Researchers Discover 14,000 Routers Wrangled Into Never-Before-Seen Botnet - Slashdot

An anonymous reader quotes a report from Ars Technica: Researchers say they have uncovered a takedown-resistant botnet of 14,000 routers and other network devices -- primarily made by Asus -- that have been conscripted into a proxy network that anonymously carries traffic used for cybercrime. The ma...

FBI Warns FSB-Linked Hackers Exploiting Unpatched Cisco Devices for Cyber Espionage

Russian hackers exploit Cisco CVE-2018-0171 since 2022, breaching global networks and targeting U.S. infrastructure.

Over 800 N-able servers left unpatched against critical flaws

Over 800 N-able N-central servers remain unpatched against a pair of critical security vulnerabilities tagged as actively exploited last week.

Microsoft: Happy 2025. Here’s 161 Security Updates – Krebs on Security

UK nuclear site Sellafield fined $440,000 for cybersecurity shortfalls

Nuclear waste processing facility Sellafield has been fined £332,500 ($440k) by the Office for Nuclear Regulation (ONR) for failing to adhere to cybersecurity standards and putting sensitive nuclear information at risk over four years, from 2019 to 2023.

Chinese malware removed from SOHO routers after FBI issues covert commands

Routers were being used to conceal attacks on critical infrastructure.

“This vulnerability is now under mass exploitation.” Citrix Bleed bug bites hard

By some estimates, 20,000 devices have already been hacked.

How China gets free intel on tech companies’ vulnerabilities

If your company operates in China, it must reveal all hackable bugs to government.

How an unpatched Microsoft Exchange 0-day likely caused one of the UK’s biggest hacks ever

Evidence appears to show a critical 0-day tracked as ProxyNotShell was exploited.

Federal agency hacked by 2 groups thanks to flaw that went unpatched for 4 years

A code-execution bug with a 9.8 severity rating gave control over agency's network.