Cyber News & Updates
Breaking news, security alerts, and trending stories from across the cybersecurity landscape.
-
Ukraine Urges U.S. for Patriot Missile Systems Amid Escalating Russian Attacks on Power Grid
Kyiv is intensifying its plea to Washington for additional Patriot air defense systems, a critical request as Russia escalates its systematic targeting of Ukraine’s energy infrastructure.
-
Russia Detains Eight in Bashkortostan Over Alleged Telecom Sabotage Plot
Russian authorities have detained eight individuals in the republic of Bashkortostan, alleging their involvement in a plot to sabotage telecommunications infrastructure. The detentions signal a heightened focus on internal security amidst ongoing international tensions.
-
The Enterprise Browser: A New Cyber Frontier, Report Warns
A new report highlights a critical shift in the landscape of enterprise cybersecurity, positing that the user’s browser has become a convergence point for significant identity, SaaS, and AI-related risks, often evading the purview of traditional security measures.
-
U.S. Considers Ban on TP-Link Routers Amid China Security Concerns
The U.S. government is considering a ban on TP-Link routers due to national security concerns linked to China, potentially reshaping the consumer router market and highlighting supply chain vulnerabilities.
-
QNAP Issues Urgent Updates for Critical NAS Vulnerabilities Exposed at Pwn2Own
QNAP has issued a series of critical security updates following the discovery of eight severe vulnerabilities, enabling remote attackers to gain complete control over affected NAS systems.
-
Critical Cisco Firewall Flaws Exploited for Denial-of-Service Attacks
Cisco firewalls are facing new denial-of-service attacks exploiting critical vulnerabilities, CVE-2025-20333 and CVE-2025-20362. These flaws in Cisco’s Secure Firewall ASA and FTD software allow attackers to gain control and force device reloads, disrupting network services. The ongoing exploitation highlights the urgent need for timely patching and continuous vigilance in network security.
-
Linux Kernel Receives Patch to Fortify Cryptographic Random Number Generation
The Linux kernel, a foundational component of countless computing systems worldwide, has recently received an essential security update addressing a vulnerability within its cryptographic random number generator (RNG). This patch, identified as CVE-2025-40109, aims to ensure the integrity of randomness crucial for secure operations, from encryption to digital signatures.
-
Critical Security Flaw Discovered in TOZED ZLT T10 Routers, Threatening Network Stability
A significant security vulnerability, identified as CVE-2025-12917, has been found in specific TOZED ZLT T10 network devices, creating a pathway for attackers to launch denial-of-service attacks. The flaw, which affects the device’s core operational stability, can be triggered with an exploit that is now publicly available.
-
Security Flaw in Skuul Management System Poses Risk to Student Fee Data
A newly disclosed security vulnerability in the yungifez Skuul School Management System, affecting versions up to 2.6.5, could allow attackers to manipulate resource identifiers and potentially access or alter student fee invoice information. The flaw, categorized as a resource injection, highlights ongoing challenges in securing educational technology platforms.
-
UK Online Safety Push Sparks Transatlantic Free Speech Clash
A contentious legal battle is unfolding across the Atlantic, as the United Kingdom’s communications regulator, Ofcom, faces accusations of extraterritorial overreach in its enforcement of the Online Safety Act against American online platforms, reigniting a global debate on internet sovereignty and free speech.