Author: Staff Writer

Top Highlights Hackers are conducting brute force attacks on SonicWall’s MySonicWall.com portal to access cloud backup services, compromising 5% of firewall preference files. While encrypted, the files contained exploitable information, prompting SonicWall and authorities to warn users and assess potential risks. SonicWall has terminated an unauthorized backup and is collaborating with cybersecurity experts to investigate the incident. Experts advise users to reset credentials and remain vigilant, as exposed configuration files can be exploited for further attacks by malicious actors. What’s the Problem? Hackers have launched aggressive brute-force attacks on the MySonicWall.com portal, aiming to breach SonicWall’s cloud backup service for…

Quick Takeaways Jaguar Land Rover’s production halt due to a cyber attack has been extended until October 1, 2025, highlighting vulnerabilities in complex supply chains and ongoing efforts to safely restore operations. The UK government officials, including Industry Minister Chris McDonald, are actively supporting JLR and engaging with supply chain workers affected by the disruption, which may last into November. The cyber incident has broader implications across the automotive industry, prompting companies like Stellantis to respond to unauthorized access on third-party platforms, emphasizing vulnerabilities in third-party integrations. Industry experts warn that trust in SaaS platforms and third-party tokens presents systemic…

Top Highlights European law enforcement arrested five suspects connected to a €100 million+ crypto scam that targeted over 100 victims across multiple countries since 2018, involving fraud and money laundering through a fake investment platform. The scam operated by promising high crypto returns, transferring funds to Lithuanian bank accounts for laundering, and disappearing after victims paid additional withdrawal fees. The US FTC reports a record $12.5 billion lost to fraud in 2024, with investment scams growing significantly, and over 79% of victims losing median amounts exceeding $9,000. Chainalysis successfully thwarted a $13 million social engineering attack on Venus Protocol, recovering…

Essential Insights Nearly half (48%) of cybersecurity leaders didn’t report significant cybersecurity incidents to executives or the board in the past year, mainly due to fears of punitive responses and reputational or regulatory damage. Most companies lack clear incident reporting protocols that escalate incidents to leadership unless under specific circumstances, signaling a need for tailored, compliant response plans. Underreporting risks legal and financial liabilities, with increasing cyberattack severity fueled by AI-driven methods and widespread nation-state hacking, emphasizing the importance of a strong cybersecurity culture. The survey’s limited scope and undefined key terms suggest a broader need for organizations to develop…

Quick Takeaways Production Delay Extended: Jaguar Land Rover has extended its production halt until October 1 due to a severe cyberattack, following an initial pause announced on September 2. Safety Measures in Place: The company is collaborating with cybersecurity experts and law enforcement to ensure a secure and phased restart of operations. Union Concerns: The Unite union has urged U.K. authorities to implement a furlough plan to support impacted workers, although JLR has not specified the reasons for the further production delay. Hackers Identified: The threat group Scattered Spider has claimed responsibility for the attack, which has affected other major…

Essential Insights The ShadowV2 botnet exploits misconfigured AWS Docker containers, using a sophisticated toolkit including a Go-based RAT and Python C2 framework to conduct DDoS attacks and potentially offer “DDoS-for-Hire” services. It employs advanced techniques like HTTP/2 Rapid Reset attacks, Cloudflare bypass methods, and containerization to evade forensic detection and amplify attack capabilities. ShadowV2’s infrastructure is concealed behind Cloudflare, with an extensive API and user interface, indicating a progression towards cybercrime-as-a-service and modular, customizable attack platforms. Recent large-scale DDoS events, including a record 22.2 Tbps attack, underscore escalating threats, with botnets like AISURU infecting hundreds of thousands of devices worldwide,…

Fast Facts Jaguar Land Rover (JLR) has extended its factory shutdown until October 1, 2025, due to a recent cyber-attack, aiming for a secure restart. The company is thoroughly investigating the breach, collaborating with cybersecurity experts and authorities, to develop a phased, safe resumption plan. The incident underscores increasing cyber threats to industrial sectors, highlighting the vulnerability of interconnected operational systems. Despite factory closures, JLR’s customer-facing operations like sales and service continue, and the company emphasizes stakeholder support amid ongoing disruptions. Problem Explained Jaguar Land Rover (JLR), the UK’s largest car manufacturer, announced an extended halt in its production lines…

Essential Insights Corporate Downsizing and Security Strain: Major companies are reducing their workforces, leaving CISOs with fewer resources while the frequency of security incidents, particularly involving compromised credentials, rises dramatically. Credential Breach Costs Escalate: 86% of breaches involve stolen credentials, costing U.S. organizations over $10 million on average—with hidden management costs adding up to $1.4 million annually on manual secret handling. Complexity of Secret Management: Leaner teams face longer remediation times and complexities in managing secrets across multiple platforms, leading to potential cascading security failures, as exemplified by the s1ngularity attack. Need for Efficient Remediation Solutions: Modern security platforms must…

Essential Insights SonicWall urgently released firmware 10.2.2.2-92sv to address a known rootkit malware (OVERSTEP) on SMA 100 series devices, especially targeting end-of-life models approaching support end on October 1, 2025. The update incorporates enhanced file-checking to detect and remove malicious software, blocking persistent threats and exfiltration of sensitive data like credentials and OTP seeds. The threat, linked to a campaign by UNC6148, exploited vulnerabilities and web shells on compromised devices, emphasizing the critical need for immediate patching to prevent active exploitation. SonicWall urges all affected users to apply the firmware immediately, review logs, reset credentials, and reinitialize OTPs—no workaround exists,…

Summary Points Transform Controls: Shift security from bottlenecks to business accelerators, enabling faster innovation and competitive advantage. Manage AI Identities: Address the unmanaged landscape of AI agents, which outnumber human employees 100 to 1, with 99% operating outside traditional security. Proactive Security: Adopt a ‘secure by design’ approach with just-in-time access and automated lifecycle management to combat credential sprawl from the outset. Strategic Alignment: Frame secure AI access as a crucial enabler that mitigates risk while accelerating deployment for organizational growth. Transforming Security Controls Organizations increasingly adopt artificial intelligence (AI) to foster innovation and maintain a competitive edge. However, this…