Cyber Security News Daily Recap

Cybersecurity News | Daily Recap [06 Dec 2025]

admin
Cybersecurity News | Daily Recap [06 Dec 2025]

Daily Recap, Active exploitation of the critical React2Shell flaw pushed it onto the CISA KEV list, with Chinese actors and Amazon researchers reporting widespread abuse that even triggered a Cloudflare outage. The report also highlights CVE-2025-66516 in Apache Tika enabling XXE and possible RCE, a Barts Health NHS data breach caused by an Oracle zero-day, a resurgence of LockBit activity, EU penalties on X under the Digital Services Act, and the Agentic Wiper threat capable of auto-deleting Google Drive.
#React2Shell #CISAKEV #CloudflareOutage #ApacheTika #CVE-2025-66516 #BartsHealthNHS #LockBit #AgenticWiper #GoogleDrive #X #DigitalServicesAct

Vulnerabilities & Exploits

  • Active exploitation of the critical React2Shell flaw prompted its addition to the CISA KEV, with Chinese actors and Amazon researchers reporting widespread abuse and mitigations triggering a Cloudflare outage. – React2Shell KEV, React2Shell Exploit, React2Shell Amazon, Cloudflare Outage
  • A critical XXE bug CVE-2025-66516 (CVSS 10.0) in Apache Tika enables XXE injection and possible RCE; users must update to version 2.0.0+ immediately. – Apache Tika
  • A zero-click agentic browser attack can auto-delete an entire Google Drive via crafted emails and AI prompts, highlighting serious AI browser security gaps. – Agentic Wiper

Incidents & Breaches

  • Barts Health NHS confirmed a data breach after an Oracle zero-day was exploited, exposing patient data and prompting emergency response. – Barts Breach

Ransomware & Threat Actors

  • The LockBit ransomware group resurfaced with a new data-leak site listing 7 victims, signaling renewed extortion activity. – LockBit Return

Policy & Legal

  • The EU issued a €120 million fine to Elon Musk’s X under the Digital Services Act for deceptive verification and transparency violations. – X Fine, X Fine (BC)
  • The U.S. national security strategy emphasizes partnering with industry and regional allies to strengthen national cyber defenses. – US Cyber Strategy

Crime & Fraud

  • A Maryland man was sentenced for running a scheme tied to North Korea IT workers to secure U.S. government contracts. – N.Korea Scheme
  • The FBI warned of virtual kidnapping ransom scams that use altered social media photos to coerce payments. – Virtual Kidnapping

AI, Research & Business

  • AI startup Imper.ai emerged from stealth with $28 million in funding to advance security-focused AI capabilities. – Imper.ai Funding

Guides & Operations

  • A practical guide outlines continuous attack surface visibility approaches to help defenders maintain real-time asset and exposure awareness. – Attack Surface Guide

Miscellaneous

  • Roundup: enforcement actions, an exploited Array flaw, and a reported new Iranian backdoor were highlighted in a security news brief. – In Other News

Cybersecurity News | Daily Recap – hendryadrian.com