AI Is Already the #1 Data Exfiltration Channel in the Enterprise
For years, security leaders have treated artificial intelligence as an “emerging” technology, something to keep an eye on but not yet mission-critical. A new Enterprise…
Author: Cybernoz
IR35: Conservative Party pledge to reform off-payroll rules gets lacklustre response
A pledge by the shadow home secretary, Andrew Griffith, to “look again” at reforming the controversial IR35 disguised employment legislation has received a lacklustre response…
Cisco ASA/FTD 0-Day Vulnerability Exploited for Authentication Bypass
Cisco has released advisories for a zero-day exploit chain affecting its Secure Firewall Adaptive Security Appliance (ASA) and Secure Firewall Threat Defense (FTD) software, which…
Red Hat Breach Impacts 5,000+ High-Value Enterprise Customers, Data at Risk
An extortion group calling itself Crimson Collective claimed responsibility for a major breach at Red Hat Consulting. With only 22 followers on Telegram at the…
Leaked Oracle EBS exploit scripts expected to drive new wave of attacks (CVE-2025-61882)
Resecurity and watchTowr researchers have analyzed the leaked scripts used by attackers to exploit CVE-2025-61882 on internet-facing Oracle ESB instances. Whether the attackers were Cl0p…
Troops and veterans’ personal information leaked in CPAP Medical data breach
In December 2024, CPAP Medical Supplies and Services Inc. (CPAP), a Jacksonville—a Florida-based provider of sleep therapy services and CPAP machines—experienced a cybersecurity incident that…
Middle East cloud ambitions get boost from IBM-AWS partnership
IBM and Amazon Web Services (AWS) are strengthening their partnership with a strong focus on the Middle East. The two companies plan to open their…
Attackers Deployed Medusa Ransomware Via GoAnywhere Zero-Day
Cybercriminals exploited a critical deserialization flaw in Fortra’s GoAnywhere Managed File Transfer (MFT) tool—tracked as CVE-2025-10035—to drop Medusa ransomware, Microsoft disclosed Monday. The campaign, attributed…
Filigran Raises $58 Million in Series C Funding
French cybersecurity startup Filigran has raised $58 million in Series C funding, bringing the total raised to over $100 million. The investment round, which comes…
Kibana Crowdstrike Connector Vulnerability Exposes Protected Credentials
Elastic has released a security advisory detailing a medium-severity vulnerability in the Kibana CrowdStrike Connector that could allow for the exposure of sensitive credentials. The…
CrowdStrike Alerts on Oracle E-Business Suite 0-Day Under Mass Exploitation
A novel zero-day vulnerability in Oracle E-Business Suite (CVE-2025-61882) is being actively exploited in a large-scale data exfiltration campaign, with CrowdStrike Intelligence attributing primary involvement…
Is the UK’s digital ID scheme doomed to fail?
Thank you for joining! Access your Pro+ Content below. 7 October 2025 Is the UK’s digital ID scheme doomed to fail? Share this item with…