RadioCSIRT - Your Cybersecurity update for Wednesday, November 11, 2025 (Ep. 482)
Failed to add items
Add to basket failed.
Add to Wish List failed.
Remove from Wish List failed.
Follow podcast failed
Unfollow podcast failed
RadioCSIRT - Your Cybersecurity update for Wednesday, November 11, 2025 (Ep. 482)
-
Narrated by:
-
By:
About this listen
🔐 KeePassXC: full transparency on AI use in development — no AI functions integrated, and every contribution is subject to full human review.
🏢 NCSC (UK): launch of the Cyber Action Toolkit, a free and interactive tool designed to help small businesses strengthen their cybersecurity with simple, practical steps.
💥 Triofox (CVE-2025-12480): active exploitation of a critical flaw (CVSS 9.1) allowing remote code execution through the built-in antivirus feature. Mandiant urges immediate patching.
📱 APT37: the North Korean threat group is abusing Google Find Hub to geolocate and remotely wipe Android smartphones belonging to South Korean victims.
💾 3CX: massive scans targeting FTP backup servers — reminder: avoid FTP for sensitive data and verify SSH/Telnet shared accounts.
🕵️ Fantasy Hub: a new “spyware-as-a-service” for rent, complete with fake Android apps, customization kits, and customer support.
🦊 Mozilla Firefox: new built-in defenses against fingerprinting, reducing online tracking without breaking website compatibility.
⚡️ Don’t think — patch! 🚀
📚 Sources:
🔗 Malwarebytes – Fantasy Hub : https://www.malwarebytes.com/blog/news/2025/11/fantasy-hub-is-spyware-for-rent-complete-with-fake-app-kits-and-support
🔗 SANS ISC – 3CX FTP scans : https://isc.sans.edu/diary/rss/32464
🔗 Bleeping Computer – Firefox anti-fingerprinting : https://www.bleepingcomputer.com/news/security/mozilla-firefox-gets-new-anti-fingerprinting-defenses/
🔗 Bleeping Computer – APT37 / Find Hub : https://www.bleepingcomputer.com/news/security/apt37-hackers-abuse-google-find-hub-in-android-data-wiping-attacks/
🔗 The Hacker News – Triofox exploit : https://thehackernews.com/2025/11/hackers-exploiting-triofox-flaw-to.html
🔗 NCSC – Cyber Action Toolkit : https://www.ncsc.gov.uk/blog-post/cat-breaking-down-resilience-barriers
🔗 KeePassXC – Code quality & AI policy : https://keepassxc.org/blog/2025-11-09-about-keepassxcs-code-quality-control/
📞 Share your feedback:
📧 radiocsirt@gmail.com
🌐 www.radiocsirt.com
📰 radiocsirtintl.substack.com
CyberSecurity #KeePassXC #NCSC #Triofox #APT37 #3CX #Firefox #Spyware #RadioCSIRT