Cl0p Ransomware Lists NHS UK as Victim, Days After Washington Post Breach
Cl0p is claiming responsibility for a new data breach affecting the National Health Service (NHS UK). On November 11, 2026, the ransomware group posted on…
Month: November 2025
Westpac factors post-quantum cryptography prep into “secure router” rollout
Westpac will spend the next year deploying new “secure routers” to its 550 branches, with post-quantum cryptography preparations playing a part in its decision. Westpac’s…
Hitachi subsidiary GlobalLogic impacted by Clop’s attack spree on Oracle customers
GlobalLogic, a digital engineering and product design company, said it was impacted by a widespread data theft and extortion campaign linked to a zero-day vulnerability…
Microsoft releases KB5068781 — The first Windows 10 extended security update
Microsoft has released the KB5068781 update, the first Windows 10 extended security update since the operating system reached end of support last month. On October…
WhatsApp Malware ‘Maverick’ Hijacks Browser Sessions to Target Brazil’s Biggest Banks
Threat hunters have uncovered similarities between a banking malware called Coyote and a newly disclosed malicious program dubbed Maverick that has been propagated via WhatsApp.…
HTML Phishing Uses Telegram Bots To Steal Corporate Credentials
Cybersecurity researchers at Cyble have uncovered an extensive phishing campaign that represents a significant evolution in credential theft tactics. The operation, which targets organizations across…
Windows 11 23H2 Home and Pro reach end of support
Microsoft has reminded customers today that systems running Home and Pro editions of Windows 11 23H2 have stopped receiving security updates. Today’s announcement follows three…
Weaponized NuGet Packages Inject Time-Delayed Destructive Payloads to Attack ICS Systems
A sophisticated supply chain attack has emerged, targeting industrial control systems through compromised .NET packages. The threat landscape shifted on November 5, 2025, when researchers…
Microsoft Patch Tuesday for November 2025
CVE-2025-62199 Microsoft Office Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Remote Code Execution CVE-2025-60716 DirectX Graphics Kernel Use…
Emergency Windows 10 update fixes ESU enrollment bug
Microsoft has released an emergency out-of-band update to address a known issue preventing Windows 10 users from enrolling in the Extended Security Updates (ESU) program.…
Best MSP Software: The Essential Tech Stack
To grow a successful MSP business, you need the right technology stack, but the real question is: how do you choose the right tools? While…
Hunting for DOM-based XSS vulnerabilities: A complete guide
Traditional cross-site scripting (XSS) vulnerabilities were prevalent when server-side rendering (with languages like PHP, JSP, and ASP) was the norm. However, as applications become more…