← Cybersecurity Headlines
Cybersecurity Headlines
Mobile blackout for Russian travelers, Windows 11 supports 3rd party passkeys, Synology patches BeeStation flaw
00:07:23
Loading summary
Transcript3 lines
- [00:00]
A
From the CISO series, it's Cybersecurity Headlines.
- [00:07]
B
These are the cybersecurity headlines for Thursday, November 13, 2025. I'm Sarah Lane. Mobile Blackout for Russian Travelers Russia started imposing 24 hour mobile Internet blackouts for citizens returning from abroad as a security measure to stop Ukrainian drones from using domestic SIM cards for navigation. Travelers can regain access by completing a captcha or verifying their identity. The policy has caused unintentional outages in border regions and follows similar restrictions for foreign SIM users last month. Russia is also expanding its domestic intelligence service FSB authority to order network shutdowns under what it calls emerging threats. Windows 11 supports third party passkey apps Microsoft's November Windows 11 update adds native support for third party passkey managers, starting with 1Password and Bitwarden, which is currently in beta. The update introduces a new Passkey API developed with these companies to expand passwordless authentication options. Users can now store and manage passkeys through Windows, hello or supported apps protected by Azure's hardware security modules. Microsoft also integrated its own password manager from Edge directly into Windows. Synology patches B Station RCE flaw Synology patched a critical remote execution flaw in its B Station devices first demonstrated at PWN2Own Ireland 2025. The bug stemmed from improper buffer size checks that let attackers run arbitrary code remotely. Users should update to B station OS version 1.3.265648 or later. The competition awarded a total of $1,024,750 for 73.0days, with the summoning team winning. Master of PWN Taiwanese firm QNAP also patched several 0days revealed at the event. Amazon Pins Cisco, Citrix attacks to APT Group Amazon's Threat Intelligence team reported that an advanced persistent threat group exploited zero day vulnerabilities in Cisco Identity Services Engine and Citrix netscaler before the vendors disclosed and patched them over the summer. The attackers used custom malware and backdoors tailored to Cisco ise, likely for long term espionage. Amazon traced exploitation back to May and alerted Cisco, while Citrix Bleed 2 was added to CISA's known exploited vulnerabilities catalog in July. Huge thanks to our sponsor Vanta. What is your 2am Security worry? Is it do I have the right controls in place or are my vendors secure? Or the scary one? How do I get out from under these old tools and manual processes? Enter Vanta. Vanta automates manual work so you can stop sweating over spreadsheets, chasing audit evidence and filling out endless questionnaires. Vanta's trust management platform continuously monitors your systems, centralizes your data and simplifies your security at scale. It also fits right into your workflows, using AI to streamline evidence collection, flag risks and keep your program audit ready all the time. With Vanta, you get everything you need to move faster, scale confidently and get back to sleep. Get started at vanta.com headlines new Danabot windows version emerges Danabot has resurfaced with a new Windows variant six months after being disrupted by Operation Endgame back in May. Targeting users in Australia, North America and Europe, the modular banking trojan, offered as malware as a service, lets operators add new functionalities with plugins. Operation Endgame had previously neutralized multiple malware strains and led to 20 international arrest warrants. Zscaler Threat Labs identified that campaign's command and control servers and wallet addresses and shared associated indicators of compromise. UK unveils new cybersecurity bill the British government introduced its long delayed Cybersecurity and Resilience bill, which would impose strict standards and large fines on critical infrastructure and digital service providers that fail to protect against cyber attacks. The law expands the 2018 NIS regulations to include sectors like healthcare, energy and IT service providers, requiring rapid incident reporting and regulator oversight. Cyber Insurance Payouts soar in UK we're going to stay in the UK for this next story, where cyber insurance payouts jumped 230% in 2024 to 197 million pounds, up 138 million pounds from 2023, while policy numbers rose 17%, according to the association of British Insurers, or ABI. Malware and ransomware accounted for 51% of claims, that is up from 32%. The ABI noted that policies now provide risk prevention support alongside financial coverage. Insurers increasingly require baseline cybersecurity measures and the proposed government ban on ransom payments could tighten these requirements even more. Google Files lawsuit against Lighthouse scammers Google filed a lawsuit against 25 unnamed individuals in China behind the Lighthouse phishing as a service kit, which has reportedly victimized over 1 million people with smishing campaigns posing as Easy Pass or USPS notifications. The suit alleges violations of the Racketeer Influenced and Corrupt Organizations act, the Lanham act and the Computer Fraud and Abuse act, and seeks damages and a court order to block Lighthouse linked domains. Google also endorsed three US Bills targeting fraud and scam operations to strengthen long term protections. Boston Area security professionals mark your calendars. On Monday, November 24th, we're bringing the CISO series Community together at City Tap House Boston. Whether you're a seasoned CISO or just breaking into the field, come connect with your peers over refreshing beverages and real talk about security. Head to cisoseries.com events to save your spot. If you have some thoughts on the news from today or about our show in general, be sure to reach out to us@feedbackisoseries.com we really want to hear from you. I am Sarah Lane, reporting for the CISO series. Stay classy out there everyone.
- [07:07]
A
Cybersecurity headlines are available every weekday. Head to cisoseries.com for the full stories behind the headlines.