WA man jailed for at least five years for evil twin attack
A Western Australian man will serve at least five years in prison for setting up fake wifi networks at airports and in-flight to steal credentials…
Month: November 2025
Sydney Metro looking to appoint temporary CIO
Sydney Metro is looking to appoint a new CIO on a fixed 18-month term to match the construction schedules of major extensions to its rail network.…
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 73
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Analysis of ShadowPad Attack…
Security Affairs newsletter Round 552 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs newsletter Round 552 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini November 30, 2025 A new round of the weekly Security Affairs newsletter…
Quttera Launches “Evidence-as-Code” API to Automate Security Compliance for SOC 2 and PCI DSS v4.0
Quttera today announced major enhancements to its Web Malware Scanner API that transform static security scanning into automated compliance evidence. The update introduces real-time evidence…
CSP Bypasses: Advanced Exploitation Guide
Content Security Policies (CSPs) are often deployed as the last line of defense against client-side attacks such as cross-site scripting (XSS) and clickjacking. Since their…
CISA Adds Actively Exploited XSS Bug CVE-2021-26829 in OpenPLC ScadaBR to KEV
Nov 30, 2025Ravie LakshmananHacktivism / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) catalog to include a…
Week in review: Fake “Windows Update” fuels malware, Salesforce details Gainsight breach
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Quantum encryption is pushing satellite hardware to its limitsIn this…
Contagious Interview campaign expands with 197 npm Ppackages spreading new OtterCookie malware
Contagious Interview campaign expands with 197 npm Ppackages spreading new OtterCookie malware Pierluigi Paganini November 30, 2025 North Korea-linked actors behind Contagious Interview uploaded 197…
This month in security with Tony Anscombe – November 2025 edition
Data exposure by top AI companies, the Akira ransomware haul, Operation Endgame against major malware families, and more of this month’s cybersecurity news 28 Nov…
Albiriox Malware Emerges, Targeting Android Users for Full Device Takeover
A dangerous new Android malware called Albiriox has been discovered by security researchers, posing a serious threat to mobile banking and cryptocurrency users worldwide. The malware operates…
Mystery OAST Tool Exploits 200 CVEs Using Google Cloud for Large-Scale Attacks
A sophisticated threat actor has been operating a private Out-of-band Application Security Testing (OAST) service hosted on Google Cloud infrastructure to conduct a large-scale exploit…