Notícias 

A hacking campaign is targeting GlobalProtect logins and scannig SonicWall APIs since December 2, 2025. A campaign began on December 2 targeting Palo Alto GlobalProtect portals with login attempts and scanning SonicWall SonicOS API endpoints. The activity came from over 7,000 IPs tied to German hosting provider 3xK GmbH, which operates its own BGP network […]

The fewer entry points you leave open, the more secure your smart home will be.

Plus: The Trump administration declines to issue sanctions over Salt Typhoon's hacking spree, officials warn of a disturbingly stealthy Chinese malware specimen, and more.

A campaign has been observed targeting Palo Alto GlobalProtect portals with login attempts and launching scanning activity against SonicWall SonicOS API endpoints. [...]

Over 77,000 Internet-exposed IP addresses are vulnerable to the critical React2Shell remote code execution flaw (CVE-2025-55182), with researchers now confirming that attackers have already compromised over 30 organizations across multiple sectors. [...]

The cybersecurity startup detects impersonation risk in real-time, across video, phone, and chat communication. The post Imper.ai Emerges From Stealth Mode With $28 Million in Funding appeared first on SecurityWeek.

The dangerous ClayRat Android spyware has evolved, gaining the ability to steal PINs, record screens, and disable security by abusing Accessibility Services. Users must beware of fake apps spreading through phishing sites and Dropbox.

Other noteworthy stories that might have slipped under the radar: Akamai patches HTTP smuggling vulnerability, Claude Skills used to execute ransomware, PickleScan flaws. The post In Other News: X Fined €120 Million, Array Flaw Exploited, New Iranian Backdoor appeared first on SecurityWeek.

A debate over actual exploitation is muddying response efforts. Multiple researchers say they've observed working proof of concepts while others assert evidence of attacks is lacking. The post Attackers hit React defect as researchers quibble over proof appeared first on CyberScoop.

Arizona's lawsuit claims Temu's popular app acts like spyware and harvests sensitive device data. The post Arizona Sues Temu Over Covert Data Harvesting Claims appeared first on eSecurity Planet.