Cyber Daily News

Cyber Daily News December 28, 2025 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Stolen LastPass backups enable crypto theft through 2025 https://securityaffairs.com/186191/digital-id/stolen-lastpass-backups-enable-crypto-theft-through-2025.html - LangChain core vulnerability allows prompt injection and data exposure https://securityaffairs.com/186185/hacking/langchain-core-vulnerability-allows-prompt-injection-and-data-exposure.html

What is Cyber Daily News?

Cyber Daily News is a fast, no nonsense cybersecurity podcast designed for professionals, builders, and anyone who wants to stay ahead of real world threats. Each episode delivers a concise breakdown of the most important cyber incidents, vulnerabilities, exploits, and security trends shaping the day.

You will hear clear explanations of breaches, ransomware campaigns, zero day vulnerabilities, nation state activity, and major security advisories, without hype or filler. The focus is on what happened, why it matters, and what defenders, engineers, and security leaders should pay attention to right now.

Whether you work in security operations, IT, cloud, software development, or you are simply cyber aware, Cyber Daily News helps you stay informed in minutes, not hours. New episodes are released regularly so you can start your day informed and prepared.

Stay sharp. Stay secure. Come back daily for the latest in cybersecurity.

Speaker 1:

Cyber daily news for 12/28/2025. First up, the fallout from the 2022 LastPass breach is still echoing through the security world. Stolen encrypted vault backups are being cracked today, and weak master passwords many users set are giving cybercriminals a backdoor straight into crypto wallets. Analysts say this means attackers can keep siphoning funds well into 2025, turning what looked like a past incident into an ongoing financial threat. It's a stark reminder that strong unique passwords and multi factor authentication remain critical, especially for password manager users.

Speaker 1:

Turning to the realm of artificial intelligence, a critical flaw has been uncovered in langchain core, the Python library that powers many large language model applications. Identified as CVE twenty twenty five six eight six six four with a severity score of 9.3, the vulnerability enables prompt injection attacks that can harvest sensitive secrets and even manipulate the responses of the underlying models. For developers building AI driven tools, the takeaway is clear. Rigorous input sanitization and immediate patching are essential to keep data safe and maintain trust in AI services. That's all for today's Cyber Daily News.

Speaker 1:

If you found this briefing useful, please like, subscribe, and hit the notification bell so you never miss an update. Remember, you can catch us on YouTube as well as on your favorite podcast platforms. Stay vigilant, and see you tomorrow.