Threat Advisories:
Silent Clicks, Lasting Access: APT36’s Fileless Espionage Playbook GlassWorm’s Quiet Infiltration of Mac Systems Silver Fox Slips ValleyRAT Into India Through Fake Tax Notices LangGrinch: Critical LangChain Serialization Flaws Enable Secret Exfiltration Inside Evasive Panda’s Long-Running AitM Campaign CVE-2025-14847: Critical MongoDB Memory Leak Exposes Sensitive Data MacSync A Notarized macOS Malware That Slips Past Gatekeeper December 2025 Linux Patch Roundup Automation Gone Rogue: CVE-2025-68613 Puts n8n Instances at Risk Prince of Persia APT Campaigns Across Iran, Europe, and Beyond GhostPoster: A Multi-Stage Malware Campaign Hiding Inside Firefox Extensions GachiLoader Deployed via the YouTube Ghost Network CVE-2025-20393: Critical Cisco AsyncOS Zero-Day Actively Exploited SonicWall SMA Flaw Leads to Unauthenticated Root Access Fortinet Authentication Bug Sparks Rapid Exploitation Apple WebKit Zero-Days Exploited in the Wild SantaStealer: An Emerging MaaS Infostealer Ahead of Its 2025 Debut Phantom Stealer Hidden in Fake Bank Confirmations Google Chrome Zero-Day Exploited in ANGLE Graphics Engine BRICKSTORM Breaks In: China’s Quiet Grip on US Virtual Stack
Hive Pro recognized in Gartner® Magic Quadrant™ for Exposure Assessment Platform, 2025 Watch platform in action
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s ComparisonSave Cost , Reduce Complexity and Increase Security by Augmenting and Replacing your existing Vulnerability Management platform
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoThreat Digest - Subscribe
Platform
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s Comparison
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Resources
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoThreat Digest - Subscribe
December 3, 2025

Monthly Threat Digest NOVEMBER 2025

For a detailed threat digest, download the pdf file here


In November reshaped the cybersecurity landscape with active exploitation of two celebrity vulnerabilities and 10 zero-days. The standout threat, CVE-2025-61882, is a critical unauthenticated remote code execution flaw in Oracle E-Business Suite now leveraged by the Cl0p ransomware group.

The ShadowRay 2.0 campaign underscored the speed of attacker evolution in the AI era. Exposed Ray clusters became a global launchpad for cryptojacking, data theft, and multi-purpose botnet operations. Threat actors exploited an unpatched Ray ecosystem flaw, AI-generated payloads, DevOps-style malware pipelines, and Ray’s own orchestration to propagate across thousands of nodes with minimal friction.

Silent Lynx continued its espionage run across Central Asia, targeting government, diplomatic, and infrastructure sectors through summit-themed phishing. The “Peek-A-Baku” operation to deploy custom implants, including Silent Loader and LAPLAS. In parallel, China-linked APT41 pursued a U.S. policy-influencing non-profit by exploiting Log4j and Atlassian OGNL Injection, leaning on legitimate tools for persistence.

CVE-2025-59287, a recently patched Microsoft WSUS flaw, was weaponized immediately after public exploit code surfaced. Attackers used it to compromise servers and drop ShadowPad, a backdoor tied to Chinese state-aligned operators. The threat curve continues upward, and prioritized defensive adaptation is a mandatory baseline in today’s operational environment.

Subscribe to receive our weekly threat digests and alerts directly in your inbox.

Recent Resources

Dive into our library of resources for expert insights, guides, and in-depth analysis on maximizing Uni5 Xposure’s capabilities

Security analyst performing threat and vulnerability management by reviewing data on multiple screens.
Blog
Blog
The 6-Step Threat and Vulnerability Management Process
Master the 6-step threat and vulnerability management process to identify, prioritize, and fix security risks for a stronger, more resilient organization.
Analysts using a cyber threat exposure management dashboard to prioritize cyber threats.
Blog
Blog
Cyber Threat Exposure Management: A 5-Step Guide
Get a clear, actionable overview of cyber threat exposure management with this 5-step guide to identifying, prioritizing, and reducing real security risks.
A security analyst uses dashboards for continuous validation of security controls and threat monitoring.
Blog
Blog
What Is Security Controls Validation? An Essential Guide
Learn how security controls validation helps you test, measure, and improve your defenses so you know your security tools are working as intended.
A network diagram on a screen and a notebook used for cyber risk prioritization.
Blog
Blog
Cyber Risk Prioritization: A Practical Guide
Learn how cyber risk prioritization helps you focus on the most critical threats, protect key assets, and make smarter security decisions for your business.
Analysts monitoring BAS attack simulation data on dashboards to improve vulnerability management.
Blog
Blog
How BAS Improves Vulnerability Management (And Why)
How does BAS improve vulnerability management? Learn how automated attack simulations help you find, validate, and prioritize real security risks.
Cybersecurity analyst using threat intelligence to prioritize vulnerability management.
Blog
Blog
How Threat Intelligence Transforms Vulnerability Management
How does threat intelligence improve vulnerability management? Learn how real-time insights help you prioritize and address the threats that matter most.
Analysts performing continuous threat exposure management by monitoring global threats on digital maps.
Blog
Blog
What is Continuous Threat Exposure Management? A Guide For CISOs and Vulnerability Teams
Get clear answers to what is continuous threat exposure management and learn practical steps to help your team reduce risk and strengthen security.
A magnifying glass focuses on vulnerability management dashboards to identify and prioritize security risks.
Blog
Blog
How to Modernize Your Vulnerability Management Program A Helpful Resource Guide For CISOS and Vuln teams
Get clear answers to what is vulnerability management, why it matters, and how to build a proactive strategy to reduce your organization’s cyber risk.

Book a demo and find out more about how Hive Pro can double your operational efficiency

Book a Demo