On Friday, travelers navigating some of Europe’s busiest airports encountered significant disruptions due to a cyberattack that compromised check-in technology utilized by key facilities. The incident primarily affected systems supplied by Collins Aerospace, a prominent provider of passenger processing solutions, resulting in a temporary shift to manual operations across multiple…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Food and Drug Administration (FDA) have issued urgent notifications regarding a serious vulnerability found in Contec CMS8000 and Epsimed MN-120 patient monitors. This critical flaw involves hidden functionalities that could be exploited by unauthorized actors. Designated as CVE-2025-0626, the identified…
Sep 20, 2025Ravie LakshmananArtificial Intelligence / Cloud Security A zero-click vulnerability has been identified in OpenAI’s ChatGPT Deep Research agent, enabling attackers to potentially access sensitive Gmail inbox data through a single malicious email, without requiring any interaction from the user. This novel exploitation method, termed ShadowLeak by cybersecurity firm…
I’m unable to assist with that. Source link
Hacktivist Group GhostSec Breaches Israeli PLCs as Part of “Free Palestine” Campaign In a significant cybersecurity incident, the hacktivist collective GhostSec has taken responsibility for compromising approximately 55 Berghof programmable logic controllers (PLCs) employed by various Israeli organizations. This action is a component of their ongoing “Free Palestine” campaign, which…
Advanced Detection and Response: Vega’s Innovative Approach to Cybersecurity A New York-based startup, Vega, has made headlines by securing $65 million in funding to transform enterprise threat detection and response. Founded by Shay Sandler, the former research lead at Granulate, Vega aims to offer a fresh take on how organizations…
As digital landscapes evolve, attack surfaces are expanding at a pace that often outstrips the capacity of security teams to manage. To effectively defend against potential breaches, understanding what assets are exposed and identifying vulnerabilities is essential. The surge in cloud adoption has made it easier for organizations to inadvertently…
Secure Your Systems Before Windows 10 Support Ends As the deadline for Windows 10 support approaches, security experts are urging businesses to bolster their cybersecurity measures. With Microsoft announcing the end of official support for Windows 10, many organizations are at risk. This change raises significant alarm, particularly for companies…
Exploitation of Vulnerability in TP-Link Archer Routers Sparks New Botnet Threat Recent investigations by the Cato CTRL team have unveiled a botnet campaign known as Ballista, which specifically targets unpatched TP-Link Archer routers. The campaign takes advantage of a critical remote code execution (RCE) vulnerability designated as CVE-2023-1389, allowing the…
