Category: DarkReading

AEM Forms RCE Flaw Exploited In The Wild
17
Oct
2025

AEM Forms RCE Flaw Exploited In The Wild

A new vulnerability in Adobe Experience Manager (AEM) Forms has been confirmed as actively exploited in the wild, prompting the…

Cybercrime Service, SIMCARTEL, Europol, Eurojust, Operation SIMCARTEL, SIM Boxing, Online Scams, Europe, Latvia, Austria
17
Oct
2025

European Authorities Shutter Cybercrime Service Fueling Online Scam

Seven suspects are now in custody after a cross-border crackdown dismantled a cybercrime service that powered more than 3,000 online…

satellite IP traffic security
17
Oct
2025

Unencrypted Satellite IP Traffic Is A Widespread Problem

Satellite links contain a surprising amount of unencrypted traffic – and perhaps even more surprising is the fact that the…

Vanilla Tempest, Vice Society
16
Oct
2025

Vanilla Tempest Campaign Using Fraudulent Code-Signing Disrupted

Microsoft said it disrupted a high-volume campaign in October after discovering a coordinated effort by the ransomware group known as…

Capita Ransomware Fine Marks UK’s Largest Breach Penalty
16
Oct
2025

Capita Ransomware Fine Marks UK’s Largest Breach Penalty

Capita has been handed a record ransomware fine of £14 million by the Information Commissioner’s Office (ICO) after a 2023…

F5 Reveals Nation-State Breach; CISA Releases F5 Guidance
15
Oct
2025

F5 Reveals Nation-State Breach; CISA Releases F5 Guidance

Security and application delivery vendor F5 revealed today in an SEC filing that a nation-state threat actor had “long-term, persistent…

Asahi Group Cyberattack Forces Delay In Financial Results
15
Oct
2025

Asahi Group Cyberattack Forces Delay In Financial Results

Japanese beverage and food giant Asahi Group Holdings has confirmed that a ransomware attack has disrupted its operations and may…

Patch Tuesday October 2025: Three Zero-days Under Attack
14
Oct
2025

Patch Tuesday October 2025: Three Zero-days Under Attack

Microsoft’s Patch Tuesday October 2025 included fixes for 175 vulnerabilities, including three exploited zero-days and 13 additional high-risk vulnerabilities. The…

Credential Attacks Detected On SonicWall SSLVPN Devices
14
Oct
2025

Credential Attacks Detected On SonicWall SSLVPN Devices

A managed security services provider has detected credential attacks on SonicWall SSLVPN devices. The attacks, reported by Huntress, involve “widespread…

Active Directory attack techniques
14
Oct
2025

Active Directory Attack Targeting The NTDS.dit File

Active Directory is a key target for hackers, so a recent report detailing Active Directory attack techniques contains useful lessons…

Windows 10 Support Ends: Security Risks For Millions
14
Oct
2025

Windows 10 Support Ends: Security Risks For Millions

Microsoft has officially ended support for Windows 10, affecting hundreds of millions of users worldwide. This decision comes nearly a…

Critical CVE-2025-61927 VM Context Escape In Happy DOM Library
14
Oct
2025

Critical CVE-2025-61927 VM Context Escape In Happy DOM Library

A critical security flaw has been identified in Happy DOM, a widely used JavaScript library primarily employed for server-side rendering…