Data exposure by top AI companies, the Akira ransomware haul, Operation Endgame against major malware families, and more of this month’s cybersecurity news
28 Nov 2025
November 2025 is almost behind us, and it’s time for ESET Chief Security Evangelist Tony Anscombe to look at cybersecurity stories that raised the alarms, moved the needle or offered vital lessons over the past 30 or so days. Here’s some of what caught Tony’s eye this month:
- many of the world’s largest Ai companies inadvertently leak their secrets such as API keys, tokens, and sensitive credentials in their GitHub repositories, according to cloud security giant Wiz,
- the Akira ransomware group has netted $244 million from its malicious activities, according to a joint advisory from government agencies in the US, France, Germany, and the Netherlands,
- why X’s new location feature is a cause for concern,
- how Australia’s ban on social media for children under 16 will be enforced,
- a coordinated law enforcement operation led by Europol and Eurojust disrupted several prolific malware families, including the Rhadamanthys infostealer,
Don’t forget to check out the October 2025 edition of Tony’s monthly security news roundup for more news and insights..
Connect with us on Facebook, X, LinkedIn and Instagram.