December 27, 2025

Header image for the Red Dot Weekly Cyber Security News https://reddotsecurity.news

Hello all,

Christmas has passed, and the New Year is just around the corner. Based on what I’ve seen, It seems that threat actors and pen testers may have taken a bit of time off. There was significantly less news of vulnerabilities and exploits to report on this week. And even though there was less, there was some, so let’s get to cyber security news.

Headline NEWS:

  • Mongobleed is the name given to a critical defect found in the Mongo Database. Update to the latest version to fix this information leakage flaw. If you’re unable to update at this time, then you need to turn off Zlib compression until you’re able to do so. Don’t wait, as Proof of Concept (PoC) exploit code is out in the wild already.
  • SonicWall issued a warning to all clients last week to immediately patch their SMA 1000 series devices. This week’s report is that zero-day attacks have been heavily impacting these devices. If you haven’t patched yours yet, do so immediately.
  • WatchGuard issued a warning to all clients last week to immediately patch their Firebox firewalls. This week ShadowServer found more than 115,000 vulnerable WatchGuard Firewalls still unpatched on the internet. I don’t get it. If you own an edge device, why are you not subscribed to the vendor’s notices and applying patches as quickly as possible for items this severe? Then again, it is nearly 2026; why is automatic patching not ubiquitous?

In Ransomware, Malware, and Vulnerabilities News:

  • FBI, INTERPOL, and US DOJ all achieved some nice wins to close out this year, with fake ID generators being shut down, decryption of ransomware strains and arrests of perpetrators, hundreds of arrests of scammers, arrests in a huge ATM exploitation, seizure of a domain behind bank account takeovers, and the shutdown of a massive stolen password platform. Score a few for the good guys!

In Other News Events of Note and Interest:

  • Map reveals which Internet providers are fastest is an article by The Hill that links to the FCC’s newly updated interactive internet speed by map-location chart. It allows you to input your address, and it then shows you what broadband providers service that location, and the maximum offered speed. Thanks to Frontier Fiber coming to my area last year, I was personally able to move from 250/20 to 500/500, and if I want to pay a bit more, I could move up to 7000/7000. It is an excellent resource for yourself and for clients.

Musings:

We made it! The last full week of 2025 has concluded. If your enterprise escaped this year unscathed by cyber criminals, consider yourselves blessed and highly favored. For far too many it was one where they experienced tremendous stress, mentally, emotionally, physically, and financially, enduring havoc and disaster due to success of the unrelenting assaults of the vile, evil, inhuman, soulless, scum that prey on the livelihood of others for their own financial gain, or even worse, mere entertainment. There is a toasty spot reserved in Hades for them. To the defenders, whether you had to deal with a cleanup or not, I say well done good and faithful warrior. You are the line in the sand between darkness and light, good and evil. It is through your dedicated efforts and sacrifices that our companies and clients are able to enter another year. With 2026 just mere days away, I encourage you with the words of Winston Churchill, “…never give in, never give in, never, never, never, never-in nothing, great or small, large or petty — never give in except to convictions of honor and good sense. Never yield to force; never yield to the apparently overwhelming might of the enemy.” And in my words…

Visc. Jan Broucinek

Keep the shields up!

Viscount Jan Broucinek
Red Dot Security News

Headline NEWS

Ransomware, Malware, and Vulnerabilities News

Other News Events of Note and Interest

 

Tags
Share this with: