Threat Advisories:
VVS Stealer Exposed: Inside a Stealthy Discord Credential Theft Operation Silent Clicks, Lasting Access: APT36’s Fileless Espionage Playbook GlassWorm’s Quiet Infiltration of Mac Systems Silver Fox Slips ValleyRAT Into India Through Fake Tax Notices LangGrinch: Critical LangChain Serialization Flaws Enable Secret Exfiltration Inside Evasive Panda’s Long-Running AitM Campaign CVE-2025-14847: Critical MongoDB Memory Leak Exposes Sensitive Data MacSync A Notarized macOS Malware That Slips Past Gatekeeper December 2025 Linux Patch Roundup Automation Gone Rogue: CVE-2025-68613 Puts n8n Instances at Risk Prince of Persia APT Campaigns Across Iran, Europe, and Beyond GhostPoster: A Multi-Stage Malware Campaign Hiding Inside Firefox Extensions GachiLoader Deployed via the YouTube Ghost Network CVE-2025-20393: Critical Cisco AsyncOS Zero-Day Actively Exploited SonicWall SMA Flaw Leads to Unauthenticated Root Access Fortinet Authentication Bug Sparks Rapid Exploitation Apple WebKit Zero-Days Exploited in the Wild SantaStealer: An Emerging MaaS Infostealer Ahead of Its 2025 Debut Phantom Stealer Hidden in Fake Bank Confirmations Google Chrome Zero-Day Exploited in ANGLE Graphics Engine
Hive Pro recognized in Gartner® Magic Quadrant™ for Exposure Assessment Platform, 2025 Watch platform in action
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s ComparisonSave Cost , Reduce Complexity and Increase Security by Augmenting and Replacing your existing Vulnerability Management platform
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoThreat Digest - Subscribe
Platform
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s Comparison
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Resources
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoThreat Digest - Subscribe
November 18, 2025

Weekly Threat Digest : 10th NOVEMBER to 16th NOVEMBER 2025

HiveForce Labs

HiveForce Labs

For a detailed threat digest, download the PDF file here


HiveForce Labs has recently made significant advancements in identifying cybersecurity threats. Over the past week, four major attacks were detected, six critical vulnerabilities were actively exploited, and three threat actor were closely monitored, reflecting an alarming escalation in malicious activities.

Microsoft’s November 2025 Patch Tuesday fixed 63 flaws, including a Windows Kernel zero-day, making rapid patching and verified ESU coverage critical to prevent remote attacks and privilege escalation. UNC6485’s exploitation of CVE-2025-12480 shows how a single Triofox flaw can enable full system takeover, letting attackers create rogue admins, deploy remote-access tools, and steal data, spotlighting the growing risks in remote-access and file-sharing platforms.

Additionally, APT41 exploited critical vulnerabilities to infiltrate a U.S. policy non-profit in April 2025, deploying stealthy tools for espionage in line with China’s ongoing targeting of U.S. policy institutions. Lazarus is targeting aerospace and defense firms with a macro-laden Word file that deploys an upgraded Comebacker backdoor, using multi-stage, memory-resident, and encrypted tactics to support stealthy espionage. These rising threats pose significant and immediate dangers to users worldwide.


Subscribe to receive our weekly threat digests and alerts directly in your inbox.

Recent Resources

Dive into our library of resources for expert insights, guides, and in-depth analysis on maximizing Uni5 Xposure’s capabilities

Security analyst performing threat and vulnerability management by reviewing data on multiple screens.
Blog
Blog
The 6-Step Threat and Vulnerability Management Process
Master the 6-step threat and vulnerability management process to identify, prioritize, and fix security risks for a stronger, more resilient organization.
Analysts using a cyber threat exposure management dashboard to prioritize cyber threats.
Blog
Blog
Cyber Threat Exposure Management: A 5-Step Guide
Get a clear, actionable overview of cyber threat exposure management with this 5-step guide to identifying, prioritizing, and reducing real security risks.
A security analyst uses dashboards for continuous validation of security controls and threat monitoring.
Blog
Blog
What Is Security Controls Validation? An Essential Guide
Learn how security controls validation helps you test, measure, and improve your defenses so you know your security tools are working as intended.
A network diagram on a screen and a notebook used for cyber risk prioritization.
Blog
Blog
Cyber Risk Prioritization: A Practical Guide
Learn how cyber risk prioritization helps you focus on the most critical threats, protect key assets, and make smarter security decisions for your business.
Analysts monitoring BAS attack simulation data on dashboards to improve vulnerability management.
Blog
Blog
How BAS Improves Vulnerability Management (And Why)
How does BAS improve vulnerability management? Learn how automated attack simulations help you find, validate, and prioritize real security risks.
Cybersecurity analyst using threat intelligence to prioritize vulnerability management.
Blog
Blog
How Threat Intelligence Transforms Vulnerability Management
How does threat intelligence improve vulnerability management? Learn how real-time insights help you prioritize and address the threats that matter most.
Analysts performing continuous threat exposure management by monitoring global threats on digital maps.
Blog
Blog
What is Continuous Threat Exposure Management? A Guide For CISOs and Vulnerability Teams
Get clear answers to what is continuous threat exposure management and learn practical steps to help your team reduce risk and strengthen security.
A magnifying glass focuses on vulnerability management dashboards to identify and prioritize security risks.
Blog
Blog
How to Modernize Your Vulnerability Management Program A Helpful Resource Guide For CISOS and Vuln teams
Get clear answers to what is vulnerability management, why it matters, and how to build a proactive strategy to reduce your organization’s cyber risk.

Book a demo and find out more about how Hive Pro can double your operational efficiency

Book a Demo