CISA Alerts on Android Zero-Day Vulnerabilities CVE-2025-48572 and CVE-2025-48633

Thursday, December 4, 2025

Top 5 Cybersecurity Stories You Should Know

1. CISA Alerts on Android Zero-Day Vulnerabilities CVE-2025-48572 and CVE-2025-48633 — tl;dr: The Cybersecurity and Infrastructure Security Agency (CISA) has added two critical Android vulnerabilities, CVE-2025-48572 and CVE-2025-48633, to its Known Exploited Vulnerabilities catalog due to active exploitation. CVE-2025-48572 allows privilege escalation, while CVE-2025-48633 enables information disclosure, posing significant risks to Android devices globally. Organizations must prioritize remediation by December 23, 2025, following vendor instructions or consider discontinuing affected products. With Android devices comprising about 70% of the mobile market, timely action is crucial to prevent unauthorized access and data breaches.
   ↪ https://gbhackers.com/android-zero-day/

2. Google Patches Actively Exploited Sandbox Escape Zero-Day CVE-2025-6558 in Chrome — tl;dr: Google has released a critical security update for Chrome, addressing six vulnerabilities, including the actively exploited sandbox escape zero-day, CVE-2025-6558, rated 8.8 in severity. Discovered by Google’s Threat Analysis Group, this flaw allows attackers to execute arbitrary code via a specially crafted HTML page, compromising the browser's GPU process. Users are urged to update to Chrome version 138.0.7204.157 or .158 immediately to mitigate risks. This is the fifth actively exploited flaw fixed in Chrome this year, highlighting the urgent need for regular updates to maintain security.
   ↪ https://www.bleepingcomputer.com/news/security/google-fixes-actively-exploited-sandbox-escape-zero-day-in-chrome/

3. Nippon Steel Solutions Data Breach Caused by Zero-Day Vulnerability — tl;dr: Nippon Steel Solutions, a subsidiary of Nippon Steel Corporation, experienced a significant data breach due to a zero-day attack, allowing unauthorized access to sensitive internal systems. This breach highlights the risks associated with unknown vulnerabilities, particularly in critical sectors like steel manufacturing. European organizations, especially those in heavy industry and supply chains, should be aware of potential secondary risks, including supply chain compromise. To mitigate risks, companies should enhance threat detection, implement advanced security measures, and collaborate with industry information sharing centers to stay informed about emerging threats.
   ↪ https://radar.offseq.com/threat/nippon-steel-solutions-suffered-a-data-breach-foll-368a681e

4. Exploit Code Released for IngressNightmare Vulnerabilities in NGINX (CVE-2025-1097, CVE-2025-1098) — tl;dr: A proof-of-concept (PoC) exploit has been released targeting critical unauthenticated Remote Code Execution (RCE) vulnerabilities in the Ingress NGINX Controller for Kubernetes, identified as CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-1974. These vulnerabilities could allow unauthorized access to secrets and potential cluster takeover. Affected users are urged to upgrade to patched versions (1.12.1 or 1.11.5) immediately, restrict access to admission webhooks, and consider disabling the admission controller temporarily if necessary.
   ↪ https://darkwebinformer.com/poc-code-to-exploit-the-ingressnightmare-vulnerabilities-cve-2025-1097-cve-2025-1098-cve-2025-24514-and-cve-2025-1974/

5. Major Data Breaches and Cyber Attacks Impacting Organizations Worldwide — tl;dr: Recent cyber incidents include a data breach at Allianz Life affecting 1.1 million customers, and Workday confirming a breach involving personal information from a third-party database. Additionally, speed cameras in the Netherlands were disabled due to a cyber attack, raising security concerns. Interpol's Operation Serengeti 2.0 led to the arrest of over 1,200 suspected cybercriminals across Africa, highlighting the ongoing global threat of cybercrime. Organizations should enhance their cybersecurity measures, monitor for unusual activities, and educate employees about phishing and social engineering tactics to mitigate risks.
   ↪ https://infosec-mashup.santolaria.net/p/infosec-mashup-34-2025

Featured LufSec Resource

Security Awareness (Free) — Bite-sized lessons for your whole company.
Explore →

Connect with LufSec

• YouTube: https://www.youtube.com/@lufsec
• Instagram: https://www.instagram.com/lufsec