Asahi Cyberattack and Data Breach: Ransomware-Driven Disruption and Nearly Two Million Records at Risk
1. Executive Summary In late September 2025, Asahi Group Holdings disclosed a cyberattack that disrupted core business systems in Japan and later confirmed that personal information linked to nearly two…
Cisco Critical Zero-Day Vulnerabilities (Sept 2025): SNMP Exploitation and Perimeter Firewall Zero-Days
1. Executive Summary In late September 2025, Cisco disclosed multiple high-risk vulnerabilities affecting core networking and perimeter security products, with confirmed in-the-wild exploitation reported for several issues. Of particular concern,…
Microsoft Patch Tuesday — November 2025
Microsoft’s November 2025 security updates address 63 CVEs across Windows and multiple Microsoft products. (Tenable®)Public reporting varies on the exact number of “Critical” issues (some analyses cite 4 or 5…
Fortinet FortiWeb Under Active Exploitation: CVE-2025-64446 and CVE-2025-58034
1. Executive Summary Two Fortinet FortiWeb vulnerabilities — CVE-2025-64446 (relative path traversal enabling unauthenticated administrative command execution) and CVE-2025-58034 (OS command injection enabling authenticated code execution) — were disclosed in…
Nominet Confirms Network Intrusion Linked to Ivanti Connect Secure Zero-Day (CVE-2025-0282)
CVE-2025-0283 was disclosed alongside CVE-2025-0282 and described by NVD as a stack-based buffer overflow leading to local privilege escalation. CISA added CVE-2025-0282 to its Known Exploited Vulnerabilities (KEV) catalogue on…
Scattered Spider Attacks on Airlines (Qantas, WestJet, Hawaiian Airlines)
1. Executive Summary In late June to early July 2025, multiple airlines disclosed cybersecurity incidents affecting internal systems and/or customer data, with reporting and government/industry warnings pointing to activity consistent…
U.S. Telecom “Lawful Intercept” Systems Targeted in China-Linked Intrusions (Salt Typhoon)
1. Executive Summary Public reporting indicates China-linked threat actors compromised multiple U.S. broadband/telecommunications providers, including AT&T, Verizon, and Lumen, with access potentially extending to systems and processes supporting court-authorised wiretapping…
Chinese Surveillance-Grade Data Exposure (631GB / ~4B records) — Threat Intelligence Brief
1. Executive Summary In May 2025, security researcher Bob Dyachenko (SecurityDiscovery.com) and the Cybernews research team identified a publicly exposed database (~631GB) containing roughly 4 billion records, predominantly related to…
Akira Ransomware Targeting SonicWall Gen 7 SSLVPN: CVE-2024-40766, Credential Reuse, and Post-Migration Exposure
1. Executive Summary A cluster of ransomware intrusions attributed to Akira affiliates surged in late July 2025, with defenders reporting initial access via SonicWall Gen 7 (and newer) firewalls where…
Microsoft SharePoint Zero-Day Exploitation — CVE-2025-53770 (“ToolShell”)
1. Executive Summary CVE-2025-53770 is a critical deserialisation-of-untrusted-data vulnerability in on-premises Microsoft SharePoint Server that enables unauthenticated remote code execution (RCE) over the network. Microsoft confirmed the issue was exploited…