Welcome to your daily cybersecurity update 🕵️‍♂️🔥

📱 Samsung – New Critical Flaw Added to CISA’s KEV Catalog (CVE-2025-21042)
CISA has added an Out-of-Bounds Write vulnerability affecting certain Samsung mobile devices to its Known Exploited Vulnerabilities Catalog.
This flaw allows data to be written outside intended memory regions, posing risks to system confidentiality and integrity.
Under Binding Operational Directive 22-01, U.S. federal agencies must patch it immediately, and CISA strongly urges all organizations — public and private — to do the same.

💬 LinkedIn – Surge in Phishing Campaigns Targeting Executives
Thirty-four percent of phishing attacks now occur outside traditional email channels, with LinkedIn becoming a prime vector.
Attackers exploit compromised or legitimate accounts without MFA and use AI to generate convincing spear-phishing messages.
These direct messages bypass standard security filters, leaving detection and response challenging.
LinkedIn has become a key platform for targeting high-value individuals in the finance and technology sectors.

🏢 Allianz UK – Victim of Clop’s Oracle E-Business Suite Exploit
Allianz UK confirmed it was compromised through a zero-day in Oracle E-Business Suite (CVE-2025-61882, CVSS 9.8).
The incident exposed data from 80 current and 670 former customers, all notified and supported.
The attack is part of a wider campaign by the Clop group, known for the MOVEit Transfer breach in 2023.
British regulators have been notified, and remediation measures are ongoing.

🕵️‍♂️ NSO Group – David Friedman Appointed Executive Chairman
Former U.S. ambassador to Israel David Friedman has been named Executive Chairman of NSO Group, the Israeli company behind the Pegasus spyware.
The move follows the company’s acquisition by a consortium of investors led by Robert Simonds.
NSO remains under the supervision of Israel’s Ministry of Defense and continues to face legal actions over the alleged misuse of Pegasus to target journalists and activists.
A U.S. federal court recently banned NSO from using WhatsApp as an infection vector — a decision Friedman described as a “significant setback.”

⚡️ Don’t think — patch fast! 🚀

📚 Sources:
🔗 CISA – Samsung: https://www.cisa.gov/news-events/alerts/2025/11/10/cisa-adds-one-known-exploited-vulnerability-catalog
🔗 Bleeping Computer – LinkedIn: https://www.bleepingcomputer.com/news/security/5-reasons-why-attackers-are-phishing-over-linkedin/
🔗 The Register – Allianz UK: https://www.theregister.com/2025/11/10/allianz_uk_joins_growing_list/
🔗 The Record – NSO Group: https://therecord.media/former-trump-official-named-nso-group-chairman

📞 Share your feedback:
📧 radiocsirt@gmail.com
🌐 www.radiocsirt.com
📰 radiocsirtintl.substack.com

#CyberSecurity #Samsung #LinkedIn #Clop #Allianz #NSO #Pegasus #RadioCSIRT 🎧🔥