News Tor Project Joins the Rust Foundation as an Associate Member The Tor Project, known worldwide for advancing privacy and digital rights, has officially joined the Rust Foundation as an Associate Member. This move reflects Tor’s deepening investment in Rust, particularly through Arti, its next-generation Tor client written entirely in the Rust programming language. Welcoming New Rust Foundation Members Alongside Editorial Team • 1 min read
GeoSphere Belgium Strengthens Cyber Defense with Strategic RMA–Cyber Command Partnership Belgium has taken another major step in reinforcing its national cyber defense. Following the Protocol of Agreement signed on June 26, 2023, the Royal Military Academy (RMA) in Brussels and the Cyber Command of the General Intelligence and Security Service (SGRS/ADIV) have formalized an implementation agreement to boost collaboration Editorial Team • 2 min read
Breach Breakdown Ransomware Attack Hits Diamond Electric’s Thai Subsidiary Diamond Electric Holdings has confirmed that its Thai subsidiary, Thai Diamond & Zebra Electric, suffered a ransomware attack earlier this month. The company is now investigating the scope of the damage, including whether any sensitive information was leaked. Attack Details On September 8, 2025, at around 11 a.m., local Editorial Team • 1 min read
Kali Linux 2025.3 (Photo: Kali.org) Skills Lab Kali Linux 2025.3 Brings Nexmon Support, New Tools, and VM Improvements The developers of Kali Linux have released Kali Linux 2025.3, the latest quarterly update for penetration testers and security researchers. The release introduces significant improvements for virtualization, wireless testing, and mobile platforms, while also adding ten powerful new tools. What’s new at a glance * Release: Kali Linux 2025. Editorial Team • 2 min read
CISA logo Cyber Watch CISA Orders Agencies to Mitigate Cisco ASA Zero-Day Exploitation The Cybersecurity and Infrastructure Security Agency (CISA) has issued Emergency Directive (ED) 25-03 in response to active exploitation of zero-day vulnerabilities in Cisco Adaptive Security Appliances (ASA) and Cisco Firepower devices. The vulnerabilities, tracked as CVE-2025-20333 and CVE-2025-20362, pose a severe risk to federal networks and require immediate mitigation. Background: Editorial Team • 2 min read
Okuma Japan (Photo: Wikipedia) Breach Breakdown Okuma’s German Subsidiary Hit by Ransomware Attack Japanese machine tool manufacturer Okuma has confirmed that its German subsidiary, Okuma Europe GmbH (OEG), was hit by a ransomware attack. The company is working with external experts to investigate the incident and restore affected systems. On September 20, 2025, OEG discovered that intruders had compromised its servers, encrypting internal Editorial Team • 1 min read
Cyber Watch Critical RCE Vulnerability Found in Control Web Panel A severe vulnerability has been discovered in Control Web Panel (CWP), a hosting management tool widely used on Linux servers. The flaw, tracked as CVE-2025-48703, affects the software’s file management API and allows attackers to execute arbitrary commands through command injection. Exploitation requires knowledge of a valid username, but Editorial Team • 1 min read
Cyber Watch Cisco Releases Security Advisories for IOS and IOS XE Vulnerabilities Cisco Systems has issued 13 new security advisories addressing vulnerabilities in Cisco IOS and Cisco IOS XE. Published on September 24, 2025, the advisories highlight several issues that could impact different operating system versions. While no vulnerabilities were rated Critical, eight of them were classified as High Severity. Among these, Editorial Team • 1 min read
Skills Lab Is Cybersecurity Hard? The Honest Truth for Beginners If you’ve ever wondered whether cybersecurity is too hard to get into, you’re not alone. It’s one of the most common questions people ask before considering this field. The truth? Cybersecurity can be challenging, but it’s not impossible — and it may not be as intimidating as Editorial Team • 3 min read
Business Shield Ransomware Attack on Collins Aerospace Systems Cripples Major European Airports A devastating ransomware attack targeting critical aviation infrastructure brought chaos to major European airports over the weekend, forcing thousands of passengers into lengthy delays and highlighting the vulnerability of modern air travel to cybersecurity threats. The airport ransomware attack represents one of the most significant cyber incidents to impact the Editorial Team • 4 min read
Breach Breakdown SonicWall Cloud Backup Attack Exposes Firewall Data Network security giant SonicWall has disclosed a significant cyberattack targeting its cloud backup service, potentially exposing sensitive firewall configuration data belonging to customers worldwide. The SonicWall backup attack represents a concerning breach of trust in a service designed to protect critical network infrastructure. The company has issued urgent advisories to Editorial Team • 4 min read
Cyber Watch Zero-Click ChatGPT Vulnerability Exposes Gmail Data Without User Knowledge A devastating security flaw has been discovered in OpenAI’s ChatGPT that could silently steal your Gmail data without you ever knowing. Security firm Radware has uncovered what they’re calling “ShadowLeak”—a ChatGPT vulnerability Gmail exploit that represents a new frontier in zero-click cyberattacks. This isn’t your typical Editorial Team • 4 min read
Threat Horizon North Korean Hackers Infiltrate Crypto Companies with Fake Job Applications The cryptocurrency industry faces a sophisticated new threat that goes far beyond traditional cyberattacks. Binance co-founder Changpeng Zhao has issued a stark warning about North Korean hackers crypto infiltration tactics, where cybercriminals disguise themselves as legitimate job candidates to gain inside access to digital asset companies. This emerging threat represents Editorial Team • 3 min read
Business Shield Recorded Future Insikt Group August 2025 Report: 18 High-Impact Vulnerabilities Prioritized for Patching Recorded Future’s Insikt Group identified 18 high-impact vulnerabilities in August 2025 that organizations should prioritize for remediation, marking a decrease from the 22 vulnerabilities highlighted in July. Despite the overall reduction, the number of Very Critical vulnerabilities remained steady at 16 compared to the previous month. These flaws impacted Editorial Team • 3 min read
National Cyber Security Center of New Zealand (Photo: Security.land) News New Zealand Records 1,315 Cyber Security Incidents with 27% Drop in Financial Losses The National Cyber Security Centre (NCSC) of New Zealand has documented a significant volume of cyber security incidents in its latest quarterly assessment, with social engineering attacks emerging as a prominent threat vector targeting organizations across the country. Quarter Two Statistics Reveal Persistent Threat Landscape Between April 1 and June Editorial Team • 2 min read
Cyber Watch Critical Security Flaws Expose Flowise AI Framework to Remote Code Execution Attacks Seven severe security vulnerabilities have been discovered in Flowise, a popular low-code development framework designed for building large language model applications. The security flaws, five of which carry the highest “Critical” severity rating, enable attackers to execute remote code, manipulate server files, and hijack user accounts through multiple attack vectors. Editorial Team • 3 min read
