Cyber News: November 2025

Emerging Threats & Trends

1. Mobile Spyware “Landfall”: Samsung Galaxy devices targeted using DNG image files sent via messaging apps, exploiting Android zero-day vulnerabilities—primarily affecting users in North Africa.​

   
   

2. Malware Trends: Ransomware and data exfiltration remain rampant in healthcare, with destructive malware (wipers) targeting critical infrastructure globally. Remote Access Trojans (RATs) and stealer-as-a-service operators dominate the dark web.​

   
   

3. Supply Chain & TLD Abuse: Recent months saw a rise in supply chain hacks and attacks using exotic domains (.zip, .app, .mov) to evade detection.​

Critical Vulnerabilities and Exploits

1. Fortinet FortiWeb Flaw (CVE-2025-58034): Fortinet has issued an urgent warning about a critical vulnerability in FortiWeb products being actively exploited. Customers are advised to update immediately to prevent compromise.​

   
   

2. Microsoft Patch Tuesday: Over 60 vulnerabilities were patched in Windows and other Microsoft products, including a zero-day affecting all OS versions. Priority CVEs include a dangerous Office remote code execution flaw—users are urged to update fast.​

Major Data Breaches & Cyber Espionage

1. Washington Post & Nikkei Breaches: Both media giants notified thousands of employees that sensitive data was stolen, tracing the incidents to info-stealer malware and targeted attacks on Slack accounts.​

   
   

2. Red Hat Source Code Leak: The Crimson Collective breached Red Hat’s private repo, leaking 570GB of source code and configuration data—potentially impacting global customers.​

   
   

3. AI-Orchestrated Cyber Espionage: The first reports of an AI-led cyber espionage campaign surfaced, showing new levels of speed and effectiveness in attack coordination.​

Stay tuned for more updates—and patch early, patch often!