Weekly Cyber: AI misuse, darknet takedowns, hypervisor intrusions & insider access headline the week

https://www.technadu.com/shifting-threats-and-tension-between-offense-and-defense/615252/

• DMSoldiersNDD operator jailed
• 33M impacted in Coupang breach
• Cryptomixer seized (€25M)
• WARP PANDA ESXi/vCenter intrusion
• €700M fraud network dismantled
• Gov DBs wiped by contractors
• FAA contractor insider threat
• Discord child-exploitation ring busted
• Poetic prompts bypass AI guardrails

#CyberSecurity #ThreatIntel #WeeklyCyber #CloudSecurity #AIJailbreak #DarkWeb #InsiderThreats

🚨 New HIGH CVE detected in AWS Lambda 🚨
CVE-2025-66471 impacts urllib3 in 7 Lambda base images.

Details: https://github.com/aws/aws-lambda-base-images/issues/359
More: https://lambdawatchdog.com/

#AWS #Lambda #CVE #CloudSecurity #Serverless

🚨 New HIGH CVE detected in AWS Lambda 🚨
CVE-2025-66471 impacts urllib3 in 7 Lambda base images.

Details: https://github.com/aws/aws-lambda-base-images/issues/359
More: https://lambdawatchdog.com/

#AWS #Lambda #CVE #CloudSecurity #Serverless

🚨 New HIGH CVE detected in AWS Lambda 🚨
CVE-2025-66418 impacts urllib3 in 7 Lambda base images.

Details: https://github.com/aws/aws-lambda-base-images/issues/358
More: https://lambdawatchdog.com/

#AWS #Lambda #CVE #CloudSecurity #Serverless

🚨 New HIGH CVE detected in AWS Lambda 🚨
CVE-2025-66471 impacts urllib3 in 7 Lambda base images.

Details: https://github.com/aws/aws-lambda-base-images/issues/359
More: https://lambdawatchdog.com/

#AWS #Lambda #CVE #CloudSecurity #Serverless

🚨 New HIGH CVE detected in AWS Lambda 🚨
CVE-2025-66418 impacts urllib3 in 7 Lambda base images.

Details: https://github.com/aws/aws-lambda-base-images/issues/358
More: https://lambdawatchdog.com/

#AWS #Lambda #CVE #CloudSecurity #Serverless

🚨 New HIGH CVE detected in AWS Lambda 🚨
CVE-2025-66418 impacts urllib3 in 7 Lambda base images.

Details: https://github.com/aws/aws-lambda-base-images/issues/358
More: https://lambdawatchdog.com/

#AWS #Lambda #CVE #CloudSecurity #Serverless

🚨 Lambda Watchdog CVE Report 🚨
Latest AWS Lambda image scan detected 15 CVEs across 28 images:
• 🔴 Critical: 0
• 🟠 High: 9
• 🟡 Medium: 5
• 🔵 Low: 1

Check the full report 👉 https://lambdawatchdog.com/
#AWS #Lambda #CVE #CloudSecurity #Serverless

🚨 Lambda Watchdog CVE Report 🚨
Latest AWS Lambda image scan detected 15 CVEs across 28 images:
• 🔴 Critical: 0
• 🟠 High: 9
• 🟡 Medium: 5
• 🔵 Low: 1

Check the full report 👉 https://lambdawatchdog.com/
#AWS #Lambda #CVE #CloudSecurity #Serverless

🚨 Lambda Watchdog CVE Report 🚨
Latest AWS Lambda image scan detected 15 CVEs across 28 images:
• 🔴 Critical: 0
• 🟠 High: 9
• 🟡 Medium: 5
• 🔵 Low: 1

Check the full report 👉 https://lambdawatchdog.com/
#AWS #Lambda #CVE #CloudSecurity #Serverless

New telemetry from AWS shows exploit attempts against React2Shell (CVE-2025-55182, CVSS 10) starting within hours of disclosure, coming from infrastructure associated with two long-tracked China-linked clusters. Activity includes discovery commands, file writes, and probing other N-days.

Cloudflare’s brief outage during mitigations further highlights how fast large platforms now respond to critical RCEs.

Source: https://thehackernews.com/2025/12/chinese-hackers-have-started-exploiting.html

💬 How do we realistically defend against same-day exploitation?
👍 Follow us for more detailed cyber reports.

