Abandoned iCal Domains Threaten 4M Devices
As our daily lives become more time-pressured and interconnected, digital calendars have emerged as indispensable tools for managing personal and professional commitments. Yet, this very…
Month: November 2025
Hackers hijack US radio gear
Hackers are hijacking US radio transmission equipment to broadcast bogus emergency messages and obscene language, the Federal Communications Commission said. In a public notice, the…
Asahi says crooks stole data of approximately 2M customers and employees
Asahi says crooks stole data of approximately 2M customers and employees Pierluigi Paganini November 27, 2025 Asahi says hackers stole data of approximately 2M customers…
Microsoft Teams Guest Chat Flaw Could Let Hackers Deliver Malware
Security researchers have discovered a critical vulnerability in Microsoft Teams that allows attackers to bypass all Defender for Office 365 protections by inviting users into…
ATA makes board chief executive-level club in bid for clout
The telco industry lobby has moved to project more authority and boost its influence by retiring its board to replacing them with the chiefs of…
Gitlab Patches Multiple Vulnerabilities that Enable Authentication Bypass and DoS Attacks
GitLab has released critical security updates for its Community Edition (CE) and Enterprise Edition (EE) to address multiple high-severity vulnerabilities. The patches, rolled out in…
Legacy Python Package Vulnerabilities Enable PyPI Attacks Through Domain Takeover
ReversingLabs researchers have sounded the alarm over a vulnerability lurking in legacy Python packages one that exposes users of the Python Package Index (PyPI) to…
Poland Arrests Russian Suspected Of Hacking E-Commerce Databases Across Europe
Polish authorities arrested a 23-year-old Russian citizen on November 16, after investigators linked him to unauthorized intrusions into e-commerce platforms, gaining access to databases containing…
Asahi aims to restore logistics by February following cyberattack
Japan’s Asahi Group aims to normalise logistical operations by February next year after a cyberattack in late September forced widespread suspension, though not all products…
Over 390 Abandoned iCalendar Sync Domains Could Expose ~4 Million Devices to Security Risks
Digital calendars have become indispensable tools for managing personal and professional schedules. Users frequently subscribe to external calendars for public holidays, sports schedules, or community…
Lapsus$ Hunters Register 40+ Domains Impersonating Zendesk Environments
ReliaQuest’s Threat Research team has uncovered a significant new campaign from the notorious threat collective “Scattered Lapsus$ Hunters,” this time targeting users and organizations that…
Bloody Wolf Expands Java-based NetSupport RAT Attacks in Kyrgyzstan and Uzbekistan
Nov 27, 2025Ravie LakshmananMalware / Social Engineering The threat actor known as Bloody Wolf has been attributed to a cyber attack campaign that has targeted…