Apple has opened applications for the Security Research Device Program (SRDP) 2026, its flagship initiative that provides vetted researchers with specialized iPhones for in-depth iOS security analysis. Applications are accepted until October 31, 2025, offering white‑hat researchers legal access to powerful tooling that accelerates vulnerability discovery and responsible disclosure. Program details and eligibility are outlined … Read more

In June 2025, researchers documented a new phishing wave dubbed Phantom Papa that distributes the Phantom information stealer. The campaign targets both Russian‑ and English‑speaking users, relies on compressed attachments to bypass basic email controls, and introduces a rare webcam‑trigger feature aimed at extortion. Evidence points to a Malware‑as‑a‑Service (MaaS) operation built on repurposed open‑source … Read more

Google Threat Intelligence (Mandiant) has linked a wave of intrusions to the theft and reuse of OAuth and refresh tokens from Drift integrations, widening the blast radius beyond CRM systems. The activity window spans 8–18 August 2025, and the impact is broader than early assessments suggested, with data access confirmed in Salesforce and a subset … Read more

Sangoma Technologies has confirmed in-the-wild exploitation of a critical zero‑day in FreePBX, the open-source PBX platform built on Asterisk and widely used by enterprises, contact centers, and telecom providers. Tracked as CVE-2025-57819 and rated CVSS 10.0, the flaw is being leveraged against systems where the administrative interface is exposed to the public internet. FreePBX vulnerability … Read more

An independent security researcher known as BobDaHacker disclosed critical weaknesses in the Pudu Robotics ecosystem that could allow attackers to redirect robots, alter jobs, and issue arbitrary commands within the managed runtime of deployed devices. Given Pudu’s significant footprint in restaurants and offices, the impact potential was substantial. Service robot security under scrutiny: why this … Read more

ReversingLabs has identified an integrity gap in the Visual Studio Code Marketplace: when an extension is hard-deleted, its name can be re-registered by a different publisher. The finding surfaced during an investigation of a malicious extension, ahbanC.shiba, which mirrors earlier variants ahban.shiba and ahban.cychelloworld observed in March 2025. ReversingLabs: malicious loaders masquerading as VS Code … Read more

Jaguar Land Rover (JLR) has confirmed a cyber incident that prompted the company to proactively take a portion of its IT systems offline. At this stage, the automaker reports no evidence of customer data compromise, while acknowledging significant disruption across manufacturing and retail operations. What Happened: JLR’s Statement and Immediate Actions According to JLR, the … Read more

Cloudflare reports neutralizing the largest hyper‑volumetric distributed denial‑of‑service (DDoS) attack observed to date, with peak bandwidth hitting 11.5 Tbps and throughput reaching 5.1 billion packets per second (pps). The UDP flood lasted roughly 35 seconds, delivering a short but extreme burst aimed at exhausting both transit capacity and network processing planes. Record DDoS dimensions: bandwidth, … Read more

Kaspersky researchers have released a technical review of 14 threat groups most actively targeting organizations in Russia, Belarus, and several neighboring countries. A sizable share of today’s activity comes from post‑2022 hacktivist collectives that identify as “pro‑Ukrainian.” The study organizes adversaries into three clusters by motivation and tooling, enabling defenders to reason about repeatable TTPs … Read more

A large-scale supply-chain intrusion involving the Salesloft Drift integration platform led to the theft of OAuth and refresh tokens and subsequent unauthorized access to Salesforce data across multiple enterprises. Confirmed victims include Zscaler, Palo Alto Networks, Cloudflare, Workiva, PagerDuty, Exclaimer, and others. According to Google, the campaign was widespread and also touched Google Workspace data … Read more