwordless authentication solutions for 2026. Explore features, pricing, use cases, and how to choose the right tool. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/12/15-best-passwordless-authentication-solutions-in-2026/
9 MFA Mistakes in Manufacturing IT and Fixes

Dec 22, 2025 12:19 PM

Tags: authentication, mfa

Discover the most common MFA mistakes in manufacturing IT and learn practical fixes to improve security, uptime, and authentication on factory floors. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/12/9-mfa-mistakes-in-manufacturing-it-and-fixes/
DIG AI: Uncensored darknet AI assistant at the service of criminals and terrorists

Dec 22, 2025 12:19 PM

Tags: ai, dark-web, data, malicious, service, threat

Resecurity has identified the emergence of uncensored darknet AI assistants, enabling threat actors to leverage advanced data processing capabilities for malicious purposes. … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/12/22/resecurity-dig-ai-assistant-research/
Not all CISA-linked alerts are urgent: ASUS Live Update CVE-2025-59374

Dec 22, 2025 12:19 PM

Tags: attack, cisa, cve, infosec, software, supply-chain, update, vulnerability

An ASUS Live Update vulnerability tracked as CVE-2025-59374 has been making the rounds in infosec feeds, with some headlines implying recent or ongoing exploitation. A closer look, however, shows the CVE documents a historic supply-chain attack in an End-of-Life (EoL) software product, not a new attack. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/not-all-cisa-linked-alerts-are-urgent-asus-live-update-cve-2025-59374/
Nefilim Ransomware Affiliate Pleads Guilty

Dec 22, 2025 12:19 PM

Tags: attack, ransomware, ukraine

A Ukrainian man has pleaded guilty to charges connecting him to Nefilim ransomware attacks First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/nefilim-ransomware-affiliate/
Der Cloud zu vertrauen, reicht nicht aus – Sieben Gründe, warum Unternehmen Microsoft-365-Backups brauchen

Dec 22, 2025 12:19 PM

Tags: backup, cloud, microsoft

First seen on security-insider.de Jump to article: www.security-insider.de/sieben-gruende-warum-unternehmen-microsoft-365-backups-brauchen-a-6f44269b3effe6d09a2d568e060c47d2/
Bundesregierung: Nutzung von Datenbrokern ist Staatsgeheimnis

Dec 22, 2025 12:19 PM

Tags: governance

Die Bundesregierung will keine Angaben dazu machen, bei welchen Firmen deutsche Sicherheitsbehörden Nutzerdaten einkaufen. First seen on golem.de Jump to article: www.golem.de/news/bundesregierung-nutzung-von-datenbrokern-ist-staatsgeheimnis-2512-203514.html
Why Networking Is Your Secret Weapon in Cybersecurity Job Hunting

Dec 22, 2025 11:18 AM

Tags: conference, cybersecurity, jobs, open-source, skills

In this episode, Tom Eston discusses the unique challenges in the current cybersecurity job market, emphasizing the importance of networking. Tom provides practical tips on how to enhance networking skills, such as attending conferences, volunteering for open source projects, creating a blog, and seeking mentors. He also addresses misconceptions about the job shortage in cybersecurity……
University of Sydney discloses a data breach impacting 27,000 people

Dec 22, 2025 11:18 AM

Tags: breach, data, data-breach, hacker, threat

Hackers stole personal data of about 27,500 people from the University of Sydney after accessing an online code library, the university confirmed. The University of Sydney disclosed a data breach in which threat actors accessed an online code library and stole personal information linked to about 27,500 individuals, including current and former staff, affiliates, students,…
Docker makes hardened images free open and transparent for everyone

Dec 22, 2025 11:18 AM

Tags: container, docker, open-source

Docker has made its open source Docker Hardened Images project available at no cost for every developer and organization. The catalog contains more than 1,000 container images … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/12/22/free-open-docker-hardened-images/
574 arrests, $3 million recovered in Africa-wide cybercrime crackdown

Dec 22, 2025 11:18 AM

Tags: cybercrime, law

Law enforcement agencies across 19 countries arrested 574 suspects and recovered approximately $3 million during a major cybercrime operation spanning Africa. Suspects were … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/12/22/europol-africa-cybercrime-arrests-2025/
Ukrainian hacker admits affiliate role in Nefilim ransomware gang

Dec 22, 2025 11:18 AM

Tags: attack, hacker, ransomware, ukraine

A Ukrainian national pleaded guilty on Friday to conducting Nefilim ransomware attacks that targeted high-revenue businesses across the United States and other countries. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ukrainian-hacker-admits-affiliate-role-in-nefilim-ransomware-gang/
Scripted Sparrow Sends Millions of BEC Emails Each Month

Dec 22, 2025 11:18 AM

Tags: email, group

Fortra has uncovered a prolific BEC group dubbed “Scripted Sparrow” spanning three continents and at least five countries First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/scripted-sparrow-millions-bec-each/
EU-weite Standards für NIS 2 fehlen noch – Vom Versprechen zur Realität: Was NIS 2 kann und woran es noch fehlt

