7-Zip RCE flaw (CVE-2025-11001) actively exploited in attacks in the wild
Operation WrtHug hijacks 50,000+ ASUS routers to build a global botnet
U.S. CISA adds a new Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog
Eurofiber confirms November 13 hack, data theft, and extortion attempt
New FortiWeb zero-day CVE-2025-58034 under attack patched by Fortinet
Pennsylvania Office of the Attorney General (OAG) confirms data breach after August attack
DoorDash data breach exposes personal info after social engineering attack
Google fixed the seventh Chrome zero-day in 2025
Dutch police takes down bulletproof hosting hub linked to 80+ cybercrime cases
Microsoft mitigated the largest cloud DDoS ever recorded, 15.7 Tbps
Jaguar Land Rover confirms major disruption and £196M cost from September cyberattack
North Korean threat actors use JSON sites to deliver malware via trojanized code
RondoDox expands botnet by exploiting XWiki RCE bug left unpatched since February 2025
Five admit helping North Korea evade sanctions through IT worker schemes
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 71
Security Affairs newsletter Round 550 by Pierluigi Paganini - INTERNATIONAL EDITION
Anthropic: China-backed hackers launch first large-scale autonomous AI cyberattack
U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog
Critical CVE-2025-59367 flaw lets hackers access ASUS DSL routers remotely