Dec 16, 2025

Email 1 Summary:

Meta has shut down a disinformation network spreading Russian propaganda across Africa for over six months. The network, run by Russia-based entities and African freelancers hired on platforms like Upwork, operated over 65 accounts and 70 pages mimicking news outlets to post anti-US and anti-French content. Freelancers were mostly in sub-Saharan Africa, using fake accounts to recreate removed pages and similar ad content in tight timeframes, suggesting centralized coordination outside Meta. Meta credits French anti-disinformation agency VIGINUM for revealing this network. A smaller network run by a Cameroonian freelancer for Russia’s RT was also uncovered. Other news includes several high-profile data breaches, malware infections, and updates on security features from Microsoft, GNOME banning AI-generated code, and one example of a cruise operator banning smart glasses for privacy reasons.

Email 2 Summary:

The Trump administration is preparing to involve private companies in offensive cyber operations against foreign adversaries, a shift from traditional government-led efforts. A draft national cyber strategy suggests leveraging private businesses to retaliate against criminal and state-sponsored hackers targeting critical infrastructure. This plan includes streamlining regulations and advancing quantum-safe cryptography. Separately, Canada’s privacy commissioner has launched an investigation into facial detection technology on billboards near Toronto’s Union Station amid privacy complaints. The Pope urged Italy’s intelligence services to respect privacy amidst spyware scandals. A major breach exposed sensitive NHS documents, including royal medical data, after ransomware exploited Oracle software vulnerabilities. Other notable reports include the Korean retail giant Coupang facing scrutiny over a massive data breach; Asahi Group elevating cybersecurity priority following ransomware; Apple issuing emergency patches for zero-day vulnerabilities; messaging app Freedom Chat fixing serious security flaws exposing user data; Home Depot revoking exposed GitHub access tokens after a researcher’s disclosure; and warnings about sophisticated North Korean cyber theft targeting cryptocurrency executives via forged video meetings.

Email 3 Summary:

Apple and Google released emergency patches to fix actively exploited zero-day vulnerabilities. Apple patched two WebKit flaws exploited in sophisticated targeted attacks affecting iOS, iPadOS, and macOS. Google updated Chrome to fix several vulnerabilities, including a high-severity flaw under active exploitation, which CISA has mandated federal agencies to patch by January 2. Meanwhile, Google’s Threat Intelligence Group warns of widespread exploitation of the React2Shell vulnerability by multiple China-linked cyber espionage groups, Iranian actors, and cybercriminal gangs, urging urgent patching. France’s Ministry of the Interior confirmed a cyberattack compromising its email servers, with possible motivations including foreign interference, political challenges, or cybercrime. Sponsored content promotes a session on AI-related security risks. Selected readings cover a large MongoDB data exposure and recent security patches.

Email 4 Summary:

SecurityWeek reports that multiple Chinese cyber groups are exploiting the React2Shell vulnerability to deliver malware. The report covers other cybersecurity news including Atlassian patching an Apache Tika flaw, a third hacker pleading guilty related to DraftKings, and a major data breach at 700Credit impacting 5.8 million people. Apple patched two zero-day vulnerabilities related to exploited Chrome flaws. Additional coverage includes Microsoft’s expansion of its bug bounty program to include third-party code affecting its online services, and other cybersecurity industry developments and events. Expert insights highlight the need for better communication in security teams, the growing importance of cybersecurity as a core business discipline, and how AI is enhancing phishing attacks.

Stay Well!