EPISODE · Nov 19, 2025 · 9 MIN
RadioCSIRT – Your Cybersecurity update for Wednesday, November 19, 2025 (Ep.23)
from RadioCSIRT - English Edition · host Marc Frédéric GOMEZ
Welcome to your daily cybersecurity podcast.🛰️ Europol dismantles multiple digital piracy services after investigators traced more than EUR 47 million in crypto assets linked to illegal IPTV, streaming, and content-distribution platforms;🛡️ CISA adds a newly identified and actively exploited vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, requiring federal agencies to apply patches under strict timelines;⚠️ PlushDaemon supply-chain attacks: threat actors are hijacking legitimate software update mechanisms to deliver malicious payloads and compromise environments through trusted distribution channels;📹 Large-scale CCTV compromise: thousands of connected surveillance cameras hijacked for coordinated cybercriminal operations, including unauthorized internal access, reconnaissance, and further attack staging;🎭 New Browser-in-the-Browser phishing kit: an advanced toolset capable of cloning authentication portals—including MFA flows—to bypass modern protections and steal credentials and session tokens;🏢 Eurofiber breach confirmed: attackers exfiltrated sensitive customer data and attempted extortion following the November 13 intrusion, with stolen information allegedly shared or offered for sale;🛰️ EdgeStepper implant: a stealthy network-level malware capable of rerouting DNS traffic through compromised routers and intermediary devices, enabling manipulation, interception, and redirection of network flows.⚡️ Don’t think—patch! 🚀📚 Sources:🔗 Europol – Crypto traced to dismantle digital piracy operations https://www.europol.europa.eu/media-press/newsroom/news/eur-47-million-in-crypto-traced-to-disrupt-digital-piracy-services🔗 CISA – New KEV entry added https://www.cisa.gov/news-events/alerts/2025/11/18/cisa-adds-one-known-exploited-vulnerability-catalog🔗 PlushDaemon supply-chain attacks https://www.bleepingcomputer.com/news/security/plushdaemon-hackers-hijack-software-updates-in-supply-chain-attacks/🔗 CCTV system compromisehttps://thecyberexpress.com/cybercrime-cctv-hack/🔗 Browser-in-the-Browser phishing kithttps://cyberpress.org/bitb-phishing-kit/🔗 Eurofiber breach & extortion attempthttps://securityaffairs.com/184822/data-breach/eurofiber-confirms-november-13-hack-data-theft-and-extortion-attempt.html🔗 EdgeStepper implanthttps://thehackernews.com/2025/11/edgestepper-implant-reroutes-dns.html 📞 Share your feedback:📧 [email protected]🌐 www.radiocsirt.org📰 radiocsirtintl.substack.com#CyberSecurity #Europol #CISA #SupplyChain #PlushDaemon #CCTV #Phishing #Eurofiber #EdgeStepper #RadioCSIRT 🎧
NOW PLAYING
RadioCSIRT – Your Cybersecurity update for Wednesday, November 19, 2025 (Ep.23)
No transcript for this episode yet
Similar Episodes
No similar episodes found.
Similar Podcasts
No similar podcasts found.