H-ISAC TLP Green: Daily Cyber Headlines - December 5, 2025

Today’s Headlines:  

Leading Story

  • CVE-2025-20387: A High-Severity Vulnerability on Splunk

Data Breaches & Data Leaks 

  • Freedom Mobile Data Breach Exposes Personal Information of Customers
  • Nova Ransomware Breach Exposes Brazil’s National Primary Health System 

Cyber Crimes & Incidents

  • Threat Actors Leveraging Foxit PDF Reader to Gain System Control and Steal Sensitive Data
  • Microsoft 365 License Verification Error Disrupts Desktop App Access

Vulnerabilities & Exploits  

  • Critical King Addons Vulnerability Exploited to Breach WordPress Sites

Trends & Reports

  • New Report Warns 68% of Actively Serving Phishing Kits Protected by CloudFlare
  • 2025 Web Security Overhaul: Five Threats Redefining Cyber Risk

Privacy, Legal & Regulatory

  • Virginia Contractors Accused of Wiping Government Databases After Employment Termination

Upcoming Health-ISAC Events

  • Global Monthly Threat Brief   
    • Americas – December 16, 2025, 12:00-01:00 PM ET
    • European – December 17, 2025, 03:00-04:00 PM CET

View the detailed report below.

For help with Cybersecurity and Risk Advisory Services exclusively for AHA members, contact:

John Riggi

National Advisor for Cybersecurity and Risk, AHA

jriggi@aha.org

(O) +1 202 626 2272

More on John Riggi
Learn more about AHA's Cybersecurity and Risk Advisory Services

Key Resources

Related Resources

Advancing Health Podcast
Cybersecurity on the Health Care Front Lines Against AI and Ransomware
Letter/Comment
AHA Support for Senate Rural Hospital Cybersecurity Enhancement Act
Public
Special Bulletin
Senate Deal Reached to End Government Shutdown
Member
Guides and Reports
Strategies for Cyber Preparedness in Health Care
Advisory
Hospitals That Are Oracle Customers Urged to Take Immediate Action to Address Security Vulnerability
Public
Issue Landing Page
Cybersecurity and Risk Advisory Service