Latest Cybersecurity News and Articles
Urgent: Cisco ASA Zero-Day Duo Under Attack; CISA Triggers Emergency Mitigation Directive
25 September 2025
Cisco is urging customers to patch two security flaws impacting the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software, which it said have been exploited in the wild.
The zero-day vulnerabilities in question are listed below -
CVE-2025-20333 (CVSS score: 9.9) - An improper validation of user-supplied input
Digital ID cards: a versatile and useful tool or a worrying cybersecurity risk?
25 September 2025
As Keir Starmer aims to revive ID card system first proposed by Tony Blair, we look at the arguments for and againstIt is 21 years since Tony Blair’s government made proposals for an ID card system to tackle illegal working and immigration, and to make it more convenient for the public to access services.The same issues are on the agenda again as Keir Starmer revives what became one of New Labour’s most controversial policies. He is about to find out if he can defeat the argument that David Cameron’s Conservatives made before scrapping it. They said the ID card approach to personal privacy was “the worst of all worlds – intrusive, ineffective and enormously expensive”. Continue reading...
Vane Viper Generates 1 Trillion DNS Queries to Power Global Malware and Ad Fraud Network
25 September 2025
The threat actor known as Vane Viper has been outed as a purveyor of malicious ad technology (adtech), while relying on a tangled web of shell companies and opaque ownership structures to deliberately evade responsibility.
"Vane Viper has provided core infrastructure in widespread malvertising, ad fraud, and cyberthreat proliferation for at least a decade," Infoblox said in a technical report
NCSC statement following reports of nursery data incident
25 September 2025
Statement from the NCSC in response to reports of an incident impacting nurseries.
Salesforce AI Hack Enabled CRM Data Theft
25 September 2025
Prompt injection has been leveraged alongside an expired domain to steal Salesforce data in an attack named ForcedLeak.
The post Salesforce AI Hack Enabled CRM Data Theft appeared first on SecurityWeek.
Salesforce Patches Critical ForcedLeak Bug Exposing CRM Data via AI Prompt Injection
25 September 2025
Cybersecurity researchers have disclosed a critical flaw impacting Salesforce Agentforce, a platform for building artificial intelligence (AI) agents, that could allow attackers to potentially exfiltrate sensitive data from its customer relationship management (CRM) tool by means of an indirect prompt injection.
The vulnerability has been codenamed ForcedLeak (CVSS score: 9.4) by Noma Security,
PyPI Warns Users of Fresh Phishing Campaign
25 September 2025
Threat actors impersonating PyPI ask users to verify their email for security purposes, directing them to fake websites.
The post PyPI Warns Users of Fresh Phishing Campaign appeared first on SecurityWeek.
North Korean Hackers Use New AkdoorTea Backdoor to Target Global Crypto Developers
25 September 2025
The North Korea-linked threat actors associated with the Contagious Interview campaign have been attributed to a previously undocumented backdoor called AkdoorTea, along with tools like TsunamiKit and Tropidoor.
Slovak cybersecurity firm ESET, which is tracking the activity under the name DeceptiveDevelopment, said the campaign targets software developers across all operating systems, Windows,
Chinese Cyberspies Hacked US Defense Contractors
25 September 2025
RedNovember has been targeting government, defense and aerospace, and legal services organizations worldwide.
The post Chinese Cyberspies Hacked US Defense Contractors appeared first on SecurityWeek.
RTX Confirms Airport Services Hit by Ransomware
25 September 2025
The aerospace and defense giant has disclosed the cyberattack in a filing with the SEC.
The post RTX Confirms Airport Services Hit by Ransomware appeared first on SecurityWeek.
Perspective: Why Politics in the Workplace is a Cybersecurity Risk
25 September 2025
Bringing politics into professional spaces undermines decision-making, collaboration, and ultimately weakens security teams.
The post Perspective: Why Politics in the Workplace is a Cybersecurity Risk appeared first on SecurityWeek.
NCSC warns of persistent malware campaign targeting Cisco devices
25 September 2025
Latest malware analysis report helps organisations detect and mitigate malicious activity targeting certain Cisco devices.
CTEM's Core: Prioritization and Validation
25 September 2025
Despite a coordinated investment of time, effort, planning, and resources, even the most up-to-date cybersecurity systems continue to fail. Every day. Why?
It’s not because security teams can't see enough. Quite the contrary. Every security tool spits out thousands of findings. Patch this. Block that. Investigate this. It's a tsunami of red dots that not even the most crackerjack team on
Threatsday Bulletin: Rootkit Patch, Federal Breach, OnePlus SMS Leak, TikTok Scandal & More
25 September 2025
/* ===== Container ===== */
.td-wrap {}
/* ===== Section ===== */
.td-section {
}
.td-title { margin: 16px 0 4px; font-size: 32px; line-height: 1.2; font-weight: 800; }
.td-subtitle { margin: 0 0 24px; color: #64748b; font-size: 16px; }
/* ===== Timeline ===== */
.td-timeline { position: relative; margin: 0 !important;padding: 0!important; list-style: none; }
/* spine */
.td-timeline:before {
Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel
25 September 2025
Google’s Threat Intelligence Group and Mandiant have shared findings on a recent BrickStorm campaign linked to UNC5221.
The post Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel appeared first on SecurityWeek.
CSA Unveils SaaS Security Controls Framework to Ease Complexity
25 September 2025
New framework from the Cloud Security Alliance helps SaaS customers navigate the shared responsibility model with confidence.
The post CSA Unveils SaaS Security Controls Framework to Ease Complexity appeared first on SecurityWeek.
Tech Overtakes Gaming as Top DDoS Attack Target, New Gcore Radar Report Finds
25 September 2025
The latest Gcore Radar report analyzing attack data from Q1–Q2 2025, reveals a 41% year-on-year increase in total attack volume. The largest attack peaked at 2.2 Tbps, surpassing the 2 Tbps record in late 2024. Attacks are growing not only in scale but in sophistication, with longer durations, multi-layered strategies, and a shift in target industries. Technology now overtakes gaming as the most
Volvo Group Employee Data Stolen in Ransomware Attack
25 September 2025
The Miljödata data breach has impacted numerous organizations, education institutions, and Swedish municipalities.
The post Volvo Group Employee Data Stolen in Ransomware Attack appeared first on SecurityWeek.
Cisco Patches Zero-Day Flaw Affecting Routers and Switches
25 September 2025
The security defect allows remote attackers with administrative privileges to execute arbitrary code as the root user.
The post Cisco Patches Zero-Day Flaw Affecting Routers and Switches appeared first on SecurityWeek.
Malicious Rust Crates Steal Solana and Ethereum Keys — 8,424 Downloads Confirmed
25 September 2025
Cybersecurity researchers have discovered two malicious Rust crates impersonating a legitimate library called fast_log to steal Solana and Ethereum wallet keys from source code.
The crates, named faster_log and async_println, were published by the threat actor under the alias rustguruman and dumbnbased on May 25, 2025, amassing 8,424 downloads in total, according to software supply chain