Critical, make-me-super-user SAP S/4HANA bug under active exploitation Summary A critical code-injection vulnerability in SAP S/4HANA (CVE-2025-42957) rated 9.9 is being actively exploited in the wild. The flaw, patched by…
Proof-of-Concept in 15 Minutes? AI Turbocharges Exploitation Summary An AI-driven offensive research pipeline, dubbed Auto Exploit and built by two Israeli security researchers, uses prompts to a large language model…
Firefox ESR 115 won’t quit Windows 7 – at least not until March 2026 Summary Mozilla has extended security support for Firefox ESR 115 on Windows 7, 8 and 8.1…
Qantas penalises executives for July cyberattack Summary Qantas has reduced short-term bonuses for its CEO and executive management by 15 percentage points after a July cyberattack that exposed the data…
Proof-of-Concept in 15 Minutes? AI Turbocharges Exploitation Summary An AI-powered offensive research pipeline developed by two independent Israeli security researchers — dubbed Auto Exploit — uses LLM prompts, CVE advisories…
Summary The article argues that the global cybersecurity workforce shortfall (NIST estimates ~3.4 million) is a critical risk and promotes student-run security operations centres (SOCs) as a scalable, practical solution.…
Federal Cuts Put Local, State Agencies at Cyber-Risk Summary Dark Reading reports that recent federal staffing and budget cuts to organisations such as CISA and the Centre for Internet Security…
UltraViolet Expands AppSec Capabilities With Black Duck’s Testing Business Summary UltraViolet Cyber has acquired Black Duck’s Application Security Testing (AST) services business to broaden its unified security operations. The acquisition…
SEO fraud-as-a-service scheme hijacks Windows servers to promote gambling websites Summary Security researchers at ESET have discovered a previously unknown hacker group, dubbed GhostRedirector, that has compromised at least 65…
Cyberattack forces Jaguar Land Rover to tell staff to stay at home Summary A cyberattack on British carmaker Jaguar Land Rover (JLR) forced the company to tell factory and retail…
