2025

CISA Flags VMware Zero-Day Exploited by China-Linked Hackers in Active Attacks – The Hacker News

October 31, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting Broadcom VMware Tools and VMware Aria Operations to its Known Exploited Vulnerabilities (KEV) catalog,…

CSO Online Cyber

AI-powered bug hunting shakes up bounty industry — for better or worse – CSO Online

October 31, 2025

AI-powered bug hunting has changed the calculus of what makes for an effective bounty program by accelerating vulnerability discovery — and subjecting code maintainers to ballooning volumes of AI flaw-hunting…

Cyber Hacker News

A New Security Layer for macOS Takes Aim at Admin Errors Before Hackers Do – The Hacker News

October 31, 2025

A design firm is editing a new campaign video on a MacBook Pro. The creative director opens a collaboration app that quietly requests microphone and camera permissions. MacOS is supposed…

CSO Online Cyber

Malicious packages in npm evade dependency detection through invisible URL links: Report – CSO Online

October 31, 2025

Threat actors are finding new ways to insert invisible code or links into open source code to evade detection of software supply chain attacks. The latest example was found by…

Legal Futures Legal News

Legal Services Board sets out scope of Mazur review – Legal Futures

October 31, 2025

The Legal Services Board is to probe “the scale and impact” of breaches of the right to conduct litigation in the wake of the Mazur ruling. The post Legal Services…

Legal Futures Legal News

Fifth of law firms looking to option of private equity backing – Legal Futures

October 31, 2025

A fifth of law firms are considering private equity investment as a route to growth and transformation, according to new research. The post Fifth of law firms looking to option…

Legal Futures Legal News

Minister urges litigation funders to embrace self-regulation – Legal Futures

October 31, 2025

All third-party funders should join the Association of Litigation Funders while the government decides on the way forward for the sector, the courts minister said this week. The post Minister…

Legal Futures Legal News

Consultancy for law firms and investors spins out of City practice – Legal Futures

October 31, 2025

A specialist strategic consultancy advising lawyers, investors and regulators has spun out of a City law firm as demand for help in navigating the legal market grows. The post Consultancy…

Legal Futures Legal News

The four key areas of vulnerability – Legal Futures

October 31, 2025

Both financial and legal regulators are, and have been for some time now, keenly focused on client vulnerability or clients in vulnerable circumstances. The post The four key areas of…

Cyber Dark Reading

Zombie Projects Rise Again to Undermine Security – Dark Reading

October 30, 2025

Companies left them for dead, but the remnants of old infrastructure and failed projects continue to haunt businesses’ security teams. – Read More

Cyber Dark Reading

An 18-Year-Old Codebase Left Smart Buildings Wide Open – Dark Reading

October 30, 2025

Researcher Gjoko Krstic’s “Project Brainfog” exposed hundreds of zero-day vulnerabilities in building-automation systems still running hospitals, schools, and offices worldwide. – Read More

Cyber Dark Reading

US Stands Out in Refusal to Sign UN Cybercrime Treaty – Dark Reading

October 30, 2025

The agreement aims to help law enforcement prosecute cross-border cybercrime, but the final treaty could allow unchecked surveillance and human-rights abuses, critics say; and, it includes no protection for pen…

Cyber Dark Reading

Claroty Patches Authentication Bypass Flaw – Dark Reading

October 30, 2025

CVE-2025-54603 gave attackers an opening to disrupt critical operational technology (OT) environments and steal data from them. – Read More

Cyber Dark Reading

LotL Attack Hides Malware in Windows Native AI Stack – Dark Reading

October 30, 2025

Security programs trust AI data files, but they shouldn’t: they can conceal malware more stealthily than most file types. – Read More

CSO Online Cyber

Strengthening security with a converged security and networking platform – CSO Online

October 30, 2025

Today’s IT environment of multiple clouds, hybrid work, and the exploding popularity of AI has given cybercriminals unprecedented opportunities for launching attacks — and the traditional arsenal of tools organizations…

CISA Flags VMware Zero-Day Exploited by China-Linked Hackers in Active Attacks – The Hacker News

AI-powered bug hunting shakes up bounty industry — for better or worse – CSO Online

A New Security Layer for macOS Takes Aim at Admin Errors Before Hackers Do – The Hacker News

Malicious packages in npm evade dependency detection through invisible URL links: Report – CSO Online

Legal Services Board sets out scope of Mazur review – Legal Futures

Fifth of law firms looking to option of private equity backing – Legal Futures

Minister urges litigation funders to embrace self-regulation – Legal Futures

Consultancy for law firms and investors spins out of City practice – Legal Futures

The four key areas of vulnerability – Legal Futures

Zombie Projects Rise Again to Undermine Security – Dark Reading

An 18-Year-Old Codebase Left Smart Buildings Wide Open – Dark Reading

US Stands Out in Refusal to Sign UN Cybercrime Treaty – Dark Reading

Claroty Patches Authentication Bypass Flaw – Dark Reading

LotL Attack Hides Malware in Windows Native AI Stack – Dark Reading

Strengthening security with a converged security and networking platform – CSO Online

You Missed

Indian Users Targeted in Tax Phishing Campaign Delivering Blackmoon Malware – The Hacker News

Digitale Integrität: Warum Firewall und IDS nicht reichen – CSO Online

Orbital raises $60m Series B as it eyes further US growth – Legal IT Insider

DPRK’s Konni Targets Blockchain Developers With AI-Generated Backdoor – Dark Reading