⚡ Weekly Recap: Firewall Exploits, AI Data Theft, Android Hacks, APT Attacks, Insider Leaks & More
Monday, December 22, 2025
What
Cyber attackers are increasingly targeting vulnerabilities in network security products from major vendors like Cisco, Fortinet, and SonicWall, with real-world exploitation of critical flaws leading to significant risks. Additionally, malicious Chrome extensions have been discovered that collect sensitive user data from AI chat interactions, raising concerns about privacy and security. The exploitation of these vulnerabilities and tools underscores the need for timely updates and vigilance in cybersecurity practices.
Where
Global, with specific mentions of attacks on entities in Europe, Southeast Asia, and the Americas.
When
Reported incidents occurred in the past week, with ongoing campaigns and vulnerabilities being actively exploited.
Key Factors
- •Exploitation of CVE-2025-20393 in Cisco's AsyncOS by a China-nexus APT actor.
- •Malicious Chrome extensions with over 8 million installations harvesting user data.
- •Emergence of botnets like Kimwolf targeting Android TVs, indicating a broader attack surface.
Takeaways
- →Regularly update and patch all network security products to mitigate risks from known vulnerabilities.
- →Monitor and audit browser extensions to prevent data harvesting and unauthorized access.
- →Implement a comprehensive security strategy that includes threat detection and response capabilities.
Opens original article on The Hacker News
