Browsing: Security

A California federal judge has denied NSO Group’s request to pause an order that prevents the company from using WhatsApp’s infrastructure to deploy spyware. This decision stands while NSO Group pursues an appeal in a case alleging it targeted 1,400 WhatsApp users with Pegasus spyware.

The year 2025 was characterized by economic uncertainty, geopolitical tensions, and the unrestrained triumph of Artificial Intelligence. This prompted the editorial teams of Computerwoche, CIO, and CSO to take stock in their final TechTalk podcast episode of the year, focusing on the IT tops and flops of 2025.

The React2Shell vulnerability (CVE-2025-55182), affecting React Server Components and frameworks like Next.js, is being widely exploited by various threat actors. CISA has issued an emergency directive for federal agencies to patch the critical flaw, which allows unauthenticated attackers to execute arbitrary code. The exploitation has targeted a broad range of systems, including critical infrastructure, with over 137,000 internet-exposed IP addresses identified as vulnerable.

Cisco customers are currently facing a new wave of zero-day attacks from a China-linked advanced persistent threat (APT) group, exploiting a critical vulnerability in Cisco’s email and web security software for which no patch is yet available.

Experts and lawmakers are warning that Section 702 of FISA, a crucial surveillance program, is failing to protect Americans’ data, allowing intelligence agencies extensive access without warrants. They urge Congress to impose stricter warrant requirements or let the authority expire, citing constitutional concerns and potential for domestic spying.

A Chinese-linked threat group, known as Ink Dragon, is leveraging vulnerabilities in Internet Information Services (IIS) servers to construct a difficult-to-trace global espionage network, expanding its targets from Asia and South America to European governments.

A recent incident where a Raspberry Pi was used in an attempt to infiltrate a ferry’s network underscores significant vulnerabilities in physical security for enterprises. Experts warn that many organizations are ill-prepared for such ‘walk-in’ intrusions, emphasizing the need for enhanced controls and monitoring beyond traditional network defenses.

The company was charged with materially misrepresenting the cybersecurity of its Token Bridge software as executives failed to implement reasonable security.