⭐📰 New Starred Article! 📰⭐
4 issues holding back CISOs’ security agendas
https://www.csoonline.com/article/4117010/4-issues-holding-back-cisos-security-agendas.html
CybersecKyle
Above-average tech nerd. Father. Husband. Millennial. Associate C|CISO
I work in #IT focusing on Managed Services, Cybersecurity, and more.
Interests: #IT #RMM #SysAdmin #CyberSecurity #InfoSec #Privacy #Python #Apple #iOS #Tech
searchable
Signal
@beardedtechguy.86
Hacker arrested for KMSAuto malware campaign with 2.8 million downloads https://www.bleepingcomputer.com/news/security/hacker-arrested-for-kmsauto-malware-campaign-with-28-million-downloads/
Cybersecurity researchers have disclosed details of what has been described as a "sustained and targeted" spear-phishing campaign that has published over two dozen packages to the npm registry to facilitate credential theft.
27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials https://thehackernews.com/2025/12/27-malicious-npm-packages-used-as.html
Top 5 Ransomware Attacks of 2025: Biggest Fallouts, Biggest Lessons https://www.cm-alliance.com/cybersecurity-blog/top-5-ransomware-attacks-of-2025-biggest-fallouts-biggest-lessons
Horrible news for all those Firefox users.
Mozilla’s New CEO Confirms Firefox Will Become an “AI Browser” https://www.omgubuntu.co.uk/2025/12/mozilla-new-ceo-firefox-ai-browser-strategy
CachyOS Wants to Improve Your Server Performance Now https://itsfoss.com/news/cachyos-server-edition-plans/
beardedtechguy just liked 💙
🎶 'Tonight, Tonight' by Stephen Wilson Jr. on Last.fm. 🎶
https://www.last.fm/music/Stephen+Wilson+Jr./_/Tonight,+Tonight
From yesterday: More than 10,000 Docker Hub container images expose data that should be protected, including live credentials to production systems, CI/CD databases, or LLM model keys.
Over 10,000 Docker Hub images found leaking credentials, auth keys https://www.bleepingcomputer.com/news/security/over-10-000-docker-hub-images-found-leaking-credentials-auth-keys/
From yesterday:
React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors https://thehackernews.com/2025/12/react2shell-exploitation-delivers.html
Another Chrome zero-day under attack: update now https://www.malwarebytes.com/blog/news/2025/12/another-chrome-zero-day-under-attack-update-now
Hackers exploit unpatched Gogs zero-day to breach 700 servers https://www.bleepingcomputer.com/news/security/unpatched-gogs-zero-day-rce-flaw-actively-exploited-in-attacks/
⭐📰 New Starred Article! 📰⭐
Crowdsourced Penetration Testing: Understanding the Risks for Better Decision-Making
This is why you always check the url!
How phishers hide banking scams behind free Cloudflare Pages https://www.malwarebytes.com/blog/news/2025/12/how-phishers-hide-banking-scams-behind-free-cloudflare-pages
Cybersecurity strategies to prioritize now https://www.microsoft.com/en-us/security/blog/2025/12/04/cybersecurity-strategies-to-prioritize-now/
How to build forward-thinking cybersecurity teams for tomorrow https://www.microsoft.com/en-us/security/blog/2025/12/02/how-to-build-forward-thinking-cybersecurity-teams-for-tomorrow/
Dammit!
University of Phoenix discloses data breach after Oracle hack https://www.bleepingcomputer.com/news/security/university-of-phoenix-discloses-data-breach-after-oracle-hack/
Microsoft 365 license check bug blocks desktop app downloads https://www.bleepingcomputer.com/news/microsoft/microsoft-bug-in-microsoft-365-license-checks-blocks-desktop-app-downloads/
Malware Manipulates AI Detection in Latest npm Package Breach https://www.infosecurity-magazine.com/news/malware-ai-detection-npm-package/
New Android Albiriox Malware Gains Traction in Dark Web Markets https://www.infosecurity-magazine.com/news/android-maas-malware-albiriox-dark/
Cyber Security Jobs: How to Start a Career From Scratch in 2025 https://www.cm-alliance.com/cybersecurity-blog/cyber-security-jobs-how-to-start-a-career-from-scratch-in-2025
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst