North Korea-linked threat actor KONNI has been observed abusing Google's Find My Device feature to remotely factory reset Android smartphones and tablets belonging to South Korean targets.

The operation, known as Operation Ironside, was orchestrated by the FBI and Australian Federal Police (AFP) to infiltrate and dismantle organized criminal networks globally. The AN0M operation began in 2018 following the takedown of Phantom Secure.

Two high-severity vulnerabilities have been identified in Docker Compose and Docker Desktop for Windows, potentially allowing attackers to write arbitrary files to host systems or escalate privileges via DLL hijacking.

Hacktivists have targeted Canadian critical infrastructure systems, including water treatment facilities, energy providers, and agricultural operations. These intrusions exploited internet-accessible ICS to manipulate operational parameters

A UK-based sole trader has been fined £200,000 for orchestrating a large-scale SMS spam campaign that targeted financially vulnerable individuals. The ICO found that nearly one million unsolicited messages were sent without valid consent.

This vulnerability poses a significant risk to users of the Atlas browser, as it allows attackers to execute commands with elevated trust by bypassing standard input validation.

A significant data breach has impacted Ravin Academy, a cybersecurity training institution linked to Iran’s MOIS. The breach has resulted in the exposure of sensitive personal data belonging to students and associates

A sophisticated malware campaign known as the "YouTube Ghost Network" has been dismantled by Google and Check Point after distributing over 3,000 malicious videos on YouTube.

Toys R Us Canada disclosed that attackers accessed a customer database and exfiltrated personal information including names, addresses, phone numbers, and email addresses. However, the exact number of affected individuals remains undisclosed.

Microsoft has patched a critical vulnerability (CVE-2025-55315) in ASP.NET Core's Kestrel web server, rated 9.9 on the CVSS scale. The flaw enables HTTP request smuggling, allowing attackers to bypass security mechanisms under certain conditions.