British investigators nabbed a suspect in a suspected ransomware attack causing flight delays across Europe. The UK’s National Crime Agency (NCA) is on the case, while cybersecurity experts link the chaos to the HardBit ransomware variant. Airlines revert to pen and paper ops, proving that even in 2023, old school sometimes rules.

The Home Office has advised police to exhaust their own photo databases before requesting access to its vast libraries of passport and visa images. This new guidance aims to curb the surge in requests, which jumped from two in 2020 to 417 in 2023, by emphasizing privacy and minimizing unnecessary urgent requests.

Cisco fixed a high-severity zero-day vulnerability in its IOS and IOS XE software, tracked as CVE-2025-20352. This flaw, affecting the SNMP subsystem, could let remote attackers trigger a DoS condition or execute root code. Cisco urges users: update now or risk becoming the punchline in a hacker’s joke.

Cisco has identified a high-severity flaw in IOS and IOS XE Software that may let remote attackers cause chaos or hijack systems. The problem lies in SNMP, a protocol so simple it forgot to lock the door! With a CVSS score of 7.7, it’s the security equivalent of stepping on a LEGO.

The Q1-Q2 2025 Radar report from Gcore reveals a surge in DDoS attacks, with a 41% increase from last year and peak attacks hitting 2.2 Tbps. Attackers are now targeting financial services and tech sectors, leaving gaming behind. Businesses must brace for these evolving threats as DDoS attacks grow in scale and strategy.

California’s “No Robo Bosses Act” is a smart move to curb the rise of algorithmic decision-making in workplaces. Employers must now be transparent when using automated systems like secretive robot overlords. They can’t fire someone based solely on a computer’s whim, ensuring humans still have a say in human resources!

BMC firmware flaws are persistent and potentially dangerous, allowing attackers to bypass security checks and plant malicious firmware. The vulnerabilities in Supermicro’s hardware, identified by Binarly, highlight the importance of prompt updates. Otherwise, your server might just become the world’s most expensive paperweight!

OpenAI’s new GPT-Alpha isn’t just an upgrade—it’s the Swiss Army knife of AI. It’s like giving ChatGPT a PhD in multitasking, with skills ranging from web browsing to debugging code. But don’t set your hopes too high yet; this “Agent with Truncation” might come with a premium price tag.

The Python Software Foundation warns of sneaky phishing attacks using a fake PyPI website. Developers are tricked into verifying accounts, risking credential theft. This is not just another phishing wave; it’s a credible attempt to weaponize software distribution, with the potential for far-reaching damage. Change your PyPI password immediately!

Kali Linux 2025.3 is here, and it’s jam-packed with ten new tools, Nexmon support for Raspberry Pi, and exciting NetHunter improvements. The release promises to be a treasure trove for cybersecurity pros and ethical hackers. Get ready to hack into 2025 with style, and maybe a Wi-Fi handshake or two!

The Python Software Foundation warns of a new phishing campaign targeting PyPI users with fake emails and a spoofed login site. Developers are urged to change compromised passwords and report suspicious activity. The attack highlights the importance of phishing-resistant two-factor authentication to protect the Python community.

Cisco has patched a zero-day vulnerability in its IOS and IOS XE software, tracked as CVE-2025-20352, which allowed attackers to exploit a stack-based buffer overflow in the SNMP subsystem. Remote attackers could trigger denial-of-service conditions or gain full system control. Cisco advises upgrading to fixed software to remediate the issue.

RedNovember, a Chinese state-sponsored threat actor, is hacking away at global organizations like a cyber ninja. With tools like Pantegana and Spark RAT, they’re targeting everything from firewalls to email servers. Their espionage spree spans continents, making international relations as tangled as a bowl of spaghetti.

Beware the Fezbox! This malicious npm package uses a QR code to steal usernames and passwords from web cookies. It’s like a magic trick, but instead of pulling a rabbit out of a hat, it’s extracting your credentials from a browser. Thanks to Socket’s AI scanner, this nefarious act has been stopped in its tracks.

OnePlus phones are dealing with a bug that lets any app read SMS data without asking nicely. OxygenOS versions 12 to 15 are affected, and OnePlus has yet to patch this issue. Until they do, keep app installations low and stick to encrypted messaging apps for your secrets.

The ShadowV2 DDoS operation is the new cybercrime-as-a-service, attacking like a business with APIs and user interfaces. This malware operation cleverly combines traditional hacking with modern DevOps tools, using GitHub CodeSpaces, Docker, and Go-based trojans. It’s a digital crime buffet where specialization beats sprawl, making cybercrime look like a startup pitch.

Interpol’s Operation HAECHI VI seized over $439 million in cash and cryptocurrency linked to cyber-enabled financial crimes. The operation spanned five continents, involved 40 countries, and targeted scams from voice phishing to romance fraud. More than 68,000 bank accounts were blocked and 400 cryptocurrency wallets seized in this global crackdown on cybercrime.

The suspected China-nexus cyber espionage group has targeted U.S. companies with the BRICKSTORM backdoor, aiming for long-term stealthy access. Their ingenious methods, like exploiting zero-day vulnerabilities and using malicious Java Servlet filters, make them the ninjas of the cyber world. Organizations are urged to hunt for BRICKSTORM, the digital ghost haunting their systems.

Boyd Gaming announced a data breach after hackers infiltrated its IT systems. The company says its casino operations remain unaffected. While some data, including employee info, was stolen, Boyd Gaming assures that the incident won’t impact its financial health, thanks to a robust cybersecurity insurance policy.

Indirect prompt injection is like a sneaky ninja slipping hidden instructions into seemingly normal data, turning LLMs into unwitting accomplices. Meanwhile, RUG Pull attacks are the tech equivalent of replacing your morning coffee with decaf—trusted tools silently swapped for evil twins. In both cases, attackers don’t need to hack the model; they manipulate its environment.