Browser Security Alert: Zero-Click Attacks and Spyware Zero-Days
This newsletter is AI generated and may hallucinate sometimes 😊
Cyberattackers are running and EtherHiding
- EtherHiding tactic embeds malware components within blockchain smart contracts, evading detection.
- Attackers leverage decentralized blockchain and ethers JavaScript library for watering hole attacks.
- Defenders must block unnecessary blockchain endpoints and increase user awareness of Web3 risks.
Source: IT Brew | Date: December 05, 2025
2025 became the year of agentic AI
- 2025 marked rapid agentic AI adoption, shifting to integrated operational roles for force multiplier benefits.
- Increased agentic AI use brings significant security risks, demanding stronger governance and oversight.
- Organizations must implement robust human safeguards as agentic AI cannot effectively police itself.
Source: IT Brew | Date: December 05, 2025
Leaks show Intellexa burning zero-days to keep Predator spyware running
- Intellexa uses expensive zero-day exploits to maintain its Predator spyware, burning them until patched.
- Google TAG detected an iOS zero-day chain for zero-click Predator infections via malicious ads.
- Users should use ad blockers, update software, and avoid unsolicited links to prevent compromise.
Source: Malwarebytes | Date: December 05, 2025
Update Chrome now: Google fixes 13 security issues affecting billions
- Google released critical Chrome update fixing 13 security vulnerabilities, four rated high severity.
- CVE-2025-13633 "use after free" bug in Digital Credentials risks code execution for users.
- All 3.4 billion Chrome users must update to version 143.0.7499.40 immediately to mitigate threats.
Source: Malwarebytes | Date: December 04, 2025
Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails
- A zero-click agentic browser attack has been discovered that can delete all content from a Google Drive account via specially crafted emails.
- The attack exploits vulnerabilities in how browsers and web services handle embedded content and automation, enabling unauthorized actions without explicit user interaction.
- This novel attack vector underscores the risks associated with agentic AI systems and overly permissive web applications, necessitating enhanced browser security and content sanitization.
Source: The Hacker News | Date: December 6, 2025
Intellexa Leaks Reveal Zero-Days and Ads-Based Vector for Predator Spyware Delivery
- Leaked documents from the Intellexa consortium detail the deployment of previously unknown zero-day vulnerabilities in their Predator spyware operations.
- The leaks indicate that an ads-based vector was utilized for delivering Predator spyware, likely exploiting vulnerabilities within browser ad rendering engines or ad networks.
- This sophisticated supply-chain attack method demonstrates how malicious advertisements can silently compromise targets through browser-level exploits.
Source: The Hacker News | Date: December 6, 2025
Chrome Autofill Enhancements for Improved User Experience and Security
- Google Chrome is rolling out four new autofill features designed to streamline online experiences, particularly for holiday shopping and personal information management.
- These enhancements include improved detection capabilities for various form types and a more intuitive interface for managing saved payment and address details.
- The updates aim to balance user convenience with robust security standards for handling sensitive data through the browser's autofill functionality.
Source: Google Blog | Date: December 6, 2025