Critical SAP S/4HANA Vulnerability Under Attack, Patch Now Summary A critical code-injection flaw (CVE-2025-42957) in SAP S/4HANA — rated CVSS 9.9 — is being exploited in the wild. The vulnerability…
Secretive MaaS Group ‘TAG-150’ Develops Novel ‘CastleRAT’ Summary Researchers have linked a recently observed malware-as-a-service cluster to an operation labelled TAG-150 that uses a loader called CastleLoader (and an associated…
‘SEO fraud-as-a-service’ scheme hijacks Windows servers to promote gambling websites Summary Slovak security firm ESET has attributed a campaign dubbed GhostRedirector to a previously unknown (and possibly China-aligned) group that…
Cyberattack forces Jaguar Land Rover to tell staff to stay at home Summary Jaguar Land Rover (JLR) experienced a cyber incident that severely disrupted its global IT systems, forcing the…
Qantas penalises executives for July cyberattack Summary Qantas has reduced short-term bonuses for its CEO and executive management by 15 percentage points after a July cyberattack that exposed the personal…
CISA orders federal agencies to patch Sitecore zero-day following hacking reports Summary Federal civilian agencies have been given until 25 September to patch CVE-2025-53690, a zero-day affecting Sitecore products, after…
Firefox ESR 115 won’t quit Windows 7 – at least not until March 2026 Summary Mozilla has extended support for Firefox ESR 115 on Windows 7, 8 and 8.1 until…
Shell to pay: Crims invade your PC with CastleRAT malware, now in C and Python Summary A criminal group called TAG-150 has developed CastleRAT in two flavours: a stealthy Python…
Critical, make-me-super-user SAP S/4HANA bug under active exploitation Summary A critical code-injection vulnerability in SAP S/4HANA (CVE-2025-42957) rated 9.9 is being actively exploited in the wild, according to SecurityBridge Threat…
The crazy, true story behind the first AI-powered ransomware Summary NYU engineers developed a proof-of-concept called Ransomware 3.0 that stitches large language models into the full ransomware lifecycle. The system…
