Critical CVE-2025-55241 Exposes Entra ID Admin Access
A newly disclosed vulnerability tracked as CVE-2025-55241 has been reported. The flaw, discovered by an independent researcher and disclosed in September 2025, revealed that Microsoft…
Category: DarkReading
Cyberattacks On Airports Disrupt Travel Across Europe
Several major European airports, including those in Berlin, Brussels, Dublin, and London, were hit by a cyberattack that caused extensive disruptions to check-in and boarding…
Fortra Fixes 10.0 GoAnywhere MFT Vulnerability. Patch Now!
Fortra has fixed a maximum-severity vulnerability in its GoAnywhere Managed File Transfer (MFT) software, and users are urged to patch promptly, as threat actors have…
JLR Cyberattack Becomes UK National Crisis
The Jaguar Land Rover (JLR) cyberattack that has shuttered production at the UK automaker’s factories since September 1 is threatening to become a national crisis,…
CVE-2025-9242 Vulnerability In WatchGuard Firebox VPN
WatchGuard has issued security updates addressing a vulnerability, tracked as CVE-2025-9242, affecting its Firebox firewall devices. This flaw involves an out-of-bounds write weakness within the…
CISA MAR On Malware Targeting Ivanti EPMM
The Cybersecurity and Infrastructure Security Agency (CISA) released a Malware Analysis Report (MAR), highlighting a new attack trend targeting Ivanti Endpoint Manager Mobile (EPMM) systems.…
Key Scattered LAPSUS$ Hunters Hacker Arrested In UK
UK authorities have arrested a 19-year-old UK national alleged to be a key figure in the Scattered LAPSUS$ Hunters threat collective. UK authorities arrested Thalha…
Black Hat USA 2025 CISO Podcast Series
The role of a Chief Information Security Officer (CISO) has never been more critical. We are in 2025, and today, CISOs stand at the frontline…
APT28’s Recent Campaign Combined Steganography, Cloud C2 Into A Modular Infection Chain
APT28, the long-running actor tracked as Fancy Bear, Sofacy and Sednit, used a compact but technically sophisticated campaign that researchers documented as Phantom Net Voxel.…
Australian Privacy Watchdog Rules Kmart’s Facial Recognition Technology Use Unlawful
Australia’s privacy regulator has called the use of facial recognition technology without consent of it customers, in dozens of Kmart stores around the country a…
Chrome Exploit CVE-2025-10585: Urgent Google Update
Google has issued an urgent security alert for all users of its Chrome browser, confirming that an active exploit targeting a critical vulnerability, CVE-2025-10585, is…
Jaguar Land Rover Cyberattack Sparks Production, Layoff Fears
The Jaguar Land Rover cyberattack that has shuttered production lines since September 1 will extend for at least another week, and some observers warn that…