Top 5 Cybersecurity News Stories November 07, 2025

Cybersecurity threats are constantly evolving as threat actors seek access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small as we look at threats from espionage to security flaws in everyday devices:

1. Google Uncovers PROMPTFLUX Malware That Uses Gemini AI to Rewrite Its Code Hourly

Google has uncovered a novel malware strain dubbed PROMPTFLUX, which leverages its Gemini large-language-model API to dynamically rewrite its own Visual Basic script code and evade detection. The VBScript malware periodically connects to the Gemini endpoint using a hard-coded API key, requests obfuscation and evasion routines, and saves the resulting script into the Windows Startup folder to establish persistence.

It further propagates via mapped network shares and removable drives. Analysts warn that while currently experimental, this marks an alarming evolution toward AI-enabled self-modifying malware and highlights the diminishing effectiveness of signature-based defenses.
Read more on The Hacker News

2. Google Launches New Maps Feature to Help Businesses Report Review-Based Extortion Attempts

Google has rolled out a dedicated form in Google Maps enabling businesses to report extortion attempts tied to fraudulent reviews. Threat actors allegedly post inauthentic negative reviews on map listings and then demand ransom payments to remove them. The new tool aims to streamline reporting of such incidents and strengthen platform-wide protections against this emerging form of business-targeted digital extortion.

The move underlines the growing risk of reputational-based scams and the need for enterprises to monitor not only financial and data threats, but also operational integrity across digital-platform ecosystems.
Read more on The Hacker News

3. Hyundai AutoEver America data breach exposes SSNs, drivers licenses

Hyundai AutoEver America has disclosed a data breach impacting its North American operations, in which attackers accessed personal records including Social Security numbers and driver’s license information. The breached data is tied to customers and employees processed through the company’s IT infrastructure supporting Hyundai Motor Group affiliates.

The vendor-level incident underscores the persistent risk posed by supply-chain vendors in the automotive industry, whose integrated IT systems may house sensitive identity data of both consumers and employees. Hyundai AutoEver is conducting forensic analysis to determine scope and has notified regulators and affected individuals.
Read more on BleepingComputer

4. U.S. Congressional Budget Office hit by suspected foreign cyberattack

The Congressional Budget Office (CBO) has suffered a suspected foreign-sponsored cyberattack, leading to operational disruption of its systems. While details remain limited, the incident reportedly involves unauthorized access affecting government-analysis capabilities. The breach reflects heightened targeting of federal agencies by nation-state actors seeking intelligence on public-policy, budgetary and legislative functions.

For critical infrastructure and public-sector organisations, the event signals urgent attention to resilience, zero-trust architectures, and supply-chain security. The CBO is working with US authorities and private incident-response teams to contain and investigate the intrusion.
Read more on BleepingComputer

5. Washington Post says it is among victims of cyber breach tied to Oracle software

The Washington Post has confirmed it is among the organisations impacted by a cyber breach linked to Oracle E-Business Suite software, as part of a wider campaign attributed to the ransomware-group CL0P. The compromised platform is widely used for enterprise manufacturing, supply-chain and logistics workflows.

The incident highlights how third-party software vulnerabilities can precipitate large-scale exposure across critical sectors, including media and publishing. The Post and Oracle are collaborating with authorities as the investigation unfolds, and organisations using the affected suite are urged to review their patch posture and incident-response readiness.
Read more on Reuters

At DIESEC, our experts are ready to assist with all your cybersecurity needs. We ensure your system is safe and secure and provide training for your employees to avoid falling victim to social engineering tactics.

For more information, please contact us now!