Microsoft Patch Tuesday, August 2025 Edition
Microsoft today released updates to fix more than 100 security flaws in its Windows operating systems and other software. At […]
Elevation-of-Privilege Vulns Dominate Microsoft’s Patch Tuesday
The company’s August security update consisted of patches for 111 unique Common Vulnerabilities and Exposures (CVEs).
AI Takes Center Stage at Black Hat USA 2025 – Booz Allen Leads the Conversation
Black Hat USA 2025 was nothing short of groundbreaking. The show floor and conference tracks were buzzing with innovation, but
Researchers Spot XZ Utils Backdoor in Dozens of Docker Hub Images, Fueling Supply Chain Risks
New research has uncovered Docker images on Docker Hub that contain the infamous XZ Utils backdoor, more than a year
Fortinet SSL VPNs Hit by Global Brute-Force Wave Before Attackers Shift to FortiManager
Cybersecurity researchers are warning of a “significant spike” in brute-force traffic aimed at Fortinet SSL VPN devices. The coordinated activity,
Cybercrime Groups ShinyHunters, Scattered Spider Join Forces in Extortion Attacks on Businesses
An ongoing data extortion campaign targeting Salesforce customers may soon turn its attention to financial services and technology service providers,
Global Data Breaches and Cyber Attacks in July 2025
Summary Total number of incidents disclosed: 44 Total number of known breached records: 14.9 million Welcome to another monthly round-up of monthly cyber attack and data breach news. At least 34 publicly disclosed incidents were reported worldwide in July 2025, spanning sectors from retail and travel to telecoms, healthcare, government and cryptocurrency. Based on confirmed figures, a minimum of 14.9 million records were breached this month. This is a lower-bound figure, as several major incidents did not provide confirmed counts but likely involved significant volumes of personal data. Top 5 incidents by number of records affected 1. Co-op (update) 2. Qantas
The post Global Data Breaches and Cyber Attacks in July 2025 appeared first on IT Governance Blog.
Why Traditional Phishing Tests Fail — And How the Latest Research Proves It’s Time for a Change
Traditional phishing tests fail. Learn why, backed by new Black Hat 2025 research, and how HootPhish offers a smarter, proven solution. Download our free whitepaper.
The post Why Traditional Phishing Tests Fail — And How the Latest Research Proves It’s Time for a Change appeared first on CyberHoot.
The Inevitable AI Breach? Predicting Data Theft Through Shared Vulnerabilities
Statistics shared by the World Economic Forum in 2024 show healthcare and finance to be the top two industries most targeted by
How to Stay a Step Ahead of a Non-Obvious Threat
Securing business logic isn’t just a technical requirement — it’s a business imperative.