SonicWall has released urgent fixes for high-severity vulnerabilities affecting over 30 firewalls. A stack-based buffer overflow bug in SonicOS SSL VPN service could let attackers remotely crash devices or execute arbitrary files. Update to SonicOS versions 7.3.1-7013 or 8.0.2-8011 to keep those pesky cyber pests at bay.

Ferrovie dello Stato Italiana’s data was derailed by a hacker claiming a 2.3 TB data heist from IT provider Almaviva. The leak includes sensitive info like payrolls and contracts, sparking concerns about potential damage. While Almaviva insists it’s on track with security measures, the full extent of the breach remains unclear.

The China-nexus threat actor APT24 has been busy with BADAUDIO, a new malware campaign. This isn’t just your average cyber mischief; it’s a three-year-long digital escapade. APT24 has swapped its old tricks for sophisticated tactics, targeting organizations in Taiwan while using watering holes and phishing as their go-to moves.

APT24, also known as Pitty Tiger, has been prowling cyberspace since 2008, spear phishing its way to malware glory. Recently, it’s been crashing Taiwan’s digital marketing parties with its custom C++ downloader, BadAudio. Google reports they’ve turned supply chains into conga lines of chaos, proving this cyber bandit won’t be retiring anytime soon!

Kawaiicon, New Zealand’s top hacker conference, tackled the infamous “con crud” by implementing a DIY carbon dioxide monitoring system. Attendees could access real-time air quality data online, helping them navigate the event safely. It’s hacking with a breath of fresh air—literally!

SquareX claims it found a potentially critical vulnerability in Perplexity’s Comet AI browser. The firm suggests that the Model Context Protocol API could be exploited, but Perplexity isn’t buying it. They say the scenario is as unrealistic as a cat doing taxes. Meanwhile, SquareX insists their findings highlight the risk.

Salesforce has raised the alarm on suspicious activity in Gainsight-linked OAuth apps, hinting at unauthorized access to some customers’ data. The company swiftly revoked all app tokens and pulled the apps from AppExchange, emphasizing it’s not a platform flaw but an external connection issue. Stay alert, folks!

Salesforce customers, brace yourselves! A new cyber incident hit Gainsight, impacting apps connected to Salesforce. The infamous Scattered Lapsus$ Hunters claimed responsibility, and they’re threatening a data leak bonanza if demands aren’t met. Gainsight has called in the big guns for investigation, while the cybercriminals plot further mischief. Stay tuned!

ShinyHunters hacking group strikes again, targeting Salesforce customers by exploiting Gainsight integrations. Salesforce swiftly revoked access and is investigating the breach, while Gainsight collaborates to patch the issue. Only three organizations are known to be affected, but all are advised to rotate keys and credentials. ShinyHunters boasts 1,000 victims so far!

The SEC drops its lawsuit against SolarWinds, claiming the cybersecurity missteps were not quite as fraudulent as alleged. SolarWinds insists they’re now as secure as a squirrel with a nut vault. Meanwhile, the SEC hints this might not be the last courtroom tango. Stay tuned for more episodes of “As the Firewall Burns.”

Salesforce detected “unusual activity” in Gainsight apps, leading to unauthorized data access. As a precaution, they’ve revoked access tokens and pulled the apps from AppExchange. Meanwhile, Gainsight’s app was also removed from HubSpot Marketplace. The ShinyHunters group claims responsibility, linking this to previous attacks on Salesloft Drift. Stay vigilant, folks!

Google has finally bridged the gap between Android’s Quick Share and Apple’s AirDrop, but only on the Pixel 10 for now. While we’re all for cross-OS unity, let’s hope this doesn’t turn into a file-sharing free-for-all at the next family reunion. Quick Share users, brace yourselves for some unexpected photo albums!

In 2025, protests filled the streets, while Flock Safety’s automated license plate readers filled the databases. From “No Kings” to animal rights, law enforcement tracked vehicles nationwide, often justifying searches with a single word: “protest.” In this digital age, Big Brother isn’t just watching; he’s taking notes on your road trips.

The SEC drops its lawsuit against SolarWinds, finally letting the company focus on more important things—like making sure Russian hackers don’t RSVP to their next software update. This case has been a rollercoaster for cybersecurity leaders, who now breathe a sigh of relief, without the fear of setting a risky precedent.

Researchers have found a WhatsApp flaw that exposed 3.5 billion profiles, revealing the platform’s vulnerability to phone number enumeration at scale. Meta has patched the issue, but not before researchers uncovered details like timestamps and profile pictures. It’s a reminder that even with encryption, your data might still be playing peekaboo.

The SEC has decided to drop its lawsuit against SolarWinds, prompting a sigh of relief from CISOs everywhere. The agency’s move to dismiss doesn’t mean they’re soft on cybersecurity; they just realized they might be barking up the wrong firewall. SolarWinds is now ready to embark on a “new chapter” post-SUNBURST attack.

US authorities have accused four individuals of plotting to smuggle supercomputers and Nvidia GPUs to China. Allegedly, these tech aficionados swapped real estate for espionage, using fake paperwork and shady routes through Thailand and Malaysia. Who knew real estate agents could moonlight as international chip smugglers?

In a plot twist worthy of a spy novel, a suspected Russian hacker was nabbed in Phuket, swapping sunny beaches for a potential extradition. The FBI’s tip-off led to his arrest, marking a new chapter in international cybercrime drama. Meanwhile, local coconuts remain blissfully unaware of the unfolding espionage saga.

APT24 hackers have been playing a three-year game of hide and seek with BadAudio, a sneaky malware. From spearphishing tactics to watering hole attacks, they’ve gone from amateur to espionage extraordinaire, evolving into stealthy digital ninjas. Their latest trick? Using animal rescue emails as a Trojan horse for BadAudio malware.

PlushDaemon, a Chinese state-aligned threat actor, has been secretly hijacking software updates since 2018. Their signature malware, EdgeStepper, turns routers into mischief makers by rerouting legitimate updates to deliver malicious ones. Why a Chinese group targets fellow Chinese organizations remains a head-scratcher, but keeping network devices secure is the best defense.