Sunken Ships: Will Orgs Learn From Ivanti EPMM Attacks? Summary The Ivanti Endpoint Manager Mobile (EPMM) zero-day campaign in spring–summer 2025 exploited two chained flaws (CVE-2025-4427 and CVE-2025-4428) in Internet-facing…
An early end to the holidays: ‘Heartbleed of MongoDB’ is now under active exploit Summary A high-severity vulnerability in MongoDB Server (CVE-2025-14847, CVSS 8.7) related to zlib-compressed protocol headers is…
US shuts down phisherfolk’s $14.6M password-hoarding platform Summary The US Department of Justice and law enforcement have seized web3adspanels.org, a platform used by criminals to harvest and store banking credentials…
More than 22 million Aflac customers impacted by June data breach Summary Aflac has confirmed that a June data breach exposed information for roughly 22.7 million people after files were…
Microsoft rushes an out-of-band update for Message Queuing bug Summary Microsoft has released an out-of-band (OOB) update to fix a Message Queuing (MSMQ) issue introduced by the December 2025 Windows…
UNIX V4 tape successfully recovered: First ever version of UNIX written in C is running again Summary Conservators have successfully recovered and imaged a 1970s nine-track tape containing UNIX V4…
Poisoned WhatsApp API package steals messages and accounts Summary A malicious npm package called lotusbail, downloaded over 56,000 times and active for about six months, posed as a WhatsApp Web…
Threat Actors Exploit Zero-Day in WatchGuard Firebox Devices Summary A critical zero-day (CVE-2025-14733) in WatchGuard Firebox firewalls is being actively exploited in the wild. The flaw is an out-of-bounds write…
Non-equilibrium snapshots of ligand efficacy at the μ-opioid receptor Article Date: 22 December 2025 Article URL: https://www.nature.com/articles/s41586-025-10056-4 Article Image: https://media.springernature.com/full/nature-cms/uploads/product/nature/header-86f1267ea01eccd46b530284be10585e.svg Summary The authors used time-resolved cryo-electron microscopy (TR cryo-EM) to…
Judge rules that NSO cannot continue to install spyware via WhatsApp pending appeal Summary A US federal judge denied NSO Group’s request to stay an injunction that bars the firm…
