Ionut Arghire

WatchGuard Patches Firebox Zero-Day Exploited in the Wild

The critical-severity bug in the Fireware OS’s iked process leads to unauthenticated remote code execution.

December 22, 2025

AI Security Firm Ciphero Emerges From Stealth With $2.5 Million in Funding

The startup’s solution captures, verifies, and governs all AI interactions within an enterprise’s environment.

December 19, 2025

Chinese APT ‘LongNosedGoblin’ Targeting Asian Governments

The hacking group has been using Group Policy to deploy cyberespionage tools on governmental networks.

December 19, 2025

US Shuts Down Crypto Exchange E-Note, Charges Russian Administrator

The exchange has been allegedly involved in laundering money for ransomware groups and other transnational cybercriminal organizations.

December 19, 2025

University of Sydney Data Breach Affects 27,000 Individuals

Downloaded from a code library, the information pertains to current and former staff and affiliates, and to alumni and students.

December 19, 2025

‘Kimwolf’ Android Botnet Ensnares 1.8 Million Devices

Linked to the Aisuru IoT botnet, Kimwolf was seen launching over 1.7 billion DDoS attack commands and increasing its C&C domain’s popularity.

December 19, 2025

HPE Patches Critical Flaw in IT Infrastructure Management Software

Tracked as CVE-2025-37164, the critical flaw could allow unauthenticated, remote attackers to execute arbitrary code.

December 18, 2025

CISA Warns of Exploited Flaw in Asus Update Tool

Tracked as CVE-2025-59374, the issue is a software backdoor implanted in Asus Live Update in a supply chain attack.

December 18, 2025

113,000 Impacted by Data Breach at Virginia Mental Health Authority

Threat actors stole names, Social Security numbers, and financial and health information, and deployed ransomware on RBHA’s systems.

December 18, 2025

SonicWall Patches Exploited SMA 1000 Zero-Day

The medium-severity flaw has been exploited in combination with a critical bug for remote code execution.

December 18, 2025

New $150 Cellik RAT Grants Android Control, Trojanizes Google Play Apps

The malware provides full device control and real-time surveillance capabilities like those of advanced spyware.

December 17, 2025

Adaptive Security Raises $81 Million in Series B Funding

Led by Bain Capital Ventures, the investment round brings the total raised by the company to $146.5 million.

December 17, 2025

GhostPoster Firefox Extensions Hide Malware in Icons

The malware hijacks purchase commissions, tracks users, removes security headers, injects hidden iframes, and bypasses CAPTCHA.

December 17, 2025

Dux Emerges From Stealth Mode With $9 Million in Funding

The startup takes an agentic approach to preventing vulnerability exploitation by uncovering exposure across assets.

December 17, 2025

Echo Raises $35 Million in Series A Funding

The fresh investment comes less than six months after the startup’s seed funding announcement.

December 16, 2025

Verisoul Raises $8.8 Million for Fraud Prevention

The company plans to accelerate product development, scale go-to-market efforts, and hire new talent.

December 16, 2025

JumpCloud Remote Assist Vulnerability Can Expose Systems to Takeover

The issue allows attackers to write arbitrary data to any file, or delete arbitrary files to obtain System privileges.

December 16, 2025

In-the-Wild Exploitation of Fresh Fortinet Flaws Begins

Threat actors are exploiting the two critical authentication bypass vulnerabilities against FortiGate appliances.

December 16, 2025

Soverli Raises $2.6 Million for Secure Smartphone OS

The sovereign smartphone OS runs along Android or iOS, allowing users to switch between secure, isolated environments.

December 15, 2025

Atlassian Patches Critical Apache Tika Flaw

Atlassian has released software updates for Bamboo, Bitbucket, Confluence, Crowd, Fisheye/Crucible, and Jira.

December 15, 2025

SECURITYWEEK NETWORK:

ICS:

Ionut Arghire

WatchGuard Patches Firebox Zero-Day Exploited in the Wild

AI Security Firm Ciphero Emerges From Stealth With $2.5 Million in Funding

Chinese APT ‘LongNosedGoblin’ Targeting Asian Governments

US Shuts Down Crypto Exchange E-Note, Charges Russian Administrator

University of Sydney Data Breach Affects 27,000 Individuals

‘Kimwolf’ Android Botnet Ensnares 1.8 Million Devices

HPE Patches Critical Flaw in IT Infrastructure Management Software

CISA Warns of Exploited Flaw in Asus Update Tool

113,000 Impacted by Data Breach at Virginia Mental Health Authority

SonicWall Patches Exploited SMA 1000 Zero-Day

New $150 Cellik RAT Grants Android Control, Trojanizes Google Play Apps

Adaptive Security Raises $81 Million in Series B Funding

GhostPoster Firefox Extensions Hide Malware in Icons

Dux Emerges From Stealth Mode With $9 Million in Funding

Echo Raises $35 Million in Series A Funding

Verisoul Raises $8.8 Million for Fraud Prevention

JumpCloud Remote Assist Vulnerability Can Expose Systems to Takeover

In-the-Wild Exploitation of Fresh Fortinet Flaws Begins

Soverli Raises $2.6 Million for Secure Smartphone OS

Atlassian Patches Critical Apache Tika Flaw

Featured

Supply Chain Security

Cybersecurity Firms Impacted by Klue Supply Chain Attack

Vulnerabilities

Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure

Funding/M&A

Accenture to Acquire Majority Stake in Dragos, All of runZero, NetRise in $4.1 Billion OT Cybersecurity Push

Data Breaches

Kodak Admits Data Breach After ShinyHunters Hack Claims

Vulnerabilities

Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day

Vulnerabilities

3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs

Hacker Conversations

Hacker Conversations: Isira Adithya, the Evolution of an Ethical Hacker

Latest News

Artificial Intelligence

French President Urges US to Share Cutting-Edge AI and Democracies to Cooperate on Regulation

Malware & Threats

In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum

Malware & Threats

CryptoBandits Malware Doubles as a Backdoor, Abuses Tor

Malware & Threats

FortiBleed: 86,000 Fortinet Device Credentials Compromised

Funding/M&A

Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC

Malware & Threats

15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown

Vulnerabilities

Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure

Daily Briefing Newsletter