Cyber News & Updates
Breaking news, security alerts, and trending stories from across the cybersecurity landscape.
-
Critical Cisco Firewall Flaws Exploited for Denial-of-Service Attacks
Cisco firewalls are facing new denial-of-service attacks exploiting critical vulnerabilities, CVE-2025-20333 and CVE-2025-20362. These flaws in Cisco’s Secure Firewall ASA and FTD software allow attackers to gain control and force device reloads, disrupting network services. The ongoing exploitation highlights the urgent need for timely patching and continuous vigilance in network security.
-
Linux Kernel Receives Patch to Fortify Cryptographic Random Number Generation
The Linux kernel, a foundational component of countless computing systems worldwide, has recently received an essential security update addressing a vulnerability within its cryptographic random number generator (RNG). This patch, identified as CVE-2025-40109, aims to ensure the integrity of randomness crucial for secure operations, from encryption to digital signatures.
-
Critical Security Flaw Discovered in TOZED ZLT T10 Routers, Threatening Network Stability
A significant security vulnerability, identified as CVE-2025-12917, has been found in specific TOZED ZLT T10 network devices, creating a pathway for attackers to launch denial-of-service attacks. The flaw, which affects the device’s core operational stability, can be triggered with an exploit that is now publicly available.
-
Security Flaw in Skuul Management System Poses Risk to Student Fee Data
A newly disclosed security vulnerability in the yungifez Skuul School Management System, affecting versions up to 2.6.5, could allow attackers to manipulate resource identifiers and potentially access or alter student fee invoice information. The flaw, categorized as a resource injection, highlights ongoing challenges in securing educational technology platforms.
-
UK Online Safety Push Sparks Transatlantic Free Speech Clash
A contentious legal battle is unfolding across the Atlantic, as the United Kingdom’s communications regulator, Ofcom, faces accusations of extraterritorial overreach in its enforcement of the Online Safety Act against American online platforms, reigniting a global debate on internet sovereignty and free speech.
-
Ukrainian Strikes Disrupt Power in Russian Border Regions, Leaving Thousands in Darkness
Ukrainian forces have conducted a series of drone and missile strikes targeting energy infrastructure across several Russian border regions, resulting in widespread power outages. This strategy aims to disrupt vital infrastructure, exert economic pressure, and underscore the vulnerability of Russian domestic systems.
-
Google’s AI System Identifies Critical WebKit Vulnerabilities, Underscoring Machine Learning’s Evolving Role in Cybersecurity
Google’s AI system has successfully identified critical vulnerabilities within Apple’s WebKit, demonstrating the growing effectiveness of machine learning in cybersecurity. This significant discovery highlights AI’s evolving role in proactively detecting complex security flaws that often evade traditional methods, promising a future where AI plays a central role in securing digital infrastructure.
-
Google’s AI Uncovers Critical Flaws in Apple’s WebKit, Highlighting Machine Learning’s Role in Cybersecurity
Google’s AI system, ‘Big Sleep,’ discovered five critical vulnerabilities in Apple’s WebKit, highlighting AI’s growing role in cybersecurity for proactive vulnerability detection and responsible disclosure practices between tech giants.
-
Samsung Zero-Click Vulnerability Exploited, Deploying LANDFALL Spyware
A critical zero-click vulnerability in Samsung devices has reportedly been exploited, enabling the deployment of sophisticated Android spyware known as LANDFALL. The attack vector, leveraging popular messaging platform WhatsApp, highlights the escalating threat of highly evasive surveillance tools.
-
Mozilla Unveils Enterprise Support Program for Firefox
Mozilla has launched a new paid support program for businesses and institutional users of its Firefox web browser, offering dedicated technical assistance and extended stability. This initiative aims to expand Firefox’s presence in corporate IT infrastructures by providing features like long-term support versions and prioritized security patches.