NEW, by me: Uzbekistan publicly exposed its nationwide license plate surveillance system, no password needed. The system reveals a hundred locations where banks of cameras have been placed, including cities and rural areas; and contains raw video footage of millions of vehicles and their occupants.

The US DOJ has seized web3adspanels[.]org, a website that served as a backend database for collecting phished credentials. The site primarily stored banking logins collected through phishing pages promoted via malicious search ads www.justice.gov/opa/pr/justi...

The South Korean government is running a trial and has mandated that all individuals undergo a mandatory facial recognition scan before receiving a new mobile phone number koreajoongangdaily.joins.com/news/2025-12...

The White House has formally nominated Army Lt. Gen. Joshua Rudd as the next head of Cyber Command and the US National Security Agency. Gen. Rudd is currently serving as deputy chief of US Indo-Pacific Command www.nextgov.com/people/2025/...

The EU and the UK have renewed a deal to allow free data transfers between the EU bloc and the UK for six more years ec.europa.eu/commission/p...

American social media platforms are banned in Russia. Have you noticed Donald isn't sanctioning anyone over that?

Nina Jankowicz: “They’re not doing this because they have any evidence of censorship — they lost a Supreme Court case that made those claims… They’re doing this because the group of researchers and advocates have stood up to liars like Donald Trump and the platforms that enable them.”

AC Shadows: done! ✅

It begins. The EU lawmaker who was in charge of digital affairs during 🇪🇺President von der Leyen's first term has been banned from entering the United States, because the 🇺🇸 tech giants and government don't like the EU's tech laws. What will be the 🇪🇺President's response?

The American government is banning regulators from other countries at the request of the richest man in the world, in a display that confirms they will punish any country not willing to sell their digital sovereignty as cheaply as the US has www.nytimes.com/2025/12/23/t...

The US just banned a guy from the country (Imran Ahmed) for pointing out that X is full of hate speech

What's up with all these "secret location" Barcelona offensive cybersecurity conferences?

Russia is looking to ban Call of Duty www.gazeta.ru/social/news/...

Politico - At least six career staffers at the Cybersecurity and Infrastructure Security Agency were suspended with pay this summer after organizing a polygraph test that the agency’s acting director, Madhu Gottumukkala, failed. www.politico.com/news/2025/12...

Something that hasn't been made clear: Firefox will have an option to completely disable all AI features. We've been calling it the AI kill switch internally. I'm sure it'll ship with a less murderous name, but that's how seriously and absolutely we're taking this. …

A ransomware attack has hit ANAR, Romania's water management agency. The incident impacted over 1,000 systems, such as Windows workstations, GIS servers, and databases. romania.europalibera.org/a/apele-roma...

Amazon Caught North Korean IT Worker By Tracing Keystroke Data | www.bloomberg.com/news/newslet... @bloomberg.com

$10 billion of investment. Code names to disguise projects and companies. Mixed opinions. Skyrocketing property values. And enough tax breaks to pay every state cop in Louisiana for seven years. https://sherwood.news/tech/hyperion/

Are you a security researcher or journalist? We want to hear from you — please take this survey! Dissent Doe at DataBreaches.net, and yours truly at this.weekinsecurity.com, are running this survey to explore the state of legal demands and criminal threats in cybersecurity.

Incredible words from real boxer Anthony Joshua after he knocked Jake Paul the fuck out lol

Russia is responsible for destructive and disruptive cyberattacks against Denmark PDF: www.fe-ddis.dk/globalassets...

-Belarus deploys spyware on journalists' phones -Suspect arrested for installing malware on ferry boat -France arrests Interior Ministry hacker -new Cisco and SonicWall zero-days -DPRK stole $2b this year Podcast: risky.biz/RBNEWS510/ Newsletter: news.risky.biz/risky-bullet...

-Former Israeli PM hacked -FTC orders Nomad Bridge to return user funds -TikTok reported for tracking users across the web -US still Tor's biggest sponsor -Russia also explores social media ban for kids -MIVD makes cyber takedowns a priority -Dutch police arrests deepfake scammer

-US seizes E-Note exchange -India dismantles SMS factory -17 malicious Firefox add-ons -Google sues Darcula PhaaS -Device-code phishing activity surges -New Kimwolf botnet infets 1.83m deviecs -RansomHouse uses double encryption -Malware reports on Stealka, AuraStealer, CountLoader, GachiLoader

We added fingerprinting of Fortinet devices with FortiCloud SSO enabled to our Device Identification reporting (at least 25K IPs seen globally). While not necessarily vulnerable to CVE-2025-59718/CVE-2025-59719 if you get a report from us regarding exposure, please verify/patch!

