Threat Advisories:
Silent Clicks, Lasting Access: APT36’s Fileless Espionage Playbook GlassWorm’s Quiet Infiltration of Mac Systems Silver Fox Slips ValleyRAT Into India Through Fake Tax Notices LangGrinch: Critical LangChain Serialization Flaws Enable Secret Exfiltration Inside Evasive Panda’s Long-Running AitM Campaign CVE-2025-14847: Critical MongoDB Memory Leak Exposes Sensitive Data MacSync A Notarized macOS Malware That Slips Past Gatekeeper December 2025 Linux Patch Roundup Automation Gone Rogue: CVE-2025-68613 Puts n8n Instances at Risk Prince of Persia APT Campaigns Across Iran, Europe, and Beyond GhostPoster: A Multi-Stage Malware Campaign Hiding Inside Firefox Extensions GachiLoader Deployed via the YouTube Ghost Network CVE-2025-20393: Critical Cisco AsyncOS Zero-Day Actively Exploited SonicWall SMA Flaw Leads to Unauthenticated Root Access Fortinet Authentication Bug Sparks Rapid Exploitation Apple WebKit Zero-Days Exploited in the Wild SantaStealer: An Emerging MaaS Infostealer Ahead of Its 2025 Debut Phantom Stealer Hidden in Fake Bank Confirmations Google Chrome Zero-Day Exploited in ANGLE Graphics Engine BRICKSTORM Breaks In: China’s Quiet Grip on US Virtual Stack
Hive Pro recognized in Gartner® Magic Quadrant™ for Exposure Assessment Platform, 2025 Watch platform in action
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s ComparisonSave Cost , Reduce Complexity and Increase Security by Augmenting and Replacing your existing Vulnerability Management platform
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoThreat Digest - Subscribe
Platform
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s Comparison
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Resources
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoThreat Digest - Subscribe
December 17, 2025

Weekly Threat Digest : 8th DECEMBER to 14th DECEMBER 2025

HiveForce Labs

HiveForce Labs

For a detailed threat digest, download the PDF file here


HiveForce Labs has reported a sharp rise in cybersecurity threats, highlighting the increasing complexity and frequency of global cyber incidents. Over the past week, ten major attacks were detected, fifteen vulnerabilities were publicly disclosed, and eight active threat actor groups were monitored, signaling a concerning escalation in malicious activity.

Much of this surge is being fueled by the rapid weaponization of newly disclosed and zero-day vulnerabilities. CVE-2025-55182, known as React2Shell, is a critical unauthenticated remote code execution flaw in React Server Components caused by unsafe deserialization in the Flight protocol. The flaw was exploited within days of disclosure by multiple threat actors observed leveraging the vulnerability to deploy cryptominers, web shells, and persistent backdoors during mass scanning campaigns. At the same time, multiple zero-days remain under active exploitation: CVE-2025-62221 enables privilege escalation on Windows systems via the Cloud Files Mini Filter Driver; CVE-2025-14174 targets Google Chromium through an out-of-bounds memory access flaw in the ANGLE graphics engine; and CVE-2025-8110 exposes Gogs deployments to authenticated remote code execution due to improper symbolic-link handling. With fixes incomplete or still pending, hundreds of environments remain exposed to live attacks.

Beyond vulnerability exploitation, state-aligned threat activity continues to intensify. China-linked operators deploy BRICKSTORM, a stealthy Go-based ELF backdoor designed for long-term persistence and deep system control. The malware has also been used by the WARP PANDA threat group during intrusions against U.S. organizations in 2025. Together, these developments underscore the need for timely patching, continuous monitoring, and sustained defensive vigilance as attackers refine and diversify their intrusion strategies.


Subscribe to receive our weekly threat digests and alerts directly in your inbox.

Recent Resources

Dive into our library of resources for expert insights, guides, and in-depth analysis on maximizing Uni5 Xposure’s capabilities

Security analyst performing threat and vulnerability management by reviewing data on multiple screens.
Blog
Blog
The 6-Step Threat and Vulnerability Management Process
Master the 6-step threat and vulnerability management process to identify, prioritize, and fix security risks for a stronger, more resilient organization.
Analysts using a cyber threat exposure management dashboard to prioritize cyber threats.
Blog
Blog
Cyber Threat Exposure Management: A 5-Step Guide
Get a clear, actionable overview of cyber threat exposure management with this 5-step guide to identifying, prioritizing, and reducing real security risks.
A security analyst uses dashboards for continuous validation of security controls and threat monitoring.
Blog
Blog
What Is Security Controls Validation? An Essential Guide
Learn how security controls validation helps you test, measure, and improve your defenses so you know your security tools are working as intended.
A network diagram on a screen and a notebook used for cyber risk prioritization.
Blog
Blog
Cyber Risk Prioritization: A Practical Guide
Learn how cyber risk prioritization helps you focus on the most critical threats, protect key assets, and make smarter security decisions for your business.
Analysts monitoring BAS attack simulation data on dashboards to improve vulnerability management.
Blog
Blog
How BAS Improves Vulnerability Management (And Why)
How does BAS improve vulnerability management? Learn how automated attack simulations help you find, validate, and prioritize real security risks.
Cybersecurity analyst using threat intelligence to prioritize vulnerability management.
Blog
Blog
How Threat Intelligence Transforms Vulnerability Management
How does threat intelligence improve vulnerability management? Learn how real-time insights help you prioritize and address the threats that matter most.
Analysts performing continuous threat exposure management by monitoring global threats on digital maps.
Blog
Blog
What is Continuous Threat Exposure Management? A Guide For CISOs and Vulnerability Teams
Get clear answers to what is continuous threat exposure management and learn practical steps to help your team reduce risk and strengthen security.
A magnifying glass focuses on vulnerability management dashboards to identify and prioritize security risks.
Blog
Blog
How to Modernize Your Vulnerability Management Program A Helpful Resource Guide For CISOS and Vuln teams
Get clear answers to what is vulnerability management, why it matters, and how to build a proactive strategy to reduce your organization’s cyber risk.

Book a demo and find out more about how Hive Pro can double your operational efficiency

Book a Demo