U.S. CISA adds a flaw in multiple Fortinet products to its Known Exploited Vulnerabilities catalog

GlobalDefenseBot 17 December

4 minutes

U.S. CISA adds a vulnerability impacting multiple products to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Fortinet Multiple Products Improper Verification of Cryptographic Signature Vulnerability, tracked as CVE-2025-59718 (CVSS Score of 9.1), to its Known Exploited Vulnerabilities (KEV) catalog. Threat actors started exploiting two critical flaws, tracked as CVE-2025-59718 and CVE-2025-59719 (CVSS score of 9.1), […]

breaking news

A cyber attack hit Petróleos de Venezuela (PDVSA) disrupting export operations

GlobalDefenseBot 17 December

3 minutes

A cyber attack hit Petróleos de Venezuela (PDVSA), Venezuela’s state-owned oil company, over the weekend, disrupting its export operations. Venezuela’s state oil company PDVSA was hit by a cyberattack over the weekend that disrupted export operations. The company says the incident only affected some administrative systems and did not impact operations. “Thanks to the expertise […]

SoundCloud Hit by Cyberattack, Breach Affects 20% of its Users

CySecBot 17 December

1 minute

SoundCloud confirms a breach affecting an estimated 20% of users, resulting in stolen email addresses. The company is dealing with follow-up DoS attacks by unnamed attackers while media reports allege involvement of ShinyHunters.

Amazon: Russian GRU hackers favor misconfigured devices over vulnerabilities

CySecBot 16 December

1 minute

Amazon Threat Intelligence reports Russian GRU hackers are increasingly breaking into critical infrastructure by abusing misconfigured devices instead of exploiting software vulnerabilities.

breaking news

Hackers are exploiting critical Fortinet flaws days after patch release

GlobalDefenseBot 16 December

3 minutes

Threat actors are exploiting two critical Fortinet flaws, tracked as CVE-2025-59718 and CVE-2025-59719, days after patch release, impacting multiple Fortinet products. Threat actors started exploiting two critical flaws, tracked as CVE-2025-59718 and CVE-2025-59719 (CVSS score of 9.1), in Fortinet products days after patch release, Arctic Wolf warns. Last week, Fortinet addressed 18 vulnerabilities, including the two flaws […]

JumpCloud Remote Assist Flaw Lets Users Gain Full Control of Company Devices

CySecBot 16 December

1 minute

A critical vulnerability (CVE-2025-34352) found by XM Cyber in the JumpCloud Remote Assist for Windows agent allows local users to gain full SYSTEM privileges. Businesses must update to version 0.317.0 or later immediately to patch the high-severity flaw.

Armed attack in Southeast Iran kills four

CySecBot 16 December

1 minute

In an armed clash between militants and law enforcement forces at a checkpoint in Fahraj County, Kerman Province, southeastern Iran, three security and law enforcement personnel and one civilian were killed.

Iran says 1.6 million undocumented Afghans have returned home

CySecBot 16 December

1 minute

Iran has repatriated about 1.6 million undocumented Afghan nationals since the launch of a nationwide return program about a year ago, while the total number of Afghans currently residing in the country is estimated at around five million, a senior In…

Google

Google to Kill Popular Dark Web Report Tool

CySecBot 16 December

1 minute

This marks another abrupt end to a Google service that users had come to rely on.
The post Google to Kill Popular Dark Web Report Tool appeared first on TechRepublic.

700Credit Data Breach Exposed Details of 5.6 Million Consumers

CySecBot 16 December

1 minute

US auto loan service 700Credit confirms a data breach exposed names, addresses, and Social Security numbers of dealership customers. Free credit monitoring is offered.