Cybersecurity researchers report a nine-month-long RondoDox botnet campaign exploiting React2Shell vulnerability in Next.js and IoT devices, with thousands of systems at risk globally.
Researchers reveal phishing attacks abusing Google Cloud’s email feature to steal Microsoft 365 credentials, using multi-stage redirection and trusted cloud infrastructure to evade detection.
OFAC removes three individuals linked to Intellexa Consortium and Predator spyware from sanctions list, raising questions about spyware use and regulatory oversight.
Intellexa, Predator spyware, OFAC, commercial spyware, cyber threats, human rights, cybersecurity, surveillance, global spyware news, privacy risks
A roundup of major cybersecurity incidents and vulnerabilities in late 2025, including MongoDB exploits, Trust Wallet hack, spyware campaigns, and AI-driven cyber risks.
Trust Wallet warns users to update Chrome extension after $7 million stolen due to malicious v2.68 code. Refund process underway for affected wallets, investigation ongoing.
Kaspersky reports that China-linked APT group Evasive Panda conducted DNS poisoning attacks from 2022 to 2024, deploying MgBot malware to steal data and maintain long-term persistence.
Spotify responds to claims that activist group Anna’s Archive scraped nearly its entire music library, totaling 300TB, by disabling accounts and adding security measures.
Two Phantom Shuttle Chrome extensions with subscription-based VPN facade intercept traffic, capture credentials, and exfiltrate sensitive data to attacker-controlled servers, warns Socket Security.
INTERPOL coordinated Operation Sentinel leads to recovery of $3 million, sacking of 574 suspects, and takedown of ransomware and cyber fraud networks across 19 African countries.
Researchers link a Russia aligned threat group to a phishing campaign abusing Microsoft 365 device code authentication to steal credentials and enable account takeover across government and academic sectors.