#React2Shell #CVE202555182 #CyberSecurity #ThreatIntel #AppSec #WebSecurity #CloudSecurity #InfoSec

Latest cyber & hacking videos compiled for you twice a day. Watch now & stay ahead of threats. 🔒 https://www.youtube.com/playlist?list=PLXqx05yil_mf0Uokd6NLufbM_xv4UmJFw
#CyberSecurity #InfoSec #CloudSecurity #Phishing #EthicalHacking

How does CAI handle 300+ AI models 🤖?

Cybersecurity AI (CAI) integrates a vast array of AI models, including OpenAI's GPT-4o, Anthropic's Claude 3, and custom ones like Qwen2.5. It achieves this through LiteLLM, a lightweight library supporting modular multi-model use, making AI-powered security testing efficient for diverse scenarios.

#CyberSecurity #AI #PenTesting

🔗 Project link on #GitHub 👉 https://github.com/aliasrobotics/cai

#Infosec #Cybersecurity #Software #Technology #News #CTF #Cybersecuritycareer #hacking #redteam #blueteam #purpleteam #tips #opensource #cloudsecurity

— ✨
🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴‍☠️

📊 39% of cloud environments are vulnerable to React2Shell.

New data from Wiz indicates that nearly 40% of cloud environments contain instances vulnerable to CVE-2025-55182. Even more concerning? 44% of all cloud environments have publicly exposed Next.js instances.

The "secure by design" assumption is working against defenders right now.

✅ Detection is LIVE.

We have updated the Network Vulnerability Scanner in Pentest-Tools.com to help you validate this specific configuration immediately.

As shown in the attached video, you can go from "exposed" to "confirmed" in seconds:

1. Select the Network Scanner

2. Input CVE-2025-55182

3. Get definitive proof with Request/Response evidence

Don't rely on version checks when the exposure surface is this wide.

🔗 Run the detection: https://pentest-tools.com/network-vulnerability-scanning/network-security-scanner-online

📜 Vulnerability breakdown: https://pentest-tools.com/vulnerabilities-exploits/react-server-components-remote-code-execution_28260

📈 Data source: https://www.wiz.io/blog/critical-vulnerability-in-react-cve-2025-55182

#AppSec #ReactJS #CloudSecurity #React2Shell #InfoSec #VulnerabilityManagement #NextJS

Werner Vogels exits after 14 years of AWS keynotes with a pointed warning: AI generates code faster than anyone can understand it. He calls it "verification debt"—software reaching production before comprehension catches up.

Meanwhile, Chinese hackers proved his point, spending 17 months undetected inside U.S. VMware servers.

#CloudSecurity #AIGovernance

https://www.implicator.ai/werner-walks-out-the-hackers-never-left/

WARP PANDA exploiting VMware vCenter, ESXi & stolen Microsoft 365 tokens
https://www.technadu.com/warp-panda-targets-u-s-and-asia-pacific-using-brickstorm-vcenter-esxi-and-stolen-365-tokens-to-reach-virtual-machines/615224/

• BRICKSTORM, Junction, GuestConduit implants used across layers
• VM snapshots + cloned domain controllers for identity harvesting
• SharePoint data accessed via stolen 365 tokens
• Hidden VMs & log tampering for stealth

#CyberSecurity #VMware #ESXi #vCenter #APT #ThreatIntel #CloudSecurity

🚨 Lambda Watchdog CVE Report 🚨
Latest AWS Lambda image scan detected 23 CVEs across 26 images:
• 🔴 Critical: 0
• 🟠 High: 14
• 🟡 Medium: 8
• 🔵 Low: 1

Check the full report 👉 https://lambdawatchdog.com/
#AWS #Lambda #CVE #CloudSecurity #Serverless

🚨 Lambda Watchdog CVE Report 🚨
Latest AWS Lambda image scan detected 23 CVEs across 26 images:
• 🔴 Critical: 0
• 🟠 High: 14
• 🟡 Medium: 8
• 🔵 Low: 1

Check the full report 👉 https://lambdawatchdog.com/
#AWS #Lambda #CVE #CloudSecurity #Serverless

🚨 Lambda Watchdog CVE Report 🚨
Latest AWS Lambda image scan detected 23 CVEs across 26 images:
• 🔴 Critical: 0
• 🟠 High: 14
• 🟡 Medium: 8
• 🔵 Low: 1

Check the full report 👉 https://lambdawatchdog.com/
#AWS #Lambda #CVE #CloudSecurity #Serverless

Software risk have changed. Modern security means continuous, identity-centric, AI-aware threat modeling woven into CI/CD and design practices. https://jpmellojr.blogspot.com/2025/12/why-ai-and-cloud-native-are-security.html #CloudSecurity #ThreatModeling #AIsecurity #SecureByDesign #CSA