Author: Declan Murphy

Australian ISP iiNet confirms information breach as hackers stole 280,000 electronic mail accounts, telephone numbers and person information utilizing stolen worker credentials, TPG says. Australian web supplier iiNet has confirmed a knowledge breach in its order administration system, with father or mother firm TPG Telecom reporting that buyer info was accessed utilizing stolen worker credentials. The breach was detected on Saturday, 16 August 2025, after attackers used stolen worker credentials to realize entry to the system. In response to TPG, the knowledge uncovered was restricted in scope in contrast with different current company breaches, however the particulars are nonetheless delicate…

A brand new exploit combining two essential, now-patched safety flaws in SAP NetWeaver has emerged within the wild, placing organizations vulnerable to system compromise and information theft. The exploit in query chains collectively CVE-2025-31324 and CVE-2025-42999 to bypass authentication and obtain distant code execution, SAP safety firm Onapsis stated. CVE-2025-31324 (CVSS rating: 10.0) – Lacking

Danielle Gibbs Koenitzer contends that ableism in nursing training features as a type of gatekeeping, which silences disabled voices, narrows the definition of who generally is a nurse, and reinforces outdated beliefs of competence and care. __________________________________________ Think about a world the place everybody has 4 arms, and you’ve got solely two. All of the sudden, you’re not simply totally different; you’re “an individual with a incapacity.” How would that really feel? This thought experiment, supplied by Dr. Maggie Little, flips the script on how we outline incapacity. What we name “regular” is formed by collective expectations; not goal reality.…

Cybersecurity researchers have uncovered a classy marketing campaign the place risk actors leverage pirated recreation downloads to distribute HijackLoader, a modular malware loader, successfully bypassing widespread defenses like adblockers and Microsoft Defender SmartScreen. Websites similar to Dodi Repacks, usually deemed “secure” on piracy boards when used with instruments like uBlock Origin, function vectors for this malware. Customers trying to obtain cracked video games are redirected by domains like zovo[.]ink and downf[.]lol to MEGA-hosted ZIP archives containing nested .7z information. View of the content material of the extracted 7z archive These archives disguise malicious payloads inside seemingly respectable information, similar to…

Black Hat 2025 Recap: A take a look at new choices introduced on the present Aug. 7, 2025: AI dominated the dialog at Black Hat 2025, from the rise of autonomous brokers and shadow AI to surging identity-based assaults and hardware-level exploits, and product bulletins mirrored that development. Beef up AI safety with zero belief ideas Aug. 7, 2025: Many CSOs fear about their agency’s AI brokers spitting out recommendation to customers on the way to construct a bomb, or citing non-existent authorized selections. However these are the least of their worries, stated a safety knowledgeable at this week’s Black…

WarLock ransomware claims breach at Colt and Hitachi, with Colt investigating and dealing to revive methods whereas consultants assessment the alleged knowledge theft. When a brand new ransomware group reveals up, many within the trade normally wait to see whether or not they can truly ship on their threats. WarLock, which surfaced solely two months in the past, is attempting to show it will probably. This week, the group added Colt (colt.internet) and Hitachi (hitachi.hta.com) to its sufferer listing, claiming to have stolen delicate knowledge from each corporations. Colt Information Being Bought for $200,000 On its darkish internet leak website,…

A Chinese language-speaking superior persistent menace (APT) actor has been noticed focusing on net infrastructure entities in Taiwan utilizing custom-made variations of open-sourced instruments with an intention to determine long-term entry inside high-value sufferer environments. The exercise has been attributed by Cisco Talos to an exercise cluster it tracks as UAT-7237, which is believed to be energetic since at the least 2022.

Within the relentless battle in opposition to cyber threats in 2025, unpatched software program stays a gaping vulnerability exploited by attackers worldwide. Outdated working techniques, functions riddled with identified flaws, and lacking safety updates create an open invitation for malware, ransomware, and information breaches. Efficient patch administration the method of figuring out, buying, testing, and deploying software program updates to repair these vulnerabilities – is now not a routine IT process; it’s a vital cornerstone of any strong cybersecurity technique. Neglecting well timed patching leaves organizations uncovered to important dangers, together with monetary losses, reputational injury, regulatory fines, and enterprise…

With change a continuing, IT professionals trying to enhance their careers can profit from the newest insights into employers’ wants. Knowledge from Foote Companions on the talents and certification most in demand immediately could present useful signposts. Analyzing greater than 640 certifications as a part of its 2Q 2025 “IT Expertise Demand and Pay Traits Report,” Foote Companions calculated probably the most invaluable IT safety certifications to pursue proper now primarily based on two dimensions. The primary, the common pay premium, measures the distinction in pay between IT professionals with a specific credential and people with out it. The second, market worth improve,…

The Las Vegas Metropolitan Police Division introduced the arrest of eight people, together with a high Israeli official, in a sting operation combating web crimes towards youngsters. A high-ranking Israeli cybersecurity official was amongst eight males arrested in a serious two-week undercover sting operation, in response to a press launch from the Las Vegas Metropolitan Police Division. The operation, which focused on-line customers looking for to exploit youngsters, was a joint effort by the Nevada Web Crimes In opposition to Kids (ICAC) activity pressure, the FBI’s Little one Exploitation Process Drive, and a number of native companies, together with the…