Cyber Daily News

Cyber daily news for 12/18/2025. The FBI, together with partners in Germany and Finland, has taken down the online infrastructure of the eNote cryptocurrency exchange. The platform was used to launder over $70,000,000 from ransomware and account takeover attacks. Seas servers, websites, and mobile apps deal a major blow to criminal financing. Cisco warns of an active campaign exploiting a critical vulnerability in its async OS software.

The floor in secure email gateway and secure email and web manager appliances allows root level command execution when the spam quarantine feature is exposed to the Internet. No immediate workarounds are available, so organizations should harden perimeters and consider rebuilding compromised devices. In Japan, office supplies giant Askel Corporation is restarting core logistics after a ransomware assault forced a two month shutdown of shipping operations. The breach exposed roughly 740,000 records. Askel did not pay ransom, but is now enforcing multifactor authentication and continuous monitoring across its environment.

Hewlett Packard Enterprise has released a patch for a maximum severity vulnerability in its OneView management suite identified as CVE twenty twenty five three seven one six four. The bug could allow remote code execution on servers that control data center infrastructure. Customers are urged to apply the update immediately to protect management planes. A new threat dubbed ghost pairing is abusing WhatsApp's device linking feature to hijack accounts without user authentication. Attackers generate pairing codes that link a malicious device to the victim's WhatsApp, taking control of the account.

First seen in Czechia, the campaign can spread globally, highlighting the need to pairing codes and enable extra security layers. That's it for today's briefing. Thanks for tuning in. Don't forget to like and subscribe to stay up to date with the latest in cybersecurity. See you tomorrow.