Cybersecurity
Power plant in Karlskrona hit by cyberattack
04 ottobre 2025 Riportato dall'IA
A combined heat and power plant in Karlskrona, known as Mältan, suffered a cyberattack that disrupted operations overnight. Police are investigating the incident as a suspected IT crime. The plant supplies district heating and electricity to the area.
CISA adds Oracle and other flaws to exploited vulnerabilities catalog
The U.S. Cybersecurity and Infrastructure Security Agency has added vulnerabilities from Oracle, Mozilla, Microsoft Windows, Linux Kernel, and Microsoft Internet Explorer to its Known Exploited Vulnerabilities catalog. This action requires federal agencies to address these flaws by October 27, 2025, to mitigate risks from ongoing exploits. Among the additions is a critical Oracle vulnerability recently patched after exploitation by ransomware actors.
Kali Linux 2025.3 releases Gemini CLI for automated pentesting
07 ottobre 2025 Riportato dall'IA
The latest Kali Linux update, version 2025.3, introduces Gemini CLI, an open-source tool that integrates Google's Gemini AI into the terminal. This innovation automates penetration testing tasks like reconnaissance and vulnerability scanning using natural language prompts. Security professionals can now streamline workflows while maintaining control over assessments.
Microsoft warns of payroll pirate scam targeting university employees
11 ottobre 2025 Riportato dall'IA
Microsoft has alerted organizations to a phishing campaign dubbed 'Payroll Pirate' that compromises Workday accounts to divert employee paychecks. The scam, active since March 2025, has affected accounts at multiple universities. Attackers use sophisticated tactics to bypass multi-factor authentication and hide their changes.
HHS announces voluntary cybersecurity goals for healthcare
The U.S. Department of Health and Human Services has released a set of voluntary cybersecurity performance goals aimed at bolstering protections in the healthcare sector. These goals address the rising tide of cyberattacks targeting patient data and critical infrastructure. Developed in collaboration with federal partners, they provide a framework for organizations to enhance their defenses.
Spahn and Weber call for European shield against Russian cyberattacks
CDU politicians Jens Spahn and Manfred Weber have presented a joint proposal for a European defense shield. It aims to use drones and other technologies to protect Europe from cyberattacks originating in Russia. The plan is discussed amid rising geopolitical tensions.
Ransomware attack disrupts Japan's beer supply
A ransomware attack has hit a key Japanese beer distributor, causing shortages of popular brands across the country. The incident highlights vulnerabilities in supply chains amid rising cyber threats.
Cl0p ransomware group claims breach of Oracle E-Business Suite
03 ottobre 2025 Riportato dall'IA
The Cl0p ransomware group has claimed responsibility for hacking Oracle's E-Business Suite, asserting that it stole sensitive data from companies using the application. The hackers are now notifying affected victims and demanding ransoms to prevent data leaks. Oracle has not yet confirmed the breach.
UK tribunal orders Apple to hand over iCloud data
04 ottobre 2025 Riportato dall'IA
A UK tribunal has ruled that Apple must provide access to iCloud data for law enforcement purposes, prompting strong disapproval from the company. The decision revives concerns over encryption backdoors and user privacy in the digital age. Apple has described the order as a significant setback for data protection.
Microsoft announces premium 365 features and security store
04 ottobre 2025 Riportato dall'IA
Microsoft has unveiled Microsoft 365 Premium, a new subscription tier with advanced AI capabilities, alongside the launch of the Microsoft Security Store, an online marketplace for security solutions. These announcements aim to enhance productivity and cybersecurity for businesses. The moves come as part of Microsoft's ongoing push into AI-integrated services.