How Has IoT Security Changed Over the Past 5 Years?
How Has IoT Security Changed Over the Past 5 Years? Summary Over the past five years IoT adoption has grown across industries, but security has not kept pace. Experts tell…
Critical SAP S/4HANA Vulnerability Under Attack, Patch Now
Critical SAP S/4HANA Vulnerability Under Attack, Patch Now Summary A critical code-injection vulnerability (CVE-2025-42957) in SAP S/4HANA — assigned a 9.9 CVSS score — is being exploited in the wild.…
Cyberattack forces Jaguar Land Rover to tell staff to stay at home
Cyberattack forces Jaguar Land Rover to tell staff to stay at home Summary A cyberattack on Jaguar Land Rover (JLR) forced the company to tell factory workers to stay at…
Qantas penalizes executives for July cyberattack
Qantas penalises executives for July cyberattack Summary Senior leaders at Qantas have had their 2024/25 short-term bonuses reduced by 15 percentage points after a July cyberattack that exposed data relating…
CISA orders federal agencies to patch Sitecore zero-day following hacking reports
CISA orders federal agencies to patch Sitecore zero-day following hacking reports Summary Federal civilian agencies have been given until 25 September to patch CVE-2025-53690, a Sitecore vulnerability tied to the…
‘SEO fraud-as-a-service’ scheme hijacks Windows servers to promote gambling websites
‘SEO fraud-as-a-service’ scheme hijacks Windows servers to promote gambling websites Summary Slovak security firm ESET has uncovered a campaign by a previously unknown group called GhostRedirector that has compromised at…
AI code assistants make developers more efficient at creating security problems
AI code assistants make developers more efficient at creating security problems Summary Application security firm Apiiro analysed code from tens of thousands of repositories and several thousand developers at Fortune…
Knock-on effects of software dev break-in hit schools trust
Knock-on effects of software dev break-in hit schools trust Summary A UK education trust, Affinity Learning Partnership, has warned staff that their personal information may have been exposed after a…
Shell to pay: Crims invade your PC with CastleRAT malware, now in C and Python
Shell to pay: Crims invade your PC with CastleRAT malware, now in C and Python Content summary A criminal crew known as TAG-150 has released CastleRAT in two variants: a…
Critical, make-me-super-user SAP S/4HANA bug under active exploitation
Critical, make-me-super-user SAP S/4HANA bug under active exploitation Summary A critical code-injection vulnerability (CVE-2025-42957, rated 9.9) in SAP S/4HANA is being actively exploited. SecurityBridge Threat Research Labs discovered and disclosed…