A breach disclosed by T-Mobile on November 16 exposed customer data and internal communications. While the full extent is still under review, it is suggested millions may have their information, including names and addresses, compromised. Believed to be part of a broader campaign targeting telecoms, the breach is linked to advanced persistent threat (APT) groups with alleged Chinese government ties.

Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457)
A suspected Chinese advanced persistent threat (APT) group exploited CVE-2025-22457, a previously unexploitable buffer overflow bug, to compromise devices running Ivanti Connect Secure (ICS) and