Here is the most recent Cybersecurity news for the past week:
🚨 Fortinet FortiWeb Vulnerability Actively Exploited After Delayed Patch Disclosure
A critical-severity vulnerability (CVE-2025-64446, CVSS 9.1) in Fortinet’s FortiWeb Web Application Firewall (WAF) is being actively exploited in the wild. Fortinet initially released a patch in late October but delayed public disclosure and assigning a CVE until mid-November, prompting criticism from researchers and CISA, who added the flaw to its Known Exploited Vulnerabilities catalog due to its active use by attackers to gain administrator-level access.
Fortinet’s delayed alert on actively exploited defect put defenders at a disadvantage
🇨🇳 Data Leak Exposes Chinese State-Linked Cyber Arsenal and Global Target List
A major data breach at Chinese cybersecurity firm Knownsec, which has strong ties to state organizations, has reportedly led to the theft of over 12,000 files. The leaked documents allegedly expose sophisticated state-sponsored cyber weapons, internal hacking tools for various operating systems, and a comprehensive database of global intelligence targets.
Chinese Tech Firm Leak Reportedly Exposes State Linked Hacking
📱 New LANDFALL Android Spyware Targets Samsung Devices via Zero-Day Flaw
Security researchers uncovered a new commercial-grade Android spyware, dubbed LANDFALL, that was delivered to high-end Samsung Galaxy devices. The attackers exploited a zero-day vulnerability (CVE-2025-21042) in Samsung’s image processing library, enabling them to steal sensitive data and monitor users via malformed image files sent over messaging apps like WhatsApp.
đź’¬ New York Text Messaging Service Hacked, Sends Hundreds of Thousands of Scam Texts
Hackers successfully breached Mobile Commons, a company providing mass text messaging services to government and non-profit organizations in New York state. The attack, believed to be a spear-phishing or social engineering incident, allowed threat actors to hijack the service and push hundreds of thousands of fraudulent scam texts to subscribers of New York state alerts and various charities.
Hackers breach texting service used by New York state, sending hundreds of thousands of scam texts
⚠️ CISA Warns of Actively Exploited Windows Kernel Zero-Day (CVE-2025-62215)
Microsoft issued patches for over 60 vulnerabilities in its November Patch Tuesday, including an actively exploited zero-day vulnerability in the Windows Kernel tracked as CVE-2025-62215. Although rated “Important,” the flaw is an Elevation of Privilege (EoP) bug that attackers can leverage as part of a multi-stage attack to gain SYSTEM privileges on a compromised Windows device.
