AWS Execution Roles Enable Subtle Privilege Escalation in SageMaker and EC2
05
Dec
2025

AWS Execution Roles Enable Subtle Privilege Escalation in SageMaker and EC2

A persistent privilege escalation technique in AWS that allows attackers with limited permissions to execute code under higher-privileged execution roles…

Bipartisan health care cybersecurity legislation returns to address a cornucopia of issues
05
Dec
2025

Bipartisan health care cybersecurity legislation returns to address a cornucopia of issues

A bipartisan group of senators are looking to tackle health care cybersecurity by reviving legislation that would update regulations and…

Barts Health NHS discloses data breach after Oracle zero-day hack
05
Dec
2025

Barts Health NHS discloses data breach after Oracle zero-day hack

Barts Health NHS Trust, a major healthcare provider in England, announced that Clop ransomware actors have stolen files from one of…

Cloudflare Outage Traced to Emergency React2Shell Patch Deployment
05
Dec
2025

Cloudflare Outage Traced to Emergency React2Shell Patch Deployment

Cloudflare’s global network suffered a brief but widespread disruption this morning, lasting approximately 25 minutes, due to an internal change…

Cloudflare Outage Triggers Widespread 500 Internal Server Errors
05
Dec
2025

Cloudflare Outage Triggers Widespread 500 Internal Server Errors

Cloudflare has announced that it is currently experiencing a significant outage impacting its Dashboard and Cloudflare API services. Many users…

LockBit remains the most dominant ransomware group of all time
05
Dec
2025

LockBit Returns With New Data Leak Site, 7 Victims

The LockBit ransomware group is making a comeback, with a new data leak site and seven new victims. LockBit was…

Netflix Acquires Warner Bros. Studios and HBO in Landmark $82.7 Billion Megadeal
05
Dec
2025

Netflix Acquires Warner Bros. Studios and HBO in Landmark $82.7 Billion Megadeal

Netflix has struck a transformative deal to acquire Warner Bros. studios, HBO, and HBO Max from Warner Bros. Discovery (WBD)…

NCSC Launches Proactive Notification Service to Alert System Owners of Vulnerabilities
05
Dec
2025

NCSC Launches Proactive Notification Service to Alert System Owners of Vulnerabilities

The UK’s National Cyber Security Centre (NCSC) has introduced a new initiative designed to protect organisations from cyber threats. Working…

Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails
05
Dec
2025

Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails

Dec 05, 2025Ravie LakshmananEmail Security / Threat Research A new agentic browser attack targeting Perplexity’s Comet browser that’s capable of…

Cyber teams on alert as React2Shell exploitation spreads
05
Dec
2025

Cyber teams on alert as React2Shell exploitation spreads

A remote code execution (RCE) vulnerability in the React JavaScript library, which earlier today caused disruption across the internet as…

Hackers watching
05
Dec
2025

A Practical Guide to Continuous Attack Surface Visibility

AUTHOR: Topher Lyons, Solutions Engineer at Sprocket Security The Limits of Passive Internet-Scan Data Most organizations are familiar with the…

Beyond CVEs – Turning Visibility into Action with ASM
05
Dec
2025

Beyond CVEs – Turning Visibility into Action with ASM

Torrance, California, USA, December 5th, 2025, CyberNewsWire Criminal IP will host a live webinar on December 16 at 11:00 AM…