After last week’s raids and take downs of cybercrime sites, this week was quieter. Many companies are preparing for Infosecurity Europe, so expect a lot of news. Of the global stories we did see, Adidas is the latest retailer to suffer a cybersecurity incident.
In other news, WSO2 has acquired Moesif in an all-cash deal for an undisclosed amount. It will allow the company to run as an independent business unit as it integrates the technology into its existing product lines.
Chargebacks911 has announced the appointment of Donald Kossmann as its new CTO. Kossman joins following a decade-long career at Microsoft and a career in academia. As CTO, he will spearhead the development of next-generation solutions that integrate machine learning and real-time data intelligence across the company’s global platform.
Panasonic has made its TOUGHBOOK range of ruggedised laptops and tablets even tougher. It has launched the first IP65-rated adapter for the rugged tablet market, which is designed for its G2 mk3 tablet. Developed in Cardiff, it will initially enable military personnel to connect their device to various peripherals. While the company is focused on connecting to military devices, as with other TOUGHBOOK devices, this will appeal to a much wider audience.
Amanda Razani, was at SAP’s Sapphire conference, and met with Jared Coyle, the Chief AI Officer for Americas at SAP, for a candid conversation about the state of AI, the strategic vision behind SAP’s latest announcements and what business leaders need to consider as they step into a future powered by artificial intelligence and automation.
360 Privacy
360 Privacy has published a pair of blogs looking at the rise of SMS phishing. It details the Toll Payment phishing scam, how it works and how to protect yourself.
Qualys
The Qualys Threat Research Unit (TRU) has discovered two local information-disclosure vulnerabilities in Apport and systemd-coredump. Both issues are race-condition vulnerabilities, and Qualys has developed proof of concept (POCs) for certain operating systems,
The first (CVE-2025-5054) affects Ubuntu’s core-dump handler, Apport. The second (CVE-2025-4598) targets systemd-coredump, which is the default core-dump handler on Red Hat Enterprise Linux 9 and the recently released 10, as well as on Fedora. These race conditions allow a local attacker to exploit a SUID program and gain read access to the resulting core dump.
US Department of Justice
Nathan Vilas Laatsch, an IT specialist employed by the Defense Intelligence Agency (DIA), has been arrested. He is accused of attempting to transmit national defense information to an officer or agent of a friendly, but unnamed, foreign government.
Sue J. Bai, head of the Justice Department’s National Security Division, said, “The conduct alleged in this case is a profound betrayal of the American people and a direct threat to our national security.
“When someone entrusted with access to classified information attempts to provide it to a foreign government, it jeopardizes our intelligence capabilities, our military advantage, and the safety of our nation. The National Security Division is committed to using every tool available to uncover, disrupt, and hold accountable those who seek to harm the United States.”
Xalient
Xalient has issued two blogs looking at the challenges UK retailers are facing due to recent cyberattacks. The first looks at how you can strengthen cybersecurity in a high-risk landscape. The second gives advice to retailers on how to respond to any such attack.
