EoP Flaws Again Lead Microsoft Patch Day – Dark Reading
Nearly half the CVEs Microsoft disclosed in its September security update, including one publicly known bug, enable escalation of privileges. – Read More
September 2025
Is the Browser Becoming the New Endpoint? – Dark Reading
While the jury is still out on whether the browser is the new endpoint, it’s clear that use has skyrocketed and security needs to align. – Read More
Qantas Reduces Executive Pay Following Cyberattack – Dark Reading
The data breach, which occurred earlier this year, saw threat actors compromise a third-party platform to obtain Qantas customers’ personal information. – Read More
Huge NPM Supply-Chain Attack Goes Out With Whimper – Dark Reading
Threat actors phished Qix’s NPM account, then used their access to publish poisoned versions of 18 popular open-source packages accounting for more than 2 billion weekly downloads. – Read More
Cyber resilience matters as much as cyber defence – NCSC Blog
Why planning and rehearsing your recovery from an incident is as vital as building your defences – Read More
Salty2FA Takes Phishing Kits to Enterprise Level – Dark Reading
Cybercriminal operations use the same strategy and planning as legitimate organizations as they arm adversarial phishing kits with advanced features. – Read More
What are the key things law firms need to know about the European Accessibility Act (EAA)? – Legal Futures
The European Accessibility Act (EAA) may seem like just another item to add to the never-ending to-do list, but it’s more than just another regulation; it’s a step toward making…
Leonard Curtis Group celebrates 30 years – Legal Futures
The firm, which started life in Bury as the insolvency division of a regional accountancy practice, now employs over 330 people across 30 offices UK and offshore. The post Leonard…
Mystery donor pledges £100k reward in hunt for missing BPP student – Legal Cheek
Aspiring lawyer Jack O’Sullivan was last seen 18 months ago Jack O’Sullivan An anonymous donor has put forward a £100,000 reward for information about the whereabouts of missing 22-year-old aspiring…
Axios Abuse and Salty 2FA Kits Fuel Advanced Microsoft 365 Phishing Attacks – The Hacker News
Threat actors are abusing HTTP client tools like Axios in conjunction with Microsoft’s Direct Send feature to form a “highly efficient attack pipeline” in recent phishing campaigns, according to new…
Smart GPUGate malware exploits GitHub and Google Ads for evasive targeting – CSO Online
Security researchers at Arctic Wolf have uncovered a novel malware campaign targeting users in Western Europe, delivered through Google Ads and employing sophisticated evasion techniques. Dubbed GPUGate, the campaign uses…
Phishing kit Salty2FA washes away confidence in MFA – CSO Online
A newly uncovered phishing campaign has been linked to Salty2FA, a phishing-as-a-service framework built to sidestep multi-factor authentication (MFA). The ongoing campaign is using the kit to bypass MFA protections…
GitHub Actions missbraucht – CSO Online
srcset=”https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?quality=50&strip=all 3540w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?resize=300%2C168&quality=50&strip=all 300w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?resize=768%2C432&quality=50&strip=all 768w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?resize=1024%2C576&quality=50&strip=all 1024w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?resize=1536%2C864&quality=50&strip=all 1536w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?resize=2048%2C1152&quality=50&strip=all 2048w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?resize=1240%2C697&quality=50&strip=all 1240w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?resize=150%2C84&quality=50&strip=all 150w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?resize=854%2C480&quality=50&strip=all 854w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?resize=640%2C360&quality=50&strip=all 640w, https://b2b-contenthub.com/wp-content/uploads/2025/09/shutterstock_177668495.jpg?resize=444%2C250&quality=50&strip=all 444w” width=”1024″ height=”576″ sizes=”auto, (max-width: 1024px) 100vw, 1024px”>Mit der…
Massive npm supply chain attack hits 18 popular packages with 2B weekly downloads – CSO Online
A massive supply chain attack compromised 18 highly popular npm packages, which collectively received two billion weekly downloads, deploying sophisticated browser-based malware designed to steal cryptocurrency and web3 transactions from…
RatOn Android Malware Detected With NFC Relay and ATS Banking Fraud Capabilities – The Hacker News
A new Android malware called RatOn evolved from a basic tool capable of conducting Near Field Communication (NFC) attacks to a sophisticated remote access trojan with Automated Transfer System (ATS)…