Cybersecurity News | Daily Recap [11 Dec 2025]

Daily Recap, authorities pursue a broad set of cybercrime actions—from Myanmar digital arrest-fraud charges and Accenture fraud to FedRAMP-related contractor concerns and indictments targeting Russian-linked hacktivists. The recap also flags data breaches and privacy risks at Pierce County Library, LastPass fines, Petco Vetco exposure, doorbell and camera privacy debates, and widespread vulnerabilities and malware activity including NANOREMOTE, BRICKSTORM, Mirai, CastleLoader, Spiderman Phishing, DroidLock, and large Docker Hub credential leaks.
#NANOREMOTE #BRICKSTORM #WarpPanda #LastPass #PierceLibrary #Petco #Vetco #DroidLock #CastleLoader #SpidermanPhishing #DockerHub #Mirai

Legal & Arrests

13 charged in a digital arrest fraud ring tied to alleged Myanmar cyber slave compounds – CBI Charges
Former Accenture employee charged over cybersecurity fraud affecting client projects – Accenture Fraud
Federal grand jury indicts a former manager for misrepresenting cloud security compliance (Federal contractor fraud, FedRAMP/DoD concerns) – Contractor Fraud
Multiple actions and indictments target Russian-linked hacktivists and collaborators, including extraditions of suspects accused of aiding DDoS and critical-infrastructure attacks – DOJ Indictments, Ukrainian Indictment, Extradition Case
Teen arrested in Spain accused of stealing and selling millions of personal data records – Spain Arrest

Data Breaches & Privacy

Library incident exposes records for 340,000 patrons after a data breach at Pierce County Library – Pierce Library Breach
LastPass fined £1.2 million in the UK over a breach that affected roughly 1.6 million users – LastPass Fine
Petco takes down the Vetco site after exposing customer personal information via a vendor portal; related vendor-supply-chain compromise also blamed for a flagship airline breach – Petco/Vetco Exposure, Vendor-Linked Airline Breach
Privacy concerns grow as doorbell camera facial recognition and Flock camera systems remained active despite city orders, labeled a “privacy nightmare” by lawmakers – Doorbell Privacy, Flock Cameras

Vulnerabilities & Patches

Google patches multiple active Chrome zero-days exploited in the wild, marking the product’s eighth exploited zero-day in 2025 – Chrome Zero-day, Chrome Zero-day, Chrome Zero-day
Google fixes a zero-click data-leak flaw in Gemini Enterprise (GeminiJack) and other vendors issue patches for exploitable flaws including .NET SOAPwn and Gladinet hard-coded keys enabling unauthorized access – GeminiJack, Gladinet Keys, .NET SOAPwn
Active exploit chains and mass compromises continue: unpatched Gogs zero-day breaches ~700 servers, React2Shell exploitation spreads crypto miners, and researchers disclose three PCIe encryption weaknesses impacting PCIe 5.0+ systems – Gogs Zero-day, React2Shell, PCIe Weaknesses
December Patch Tuesday addresses a mix of fixes including an Elevation-of-Privilege, Notepad++, Ivanti, Fortinet issues, and Microsoft’s monthly bulletin resolving one zero-day and several high-risk flaws – Patch Tuesday, Microsoft Patch Tuesday
Microsoft rolls out quality fixes including a UI fix for Windows Explorer dark-mode white flashes and Teams will begin warning on suspicious external-domain traffic – Explorer Fix, Teams Warning

Malware & Threats

NANOREMOTE malware abuses the Google Drive API for hidden C2 on Windows systems – NANOREMOTE
Broad threat roundups report spyware alerts, Mirai botnet strikes, rootkits like ValleyRAT, and dozens more active campaigns in the weekly ThreatsDay bulletin – ThreatsDay Bulletin
Social-engineering trends fuel upswing in loaders and phishing: ClickFix-related campaigns boost CastleLoader attacks, a new “Spiderman” phishing service targets dozens of European banks, and Google Ads are pushing macOS infostealer drops – CastleLoader, Spiderman Phishing, Malicious Google Ads
Mobile and device ransomware/lockers proliferate as new DroidLock strains lock Android devices for ransom – DroidLock
Mass credential leaks continue with over 10,000 Docker Hub images found leaking credentials and auth keys, amplifying supply-chain risk – Docker Hub Leaks
Consent-fueled hijacking campaign (ConsentFix) abuses Azure CLI consent flows to take over Microsoft accounts – ConsentFix

Nation-state & Infrastructure Alerts

China-linked WARP PANDA APT deploys the BRICKSTORM backdoor to target VMware vCenter/ESXi and Azure cloud environments – WARP PANDA / BRICKSTORM
Federal agencies warn of Russia-aligned campaigns: pro-Russia hacktivists target critical infrastructure via unsecured VNC HMIs and DOJ/CISA flag attacks on meat processing plants, nuclear regulators and other critical sectors – FBI/CISA VNC Warning, DOJ/CISA Warning

Industry, AI & Research

MITRE publishes results from the 2025 ATT&CK Enterprise evaluations, informing detection and emulation best practices – MITRE ATT&CK Results
OpenAI and industry voices warn that advancing AI capabilities are accelerating cyber risk while organizations debate defenses and readiness – OpenAI Risks, AI Accelerating Attacks
Conversations on automation and identity: a virtual Cyber AI & Automation Summit runs today, and research discusses the impact of RPA on Identity and Access Management strategies – Cyber AI Summit, RPA & IAM
Israeli cybersecurity investment hits a record $4.4 billion, underscoring continued venture interest and sector growth – Israeli Funding
Guidance stresses secure SDLC for manufacturers as software supply-chain and embedded flaws pose growing risks for industrial sectors – Secure SDLC

Cybersecurity News | Daily Recap – hendryadrian.com

SHARE THIS STORY

WhatsApp X (Twitter)Telegram Bluesky Facebook LinkedIn Threads Email Print