CrowdStrike fired an employee for selling screenshots of their computer to cybercriminals Scattered Lapsus$ Hunters. The hackers paid $25,000 for these images, falsely claiming system access. CrowdStrike confirmed there was no breach, terminating the insider and involving law enforcement. Looks like someone took “screensharing” a bit too literally!

CISA confirmed that the Oracle Identity Manager vulnerability CVE-2025-61757 has been exploited in the wild. This flaw, a cybersecurity piñata, was patched in October 2025 but not before attackers had a field day. It allows remote code execution, making it as popular as free Wi-Fi at a coffee shop. Stay secure, folks!

Delta Dental of Virginia experienced a data breach after an email hack, exposing sensitive info of about 146,000 customers. While they detected the breach, there’s no evidence of misuse. As a consolation, they’re offering a year’s worth of free identity protection, proving once again that dental care isn’t just about flossing anymore!

The Shai Hulud npm worm has dramatically returned, compromising 19,000 code projects in hours. This cyber pest turns victims into instant threats by stealing and using credentials. With a 100-fold increase in infections, developers face a coding apocalypse. Remember, in the world of coding, the worm always gets the early bird!

Fluent Bit, a favorite in cloud services and AI labs, had “trivial-to-exploit” vulnerabilities open for years. These bugs let attackers bypass authentication and wreak havoc on cloud services. Updating to version 4.1.1 fixes the issues, saving the day faster than a superhero with a tech support hotline.

Fluent Bit, deployed over 15 billion times, faces vulnerabilities that could spoof tags or manipulate file paths. With fixes in new versions, it’s crucial to update and secure configurations. Otherwise, attackers might turn your logs into digital stand-up comedy, and trust us, nobody wants a punchline in their security protocol.

The Shai-Hulud supply-chain campaign has turned the npm registry into a digital game of Whack-a-Mole, planting trojanized packages like weeds in a garden. With GitHub struggling to keep up, it’s a race against time to secure developer secrets before they vanish like socks in a dryer.

SitusAMC, a real estate finance business, discovered thieves sneaked into its systems, swiping confidential client data. The breach, confirmed on November 15, sees the company teaming up with federal law enforcement for a thorough investigation. Despite the cyber-attack, SitusAMC assures its services remain operational and is working to beef up security measures.

Amazon’s Autonomous Threat Analysis (ATA) is revolutionizing cybersecurity by having AI agents compete to find weaknesses and propose solutions. Steve Schmidt, Amazon’s chief security officer, says it reduces false positives and gives human teams more time for complex threats. Who knew AI could make cybersecurity both efficient and fun?

StealC V2 is taking the art of cybercrime to a new level, disguising its sinister intentions within seemingly innocent Blender project files. Download a 3D asset today, get a malware infection free! Just make sure your Auto Run feature is off, or you’ll be in for a not-so-pleasant surprise.

Harvard University Alumni Affairs and Development systems fell victim to a voice phishing attack, spilling alumni data like it’s hot tea at a stuffy garden party. But take heart, your Social Security number is safe. Harvard is investigating with law enforcement, hoping to catch the cyber culprits before they send out more phishy invites.

Shai-Hulud 2.0 is back, and it’s spreading faster than a cat meme. This self-propagating npm malware has compromised over 25,000 developers’ secrets in just three days, leaving GitHub scrambling like a squirrel on espresso to delete tainted repos. Developers, watch out for wormy surprises in your repositories!

Microsoft introduces an experimental agentic AI feature in Windows 11, promising to automate tasks but warning of potential security risks. This “agent workspace” lets AI access applications for background tasks, but improper controls could turn your PC into a digital soap opera, complete with drama and unexpected plot twists.

Fortinet warns about a FortiWeb flaw causing a cybersecurity stir, like a surprise party you didn’t want. Hackers are exploiting this medium-severity vulnerability, leaving IT teams scrambling to patch it faster than you can say “CVE-2025-58034.” Meanwhile, Fortinet’s past handling of similar issues has critics raising eyebrows and maybe a few mugs of coffee.

Sha1-Hulud strikes again! This time, it’s not just stealing secrets but threatening full-on digital carnage if thwarted. With over 25,000 repositories affected, the npm supply chain is in chaos. If it can’t steal, it destroys! It’s like the “Terminator” of cyber threats. Who knew coding could be so dramatic?

Attackers have found a new way to play “shadow” games with ShadowPad, exploiting the freshly patched WSUS RCE flaw CVE-2025-59287. Using PowerCat, they opened a shell, deploying ShadowPad malware faster than you can say “unauthorized access.” Organizations, patch up and lock those digital doors!

FCC looks to torch Biden-era cyber rules sparked by Salt Typhoon mess. In a 2-1 vote, they’ve yanked the January ruling intended to fortify carrier networks. The FCC insists it’s not stepping back, just adopting a more “agile” approach, trusting carriers to self-police, despite past infiltration. Will industry goodwill hold up?

Microsoft is testing a new feature that preloads File Explorer in the background to improve launch times on Windows 11. It’s like giving File Explorer a head start in the morning race without you noticing! Just don’t forget, you can disable this turbo-boost in File Explorer’s settings if you prefer the scenic route.

Mazda confirms being targeted in the Oracle E-Business Suite hacking campaign. Despite Cl0p ransomware’s claims, Mazda reports no data leakage or operational impact, thanks to swift defensive measures. The carmaker remains vigilant, monitoring systems and applying patches. Meanwhile, Cl0p awaits a response, but Mazda’s confidence suggests they won’t be paying a ransom.

A malicious extension on the Visual Studio Code Marketplace tried a sneaky brandjacking attack by mimicking Prettier. Checkmarx Zero spotted the imposter, prettier-vscode-plus, and teamed up with Microsoft to remove it swiftly. This quick action thwarted a potential security threat before it could cause significant damage.