Clothing giant MANGO discloses data breach exposing customer info
Spanish fashion retailer MANGO is sending notices of a data breach to its customers, warning that its marketing vendor suffered a compromise exposing personal data.…
Month: October 2025
F5 Breached – Hackers Stole BIG-IP Source Code and Undisclosed Vulnerabilities Data
F5, a leading provider of application security and delivery solutions, disclosed a major security incident on October 14, 2025. The company revealed that a sophisticated…
The Growing Threat of Ignoring Personal Cybersecurity
Today, in the age of digitization, cybersecurity is no longer a luxury; quite the contrary, it is both a necessity and a must. The confidence…
FortiOS CLI Bypass Flaw Lets Attackers Run Arbitrary System Commands
Fortinet has disclosed a security vulnerability affecting its FortiOS operating system that could allow attackers with administrative privileges to execute unauthorized system commands by bypassing…
Patch Tuesday: Windows 10 end of life pain for IT departments
The day Microsoft officially ended support for Windows 10 has coincided with a Patch Tuesday update, with several zero-day flaws that attackers could exploit to…
200,000 Linux systems from Framework are shipped with signed UEFI components vulnerable to Secure Boot bypass
200,000 Linux systems from Framework are shipped with signed UEFI components vulnerable to Secure Boot bypass Pierluigi Paganini October 15, 2025 About 200K Linux systems…
F5 disclosures breach tied to nation-state threat actor
F5, a company that specializes in application security and delivery technology, disclosed Wednesday that it had been the target of what it’s calling a “highly…
Windows Agere Modem Driver 0-Day Exploited in Active Privilege Escalation Attacks
A newly discovered zero-day vulnerability in the Windows Agere Modem driver has been actively exploited by threat actors to elevate privileges on affected systems. Tracked…
Fake RTO Apps Target Indian Android Users
A new trend of Android malware is sweeping across India, leveraging the guise of Regional Transport Office (RTO) apps to steal financial data, mine cryptocurrency,…
How to spot dark web threats on your network using NDR
Cybersecurity professionals recognize that enterprise networks are prime targets for dark web risks such as ransomware, unauthorized insider activity, and data exfiltration. What’s less obvious…
CISA Warns Of Rapid7 Velociraptor Vulnerability Exploited in Ransomware Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) issued an urgent alert on October 14, 2025, highlighting a critical vulnerability in Rapid7’s Velociraptor endpoint detection and…
BlackSuit Ransomware Breaches Corporate Network Using Single Compromised VPN Credential
A major manufacturing company fell victim to a swift and devastating ransomware attack after threat actors gained access using just one set of stolen VPN…