Security Leftovers

posted by Roy Schestowitz on Nov 27, 2025

• • Security updates for Wednesday

    Security updates have been issued by AlmaLinux (bind, binutils, delve and golang, expat, firefox, haproxy, kernel, libsoup3, libssh, libtiff, openssh, openssl, pam, podman, python-kdcproxy, shadow-utils, squid, thunderbird, vim, xorg-x11-server-Xwayland, and zziplib), Debian (cups-filters, libsdl2, linux-6.1, net-snmp, pdfminer, rails, and tryton-sao), Fedora (chromium, docker-buildkit, docker-buildx, and sudo-rs), Gentoo (librnp), Mageia (webkit2), SUSE (amazon-ssm-agent, buildah, curl, dpdk, fontforge-20251009, kernel, libIex-3_4-33, librnp0, python311, rclone, and sssd), and Ubuntu (linux, linux-aws, linux-aws-6.8, linux-ibm, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oracle, linux-aws-6.14, linux-oracle-6.14, linux-aws-fips, linux-fips, linux-gcp-fips, linux-realtime, linux-realtime-6.8, mupdf, openjdk-17, openjdk-8, and openjdk-lts).

  • Meet Rey, the Admin of ‘Scattered Lapsus$ Hunters’

    A prolific cybercriminal group that calls itself “Scattered LAPSUS$ Hunters” has dominated headlines this year by regularly stealing data from and publicly mass extorting dozens of major corporations. But the tables seem to have turned somewhat for “Rey,” the moniker chosen by the technical operator and public face of the hacker group: Earlier this week, Rey confirmed his real life identity and agreed to an interview after KrebsOnSecurity tracked him down and contacted his father.

  • Cybersecurity Is Now a Core Business Discipline

    Boardroom conversations about cyber can no longer be siloed apart from strategy, operations, or geopolitics.

  • Thousands of Secrets Leaked on Code Formatting Platforms

    JSONFormatter and CodeBeautify users exposed credentials, authentication keys, configuration information, private keys, and other secrets.

  • Account Takeover Fraud Caused $262 Million in Losses in 2025: FBI

    Cybercriminals impersonating financial institutions have targeted individuals, businesses, and organizations of different sizes.

  • Ransomware Attack Disrupts Local Emergency Alert System Across US

    The OnSolve CodeRED platform has been targeted by the Inc Ransom ransomware group, resulting in disruptions and a data breach.

  • Dartmouth College Confirms Data Theft in Oracle Hack

    Dartmouth College has disclosed a data breach after cybercriminals leaked over 226 Gb of files stolen from the university.

  • ‘Stranger Things’ emerge when OT security is stuck in the past

    While 1980s nostalgia is all the rage with the return of 'Stranger Things,' clinging to legacy technology in operational environments brings real risks—not just retro charm.

  • Congress calls on Anthropic CEO to testify on Chinese Claude espionage campaign

    The House Homeland Security Committee asked Dario Amodei to answer questions about the implications of the attack and how policymakers and Hey Hi (AI) companies can respond.