Pierluigi Paganini
December 14, 2025
Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.
International Press – Newsletter
Barts Health NHS – Cl0p cyberattack update
Criminals Using Altered Proof-of-Life Media to Extort Victims in Virtual Kidnapping for Ransom Scams
Ransomware Trends in Bank Secrecy Act Data Between 2022 and 2024
I’ve investigated ‘stalkerware’ for five years. Here’s what I’ve learned
Teen who allegedly stole millions of persona
Malware
SEEDSNATCHER : Dissecting an Android Malware Targeting Multiple Crypto Wallet Mnemonic Phrase
PeerBlight Linux Backdoor Exploits React2Shell CVE-2025-55182
SetcodeRat Exposed: A Telegram Secret Stealing Trojan Customized for Chinese-speaking Regions
PyStoreRAT: A New AI-Driven Supply Chain Malware Campaign Targeting IT & OSINT Professionals
Hacking
Critical Security Vulnerability in React Server Components
From Inbox to Wipeout: Perplexity Comet’s AI Browser Quietly Erasing Google Drive
They “traveled” around Europe with a spy detector and hacking equipment
CVE-2025-10573: Ivanti EPM Unauthenticated Stored Cross-Site Scripting (Fixed)
The Anatomy of a React2Shell Compromise
Small numbers of Notepad++ users reporting security woes
Pro-Russia Hacktivists Conduct Opportunistic Attacks Against US and Global Critical Infrastructure
High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)
Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw
Active Exploitation of Gladinet CentreStack/Triofox Insecure Cryptography Vulnerability
GeminiJack: The Google Gemini Zero-Click Vulnerability Leaked Gmail, Calendar and Docs Data
Gogs 0-Day Exploited in the Wild
Threat Spotlight: Introducing GhostFrame, a new super stealthy phishing kit
Intelligence and Information Warfare
UDPGangster Campaigns Target Multiple Countries
Go behind the browser with Chrome’s new AI features
Latest Contagious Interview malware campaign abuses Microsoft VSCode Tasks
EtherRAT: DPRK uses novel Ethereum implant in React2Shell attacks
Crisis in Icebergen: How NATO crafts stories to sharpen cyber skills
Pro-Russia Hacktivists Conduct Opportunistic Attacks Against US and Global Critical Infrastructure
Google and Apple roll out emergency security updates after zero-day attacks
Cyberattack: Berlin summons Russia’s ambassador
Cybersecurity
The December 2025 Security Update Review
The AI arms race: Inside the invisible war between hackers and defenders
Fortinet Patches Critical Authentication Bypass Vulnerabilities
Cyber Army of Russia Reborn / Z-Pentest
AI is accelerating cyberattacks. Is your network prepared?
Shadow AI Security Breaches will hit 40% of all Companies by 2030, Warns Gartner
‘End-to-end encrypted’ smart toilet camera is not actually end-to-end encrypted
4.3 Billion Work Profiles Exposed: Scammers Now Know Where You Work
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, newsletter)
