H-ISAC TLP White: Daily Cyber Headlines - November 13, 2025

Today’s Headlines:

Leading Story

New ClickFix Attack Tricks Users with Fake OS Update to Execute Malicious Commandsata Breaches & Data Leaks
Everest Ransomware Claims Leading Italian Gas Producer Breach
Threat Actor Everest Claims Breach of Korpath, Vikor Scientific, and Korgene

Cyber Crimes & Incidents

Major Cyberattack Disrupts Operations Across Normandy Regional Institutions
Black Shrantac Ransomware Group Targets Multiple Global Enterprises in Coordinated Attack

Vulnerabilities & Exploits

Palo Alto PAN-OS Firewall Vulnerability Let Attackers Reboot Firewall by Sending Malicious Packet

Trends & Reports

Qilin Ransomware Gang Ramps Up Attacks

Privacy, Legal & Regulatory

Extended State, Local Cybersecurity Grants Present in Shutdown Deal

Upcoming Health-ISAC Events

Global Monthly Threat Brief
- Americas – November 25, 2025, 12:00-01:00 PM ET
- European – November 26, 2025, 03:00-04:00 PM CET
- Fall Americas Summit – Carlsbad, California – December 1-5, 2025

View the detailed report below.

For help with Cybersecurity and Risk Advisory Services exclusively for AHA members, contact:

John Riggi

National Advisor for Cybersecurity and Risk, AHA

jriggi@aha.org

(O) +1 202 626 2272

More on John Riggi

Learn more about AHA's Cybersecurity and Risk Advisory Services

H-ISAC TLP White: Daily Cyber Headlines - November 13, 2025