Cyber Threat Intelligence Report
Critical Exploitation, Ransomware Innovation, Stealer Activity, and Phishing Threats
The November Cyber Threat Intelligence Report delivers actionable insight into the most significant threats observed across the ecosystem, enabling security teams to detect, respond, and mitigate risk with precision. This month’s edition goes behind some of the most innovative cybercrime techniques observed in November, and walks through how to deploy defensive measures before they impact operations.
What’s Inside the Report
- Vulnerability Spotlight – CVE‑2025‑64446
Active exploitation of a critical FortiWeb vulnerability in the wild and what defenders must do now. View CISA Alert Details - Cynet Lighthouse: A Peek Into the Darknet – Operation Endgame Strikes Again
Strategic disruption against major cybercrime infrastructure, including Rhadamanthys infostealer, VenomRAT, and the Elysium botnet. - Kyber Ransomware
A new Rust‑based ransomware leveraging post‑quantum cryptography algorithms and advanced anti‑analysis techniques. - BBAVPN Stealer
A Go‑based stealer collecting system, network, and user data for exfiltration. - BlackShrantac Ransomware
Emerging double‑extortion ransomware group using data theft to coerce victims. - Phishing Campaign Analysis
Deep dive into a highly targeted Azerbaijani‑language phishing campaign distributing an infostealer.
Powered by Cynet CyOps Threat Intelligence
This report is produced by Cynet’s CyOps Threat Intelligence Team, combining decades of combined expertise and continuous threat research, real-world telemetry, and hands-on incident response experience to deliver intelligence that is timely, relevant, and designed for action.
Looking for more in-depth Threat Intel?
Cynet partners and customers receive exclusive access to CTI Reports before they are made available for public download. Learn more about CyOps MDR to unlock the advantage of ongoing threat intel and real-time response.
