South Korea mandates facial-recognition scans for new SIM registrations
TL;DR South Korea’s Ministry of Science and ICT announced a rule requiring facial-recognition verification when customers register new mobile accounts,…
About 1,000 systems hit in ransomware attack on Romanian water agency
TL;DR Romania's National Administration 'Romanian Waters' reported roughly 1,000 compromised systems after a ransomware incident that began Dec. 20. Core…
Ex-fugitive ‘wannabe MI6’ conman Mark Acklom must repay £125,000 to victim
TL;DR Mark Acklom, a 52-year-old fraudster who posed as an MI6 agent and Swiss banker, has been ordered to hand…
Palo Alto expands Google Cloud AI partnership, trims 2027 cloud spend
TL;DR Palo Alto Networks announced a multibillion-dollar expansion of its Google Cloud relationship, moving key internal workloads to Google and…
Poisoned npm WhatsApp API package steals messages, credentials and accounts
TL;DR A malicious npm package called lotusbail, downloaded over 56,000 times and available for roughly six months, impersonated a WhatsApp…
Pen testers say Eurostar accused them of ‘blackmail’ after chatbot flaws
TL;DR Security researchers at Pen Test Partners reported four vulnerabilities in Eurostar's public AI chatbot that could enable prompt injection,…
PRC-Nexus UNC6384 Campaign Hijacks Browsers, Delivers PlugX to Diplomats
TL;DR Google Threat Intelligence Group linked a multi-stage espionage campaign to PRC-nexus actor UNC6384 that targeted diplomats in Southeast Asia…
Mass Data Theft Hits Salesforce Instances Through Salesloft Drift Integration
TL;DR Google Threat Intelligence Group and Mandiant say an actor tracked as UNC6395 used compromised OAuth tokens tied to the…
ViewState Deserialization Zero-Day in Sitecore Products — CVE-2025-53690
TL;DR Mandiant discovered an active ViewState deserialization attack against Sitecore instances that relied on a sample ASP.NET machine key published…