22 Vulnerabilities Under Attack – And Another That Could Be
Cyble researchers detailed 22 vulnerabilities under active attack in a blog post today – and nine of them aren’t in CISA’s Known Exploited Vulnerabilities (KEV)…
Category: DarkReading
Auto Giant Stellantis Confirms Data Breach
Stellantis, one of the world’s largest automakers, confirmed that it was hit by a data breach, but the company says the breach was limited to…
Critical CVE-2025-55241 Exposes Entra ID Admin Access
A newly disclosed vulnerability tracked as CVE-2025-55241 has been reported. The flaw, discovered by an independent researcher and disclosed in September 2025, revealed that Microsoft…
Cyberattacks On Airports Disrupt Travel Across Europe
Several major European airports, including those in Berlin, Brussels, Dublin, and London, were hit by a cyberattack that caused extensive disruptions to check-in and boarding…
Fortra Fixes 10.0 GoAnywhere MFT Vulnerability. Patch Now!
Fortra has fixed a maximum-severity vulnerability in its GoAnywhere Managed File Transfer (MFT) software, and users are urged to patch promptly, as threat actors have…
JLR Cyberattack Becomes UK National Crisis
The Jaguar Land Rover (JLR) cyberattack that has shuttered production at the UK automaker’s factories since September 1 is threatening to become a national crisis,…
CVE-2025-9242 Vulnerability In WatchGuard Firebox VPN
WatchGuard has issued security updates addressing a vulnerability, tracked as CVE-2025-9242, affecting its Firebox firewall devices. This flaw involves an out-of-bounds write weakness within the…
CISA MAR On Malware Targeting Ivanti EPMM
The Cybersecurity and Infrastructure Security Agency (CISA) released a Malware Analysis Report (MAR), highlighting a new attack trend targeting Ivanti Endpoint Manager Mobile (EPMM) systems.…
Key Scattered LAPSUS$ Hunters Hacker Arrested In UK
UK authorities have arrested a 19-year-old UK national alleged to be a key figure in the Scattered LAPSUS$ Hunters threat collective. UK authorities arrested Thalha…
Black Hat USA 2025 CISO Podcast Series
The role of a Chief Information Security Officer (CISO) has never been more critical. We are in 2025, and today, CISOs stand at the frontline…
APT28’s Recent Campaign Combined Steganography, Cloud C2 Into A Modular Infection Chain
APT28, the long-running actor tracked as Fancy Bear, Sofacy and Sednit, used a compact but technically sophisticated campaign that researchers documented as Phantom Net Voxel.…
Australian Privacy Watchdog Rules Kmart’s Facial Recognition Technology Use Unlawful
Australia’s privacy regulator has called the use of facial recognition technology without consent of it customers, in dozens of Kmart stores around the country a…