I’m old enough to remember when coinbase argued it was outside of federal securities regulators’ purview

-Belarus deploys spyware on journalists' phones -Suspect arrested for installing malware on ferry boat -France arrests Interior Ministry hacker -new Cisco and SonicWall zero-days -DPRK stole $2b this year Podcast: risky.biz/RBNEWS510/ Newsletter: news.risky.biz/risky-bullet...

The US TikTok sale has been signed. The company will be controlled by a joint venture including Oracle, Silver Lake, Andreessen Horowitz, Abu Dhabi-based MGX. Adding a UAE company really makes it clear that this was never about national security concerns. www.axios.com/2025/12/18/t...

A Washington Times report claims that the alleged NSA hack of China's National Time Service Center might be an attempted US ploy to disrupt Chinese missile launches in the event of a military conflict www.washingtontimes.com/news/2025/de...

Looks like the Aisuru botnet group created another botnet named Kimwolf that they are now using for DDoS attacks -1.83m infected systems -most are Android devices -uses EtherHiding and Tor blog.xlab.qianxin.com/kimwolf-botn...

The US government has remained the Tor Project's largest sponsor despite the organization's efforts to diversify its funding. The project raised $7.3 million last year, of which, $2.5 million came from the US government. blog.torproject.org/financials-b...

New espionage/e-crime crossover blog from the team on the continued rise of device code phishing by state-aligned and financially motivated groups.

Chinese APTs and their parent MSS bureau nattothoughts.substack.com/p/the-many-a...

The ForumTroll cyber-espionage group has targeted political experts and scholars working at major Russian universities and research institutions This is the group that deployed Memento Labs' (HackingTeam) Dante spyware earlier this year via Chrome zero-days securelist.com/operation-fo...

SafeBreach has uncovered new operations from an Iranian hacking group tracked as Prince of Persia and Infy, which it was believed to have ceased activity back in 2022 www.safebreach.com/blog/prince-...

Senators Count the Shady Ways Data Centers Pass Energy Costs On To Americans https://hardware.slashdot.org/story/25/12/17/036250/senators-count-the-shady-ways-data-centers-pass-energy-costs-on-to-americans?utm_source=rss1.0mainlinkanon&utm_medium=feed

Google sues alleged Chinese scam group behind massive U.S. text message phishing ring www.nbcnews.com/tech/securit... @nbcnews.com

The RansomHouse ransomware group is now using two keys to encrypt files unit42.paloaltonetworks.com/ransomhouse-...

I'd like you to notice how while Carr was dragged before Congress yesterday to address his ham-fisted attempts to censor a comedian, NOBODY asked him ANY questions about his efforts to completely destroy consumer protection and media consolidation limits. The press couldn't care less, either.

DataDog has launched pathfinding.cloud, a database of IAM permissions and permission sets that allow privilege escalation in AWS. pathfinding.cloud

#ESETresearch has discovered a new 🇨🇳-aligned APT group, #LongNosedGoblin. This group focuses on cyberespionage and targets mainly governmental entities in Southeast Asia and Japan. www.welivesecurity.com/en/eset-rese... 1/7

The DomainTools security team looks at recent APT35 leaks showing how the group operates with extreme government oversight and bureaucracy, rather than a group of loose canon hackers dti.domaintools.com/the-apt35-du...

Russia is following the Pakistani model of disruption and destabilization in Europe, using proxies and spinning up the crazies to attack the EU. AP has a map apnews.com/projects/rus...

A Latvian crew member was detained for installing a RAT on an Italian ferry

After a wave of criticism, GitHub has postponed a plan to increase prices for GitHub Actions github.blog/changelog/20...

Google's Wiz division has awarded $320,000 to security researchers for 11 exploits used during the ZeroDay Cloud hacking contest last week www.wiz.io/blog/wiz-zer...

French authorities said they arrested the man who hacked their Ministry of Interior email servers. He's a known hacker who was already convicted this year. Anyone has any ideas who this could be? cc: @gabrielthierry.bsky.social www.rfi.fr/en/france/20...

Sweet... a SonicWall zero-day to go with that Cisco zero-day right before your Xmas holiday psirt.global.sonicwall.com/vuln-detail/...

React2Shell used as initial access vector for Weaxor ransomware deployment www.s-rminform.com/latest-think...

Big story here and among the many scoops in it is the allegation that China is quietly handing out passports and tolerating dual nationality for specialists recruited to replicate ASML’s EUV machines at a secret factory in Shenzhen. www.reuters.com/world/china/...