The UK team showcased remarkable resilience and ingenuity at the 2025 European Cyber Security Challenge in Poland. Competing against Europe’s elite, they secured 22nd place, proving that British cyber security talent is on the rise. With teamwork, empowerment, and a touch of humor, the team is set to conquer future cyber battles and win it…

Attackers are exploiting a patched Windows Server flaw, CVE-2025-59287, to distribute ShadowPad malware. This vulnerability, a critical deserialization flaw in WSUS, enables remote code execution. It’s like leaving your front door unlocked, only to find malware has made itself at home, snuggled on your server, munching on your data cookies!

The International Association for Cryptologic Research is holding a second election after a trustee lost their private encryption key. Helios, the voting system, needs all trustees’ keys to count votes. Now, the IACR will adopt better key management and try again. Apparently, encryption isn’t foolproof when someone forgets where they put their key.

Researchers have discovered a remote code execution flaw in the glob file pattern matching library’s CLI tool. This vulnerability, which affects versions v10.2.0 through v11.0.3, could allow attackers to execute code by exploiting the tool’s -c flag. Users meeting the vulnerability criteria should update their installations immediately.

Iberia has issued a warning to customers after a third-party supplier experienced a data breach, with a hacker claiming to have snagged 77GB of airline data. Iberia assures that financial data remains safe, but urges vigilance. Remember, if you get an email offering free flights, it’s likely a scam—unless it’s from your mother-in-law.

Google’s Quick Share now plays nice with Apple’s AirDrop, allowing file sharing between Pixel and iPhones. Only Pixel 10-series devices can join the fun for now, but more models will follow. So, Android and iOS users can finally live in harmony—or at least share cat memes more easily.

Iberia’s recent data breach was traced back to a compromised supplier, exposing customer details like names, emails, and loyalty card numbers. Fortunately, passwords and payment info are safe. As hackers claim to have 77 GB of airline data, Iberia swiftly implemented measures to protect customers. Stay alert for suspicious communications!

DoorDash confirms a data breach, impacting users’ phone numbers and addresses. Apparently, the only thing more persistent than my hunger for takeout is hackers’ appetite for data! Keep your eyes peeled, folks—your late-night cravings might just come with a side of cybercrime.

Beware of the 7-Zip vulnerability CVE-2025-11001 that lets hackers zip right into your system! This flaw in older versions can allow attackers to execute arbitrary code. Update to version 25.01 to keep your files safe and prevent your computer from becoming an unintentional hacker hotspot.

SonicWall is sounding the alarm on a SonicOS SSLVPN flaw that can crash Gen7 and Gen8 firewalls. This vulnerability, CVE-2025-40601, is a buffer overflow issue with a CVSS score of 7.5. SonicWall advises customers to patch ASAP unless you’re into unplanned firewall siestas.

Researchers discovered a staggering 3.5 billion WhatsApp accounts by abusing an API with as much resistance as a wet paper bag. Underwhelmed by the lack of security, WhatsApp has since added rate-limiting protections. The incident highlights how unprotected APIs are like open buffets for data-hungry threat actors.

Being a security analyst is like being a digital Sherlock Holmes, piecing together clues from a breadcrumb trail of logs and antivirus alerts. But when visibility is limited, analysts must squint through a “pinhole” of information. Despite the challenges, Huntress Labs analysts crack the case, proving the value of multiple data sources in an investigation.

Cox Enterprises fell victim to a data breach after hackers exploited a zero-day flaw in Oracle E-Business Suite. Cl0p ransomware claimed responsibility, adding Cox to their dark web leak site. Impacted individuals are offered free identity theft protection. Another day, another breach—Cox can’t seem to catch a break with Cl0p’s antics.

APT24 has taken the express route to cyberespionage infamy with their BadAudio malware, opting for supply chain attacks and spear-phishing to spread chaos. Their creative use of malicious DLLs and encrypted payloads is like a bad sequel nobody asked for, but everyone got. Stay alert; this isn’t your average audio download!

APT31, a China-linked cyber espionage group, has been targeting the Russian IT sector, staying stealthy between 2024 and 2025. Known for blending attacks with legitimate cloud services like Yandex Cloud, APT31 has infiltrated systems using innovative tools, proving they’re as persistent as a cat in a laser pointer factory.

CrowdStrike fired an employee for leaking confidential data to the hacking group Scattered Lapsus$ Hunters. The insider, dubbed “suspicious,” shared internal images online, but CrowdStrike insists their systems remain uncompromised. The company detected the breach quickly, preventing any real damage, and has escalated the matter to law enforcement.

CISA adds Oracle Fusion Middleware flaw to its Known Exploited Vulnerabilities Catalog. This vulnerability allows remote code execution, effectively handing over the keys to your digital kingdom. It’s like leaving your door wide open with a welcome mat for hackers. Update now or prepare to roll out the red carpet for cyber intruders!

WhatsApp’s discovery feature is like a nosy neighbor still peeking over the fence. Researchers found they could extract user phone numbers en masse, eight years after the first warning. Meanwhile, Cisco’s throwing shade at outdated tech, and Microsoft just played whack-a-mole with the largest DDoS attack. Who knew cybersecurity could be so… eventful?

Browser notifications have gone rogue! Leveraging the cunning Matrix Push C2 platform, bad actors are using them as a phishing vector faster than you can say “click here.” This browser-native, fileless framework is the new kid on the block, tricking users into a web of deceit across all operating systems.

CISA has added a critical security flaw, CVE-2025-61757, affecting Oracle Identity Manager to its Known Exploited Vulnerabilities catalog. This vulnerability allows unauthenticated remote attackers to take over systems, thanks to a faulty filter bypass. Agencies must patch up by December 12, or risk becoming the punchline in a cyber-attack joke.