Britain’s data watchdog slapped a £200,000 fine on Bharat Singh Chand for sending nearly a million spam texts, targeting people in debt. The ICO claims Chand “knowingly and deliberately” broke marketing rules without valid consent. It’s a hefty price for mass-messaging misadventures!

CyberRidge has leapt out of stealth mode, securing $26 million to fund its photonic encryption solution. This Tel Aviv-based startup is tackling the “harvest now, decrypt later” threat with a cutting-edge plug-and-play system that turns data into optical noise. It’s like sending your data on a secret mission with an invisibility cloak!

In fintech, it’s not just about having the best product; it’s about turning innovation into influence. Successful high-tech finance companies share stories instead of specs, strategically plan financial PR, and educate without confusion. By doing so, they transform curious consumers into brand loyalists and skeptics into believers.

Watch out, XWiki users! A vulnerability in the platform, CVE-2025-24893, is being exploited by crypto-miners. Hackers are turning your wiki into their own digital gold mine. Remember, nothing says “Welcome to the Internet” quite like an unexpected mining operation on your server!

Meet Atroposia, the remote access trojan with a criminal toolkit worthy of a spy thriller. For just $200 a month, it offers a smorgasbord of nefarious features including remote desktop takeover, credential theft, and persistence, all wrapped in a sleek, user-friendly package. It’s like the Swiss Army knife of cybercrime!

Dentsu has revealed a data breach at its subsidiary, Merkle, impacting sensitive data of employees and clients. The breach, discovered after unusual activity, has resulted in some systems being shut down. While Dentsu’s Japan operations remain unaffected, the financial fallout is still being assessed. The company is offering free dark web monitoring.

The UK AI Security Institute’s new framework, featuring the backbone breaker benchmark (b3), aims to boost large language model security. Think of it as AI’s very own personal trainer, flexing those virtual muscles to prevent phishing, code injections, and more. It’s like CrossFit for your algorithms!

Brace yourselves for a safer internet! Google Chrome will soon default to ‘Always Use Secure Connections,’ navigating only to HTTPS sites. Starting in 2026, if a site isn’t secure, you’ll get a warning. It’s like having your very own bouncer for web browsing—just without the velvet rope!

The British Standards Institution warns of a widening AI governance gap as businesses race to adopt AI without proper controls. While 62% plan increased AI investments, only 24% have governance programs. Overconfidence in AI without strategic oversight risks failures and reputational damage, urging businesses to shift from reactive compliance to proactive governance.

Cybersecurity researchers have uncovered 10 malicious npm packages using typosquatting to deliver an information stealer that targets Windows, Linux, and macOS. These packages impersonate popular libraries, fool users with fake CAPTCHAs, and swipe credentials like they’re in a digital supermarket sweep. Stay alert and avoid these npm nasties!

The U.S. CISA added Dassault Systèmes DELMIA Apriso flaws to its Known Exploited Vulnerabilities catalog. With vulnerabilities that make hackers rub their hands in glee, the flaws could allow code execution or unauthorized access. Agencies have until November 18, 2025, to patch these issues before cybercriminals beat them to it.

The UK government is seeking a new CTO, but the offered salary might not be tempting enough. While the role promises prestige, starting pay lags behind private sector standards. With digital transformation high on the agenda, the challenge is to find someone who values public service over pounds—or who really loves birthday cake.

Warning: DELMIA Apriso’s vulnerabilities are causing more drama than a reality TV show. The US cybersecurity agency CISA highlights two recent flaws being exploited, CVE-2025-6204 and CVE-2025-6205. Federal agencies now have three weeks to patch these issues. DELMIA Apriso users, it’s time to update faster than you can say ‘cyberattack’!

Threat actors are having a field day exploiting security flaws in Dassault Systèmes DELMIA Apriso and XWiki. While DELMIA Apriso flaws could lead to unauthorized access, XWiki’s vulnerability is being used in a two-stage attack to mine cryptocurrency. Stay updated, because when it comes to cyber threats, ignorance isn’t bliss—it’s just an invitation!

Germany’s infosec office is in full panic mode as 92% of the nation’s Exchange boxes are still living in the past, running out-of-support software. Despite Microsoft’s love notes urging upgrades, these servers are still clinging to Outlook Web Access 2019 or earlier, leaving them open to a world of cybersecurity hurt.

The TEE.fail attack method can infiltrate Intel and AMD’s latest security by targeting DDR5 memory. Discovered by Purdue and Georgia Tech researchers, this attack requires soldering skills and an interposer but promises a treasure trove of cryptographic keys. Apparently, security in the digital age also calls for a soldering iron!

Cybercriminals are using AI to bolster attacks against African organizations. Deepfake-related fraud has surged, driven by AI-powered voice scams. Phishing remains the most common threat, with AI crafting culturally accurate messages, achieving a 54% click-through rate. Business email compromise attacks are thriving, especially in South Africa and Nigeria, becoming major hubs for cybercrime activities.

The Australian Federal Police are building an AI to decode the cryptic world of Gen Z and Alpha emojis and slang to track online crime. Because when your teenager says “💀,” you want to make sure it’s not literal.

The KB5067036 update for Windows 11 introduces the Administrator Protection feature and an updated Start Menu. The optional update, part of Microsoft’s non-security preview schedule, lets users test these features before next month’s Patch Tuesday. It adds bug fixes and new features, including a responsive Start Menu and improved cybersecurity measures.

The Everest ransomware group is like Santa Claus, but evil and with a data breach twist. They’ve allegedly leaked AT&T Carrier’s job platform database and are offering Dublin Airport passenger and Air Arabia employee data for sale. With millions at stake, it’s a hacker’s holiday bonanza!