Dec 22, 2025 11:18 AM

Tags: nis-2

First seen on security-insider.de Jump to article: www.security-insider.de/nis2-eu-standards-meldeprozesse-lieferkette-a-f6ea51861527cb7f1785eca4b50787a3/
Geld futsch: Kryptotransfer von 50 Millionen US-Dollar geht schief

Dec 22, 2025 11:18 AM

Tags: crypto

Ein Krypto-Nutzer wollte 50 Millionen USDT transferieren. Trotz Testtransaktion ist fast alles in der falschen Wallet gelandet – und vermutlich für immer weg. First seen on golem.de Jump to article: www.golem.de/news/geld-futsch-krypto-transfer-von-50-millionen-us-dollar-geht-schief-2512-203511.html
Polygraph Controversy at CISA Sparks Internal Investigation, Six Staff Placed on Leave

Dec 22, 2025 10:19 AM

Tags: cisa, cyber, cybersecurity, defense, government, infrastructure

A failed polygraph test taken by the acting head of the Cybersecurity and Infrastructure Security Agency (CISA) has triggered an internal investigation at the Department of Homeland Security, placing at least six long-serving career officials on administrative leave and deepening turmoil inside the federal government’s lead civilian cyber defense agency. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cisa-acting-director-polygraph-test/
Critical RCE flaw impacts over 115,000 WatchGuard firewalls

Dec 22, 2025 10:19 AM

Tags: data-breach, exploit, firewall, flaw, rce, remote-code-execution, vulnerability

Over 115,000 WatchGuard Firebox devices exposed online remain unpatched against a critical remote code execution (RCE) vulnerability actively exploited in attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/over-115-000-watchguard-firewalls-vulnerable-to-ongoing-rce-attacks/
Critical RCE flaw impacts over 115,000 WatchGuard firewalls

Dec 22, 2025 10:19 AM

Tags: data-breach, exploit, firewall, flaw, rce, remote-code-execution, vulnerability

Over 115,000 WatchGuard Firebox devices exposed online remain unpatched against a critical remote code execution (RCE) vulnerability actively exploited in attacks. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/over-115-000-watchguard-firewalls-vulnerable-to-ongoing-rce-attacks/
Docker Hardened Images now open source and available for free

Dec 22, 2025 10:19 AM

Tags: apache, docker, open-source, software

More than a 1,000 Docker Hardened Images (DHI) are now freely available and open source for software builders, under the Apache 2.0 license. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/docker-hardened-images-now-open-source-and-available-for-free/
Termine – Das war der Microsoft Patchday 2025

Dec 22, 2025 10:19 AM

Tags: microsoft

First seen on security-insider.de Jump to article: www.security-insider.de/microsoft-patchday-2025-patch-tuesday-a-12587d100d02b61d2169217bdfbcc38b/
Leicht hackbar: Deutschlandticket-Betrug erreicht dreistellige Millionenhöhe

Dec 22, 2025 10:19 AM

Tags: fraud, vulnerability

IT-Sicherheitsforscher haben massive Schwachstellen beim Deutschlandticket aufgedeckt. Der Schaden durch Betrug liegt im dreistelligen Millionenbereich. First seen on golem.de Jump to article: www.golem.de/news/leicht-hackbar-deutschlandticket-betrug-erreicht-dreistellige-millionenhoehe-2512-203506.html
Kritische Sicherheitslücke: Laufende Attacken gefährden über 100.000 Firewalls

Dec 22, 2025 10:19 AM

Tags: bug, exploit, firewall, germany

Allein in Deutschland gibt es rund 13.000 anfällige Watchguard-Firewalls. Angreifer schleusen bereits Schadcode ein. Admins sollten zügig handeln. First seen on golem.de Jump to article: www.golem.de/news/kritische-firebox-luecke-laufende-attacken-gefaehrden-ueber-100-000-firewalls-2512-203504.html
Rubrik skizziert Cyberresilienz Ausblick 2026

Dec 22, 2025 9:19 AM

Tags: cloud, cyber, tool

Im Jahr 2026 wird der Mythos zusammenbrechen, dass native Cloud-Tools ausreichend sind. Denn Unternehmen erkennen, dass ihre isolierten Multi-Cloud-Umgebungen die Cyber-Wiederherstellung erheblich verlangsamen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/rubrik-skizziert-cyberresilienz-ausblick-2026/a43257/
Rubrik skizziert Cyberresilienz Ausblick 2026

Dec 22, 2025 9:19 AM

Tags: cloud, cyber, tool

Im Jahr 2026 wird der Mythos zusammenbrechen, dass native Cloud-Tools ausreichend sind. Denn Unternehmen erkennen, dass ihre isolierten Multi-Cloud-Umgebungen die Cyber-Wiederherstellung erheblich verlangsamen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/rubrik-skizziert-cyberresilienz-ausblick-2026/a43257/