Zero-Day Exploits Rock Oracle and Chrome; APTs Uncovered in Multi-Year Espionage Campaigns
Summary
This cybersecurity brief for November 23, 2025, covers a tumultuous period marked by the active exploitation of zero-day vulnerabilities in Oracle E-Business Suite by the Cl0p ransomware gang and in Google Chrome. Concurrently, researchers have exposed long-running cyberespionage campaigns by APT24 and APT31, which utilized sophisticated supply chain attacks and cloud-based C2 infrastructure. Other major incidents include a record-breaking 15.72 Tbps DDoS attack mitigated by Microsoft, a critical CVSS 10.0 vulnerability in Grafana Enterprise, and a series of data breaches impacting Harvard University, CrowdStrike, and Salesforce customers via a supply chain attack on Gainsight.
Today New Articles
Harvard University Data Breach Exposes Donor Information After Phone Phishing Attack
Harvard University has disclosed a data breach affecting its Alumni Affairs and Development Office, discovered on November 18, 2025. The incident originated from a phone-based phishing (vishing) attack that gave an unauthorized party access to systems containi...
Article Updates
Logitech Confirms Breach: Clop Ransomware Exploits Oracle Zero-Day
Update:Cox Enterprises has confirmed a data breach affecting nearly 9,500 individuals due to the Clop ransomware gang exploiting the same Oracle E-Business Suite zero-day vulnerability (CVE-2025-61882). The breach occurred in August 2025 but was detected in late Sept...
URGENT: CISA Orders 7-Day Patch for Actively Exploited FortiWeb Zero-Day
Update:Fortinet has officially patched the actively exploited CVE-2025-58034 in FortiWeb WAF, affecting 7.x and 8.x versions. The vulnerability was initially 'stealth-patched' in routine updates before public disclosure. A critical development is the release of an ex...