U.S. CISA adds Apple and Gladinet CentreStack and Triofox flaws to its Known Exploited Vulnerabilities catalog

GlobalDefenseBot 15 December

3 minutes

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apple and Gladinet CentreStack and Triofox flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Apple and Gladinet CentreStack and Triofox flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: Last week, Apple and […]

GitHub Scanner for React2Shell (CVE-2025-55182) Turns Out to Be Malware

CySecBot 15 December

1 minute

A GitHub repository posing as a vulnerability scanner for CVE-2025-55182, also referred to as “React2Shell,” was exposed as…

breaking news

Atlassian fixed maximum severity flaw CVE-2025-66516 in Apache Tika

GlobalDefenseBot 15 December

4 minutes

Atlassian released security updates to address dozens of flaws, including multiple critical-severity vulnerabilities. Atlassian addressed dozens of vulnerabilities impacting its products, including multiple critical-severity issues. One of the most severe bugs is a maximum-severity XML External Entity (XXE) injection flaw, tracked as CVE-2025-66516 (CVSS score of 10/10), in Apache Tika. CVE-2025-66516 carries a maximum CVSS rating […]

16TB of MongoDB Database Exposes 4.3 Billion Lead Gen Records

CySecBot 15 December

1 minute

Cybersecurity researchers discovered an unsecured 16TB database exposing 4.3 billion professional records, including names, emails, and LinkedIn data. Learn what happened, why this massive data leak enables new scams, and how to protect your PII.

Ethics

Beyond the Next Administration: Building Enduring Tech–Government Alliances for National Power

CySecBot 15 December

7 minutes

The tech industry can increase the nation’s trust in government by becoming a reliable and visibly accountable partner for securing America’s technological edge. Specifically, the tech industry can help Congress codify critical capabilities in law and funding provisions that outlast political cycles. Doing so successfully will require long-term relationships with legislators, bipartisan support, and clear […]

Beyond the Next Administration: Building Enduring Tech–Government Alliances for National Power was originally published on Global Security Review.

Hamas Linked Hackers Using AshTag Malware Against Diplomatic Offices

CySecBot 15 December

1 minute

New report by Unit 42 reveals the Hamas-linked Ashen Lepus (WIRTE) group is using the AshTag malware suite to target Middle Eastern diplomatic and government entities with advanced, hidden tactics.

Coupang CEO Steps Down After Data Breach Hits 33.7 Million Users

CySecBot 15 December

1 minute

South Korean e-commerce giant Coupang faces intense scrutiny after CEO Park Dae-jun resigns over a data breach that exposed 33.7 million customer accounts. Read about the police raids, US lawsuit, and regulatory orders from PIPC.

Are Your AI Assistants Under Attack?

CySecBot 15 December

1 minute

Many users utilize an AI assistant to handle their inbox, leaving them vulnerable to attack.
The post Are Your AI Assistants Under Attack? appeared first on TechRepublic.

CERT-FR recommends completely deactivate Wi-Fi whenever it’s not in use

GlobalDefenseBot 15 December

3 minutes

The CERT-FR (French Computer Emergency Response Team) is advising iPhone and Android users to fully disable Wi-Fi to reduce risk. CERT-FR warns iPhone and Android users to fully disable Wi-Fi to reduce exposure, citing multiple vulnerabilities across wireless interfaces, apps, OSs, and even hardware. The agency reiterates basic hygiene: install apps only from official stores, review […]

ServiceNow Mulls $7B Armis Cybersecurity Acquisition

CySecBot 15 December

1 minute

The deal could be announced within days, according to Bloomberg.
The post ServiceNow Mulls $7B Armis Cybersecurity Acquisition appeared first on TechRepublic.