Vulnerabilities
-
Cybersecurity Community Breathes a Sigh of Relief as CVE Database Funding Extended
The cybersecurity community expressed relief following an 11-month funding extension for the CVE database, which will continue operations after concerns of a shutdown. Industry leaders stress the importance of establishing a long-term plan for its future to maintain effective vulnerability management.
-
CISA Issues Warning on Cybersecurity Vulnerabilities in US Oil and Gas Sector
The Cybersecurity and Infrastructure Security Agency (CISA) has warned about the risk of cyberattacks on the US oil and gas infrastructure, highlighting systemic vulnerabilities and the importance of basic cybersecurity practices.
-
WhatsApp’s Group Messaging Threatened by Lack of Cryptographic Management
Concerns have emerged about WhatsApp’s group messaging feature, which lacks necessary cryptographic measures for adding new members, potentially jeopardizing user privacy and security.
-
TikTok Fined €530 Million for Breaches of Data Privacy Regulations
The Irish Data Protection Commission has fined TikTok €530 million for mishandling user data under GDPR, raising concerns about data protection and sovereignty. TikTok disputes the ruling, citing significant investments in data security initiatives.
-
UK Government Strengthens Cybersecurity Measures Following Retail Hacks
In response to recent cyber attacks on major UK retailers, the government has announced new cybersecurity measures aimed at protecting critical infrastructure. Minister Pat McFadden emphasized the importance of prioritizing cybersecurity while revealing the upcoming Cyber Resilience and Security bill.
-
Concerns Rise Over Alleged Interpol Data Leak by Cybercriminal
A cybercriminal known as l33tfg claims to have leaked 1,000 database entries from Interpol, raising serious concerns over the security of sensitive law enforcement data. As cybersecurity experts investigate, the implications of the breach could have far-reaching effects on international law enforcement operations.
-
UK National Cyber Security Centre Reports Surge in Significant Cyber Incidents
The NCSC reports a significant increase in cyber incidents, with over 200 nationally significant cases reported from September 2024 to May 2025. The rise in attacks has raised concerns about national security and the need for stronger policies against ransomware payments.
-
Urgent Measures Required as Samsung MagicINFO 9 Server Vulnerability Under Attack
A critical vulnerability in the Samsung MagicINFO 9 Server is being actively exploited by hackers to execute remote code and deploy malware, emphasizing the urgent need for system upgrades.
-
UK Legal Aid Agency Investigates Potential Cybersecurity Breach
The Legal Aid Agency in the UK is investigating a cybersecurity incident that may have compromised the financial information of legal aid providers, amid a wave of attacks on major retailers in the country.
-
New Study Reveals Cloud Vulnerability Disparities Among Providers
A new CyCognito report reveals that Google Cloud has the highest vulnerability rates among major cloud providers, surpassing both AWS and Azure, emphasizing the need for enhanced security measures.
