Cybersecurity is the field of protecting computers, networks, programs, data, and other digital assets from unauthorized access, attacks, and damage. With new threats, vulnerabilities, and exploits emerging daily, cybersecurity professionals need to be able to identify risks quickly. Keeping up with the latest news in this rapidly evolving space informs security teams and positions them as trusted advisors for their clients and stakeholders.
A threat actor with ties to North Korea has been linked to a campaign targeting European companies active in the drone industry. The attack, dubbed Operation Dream Job, uses malware to plunder proprietary information and manufacturing know-how from targeted systems.
Microsoft has released an out-of-band update to patch a critical Windows Server Update Service (WSUS) vulnerability, which is under active exploitation in the wild. The flaw, CVE-2025-59287, can be exploited to execute arbitrary code in the system.
Researchers have discovered a flaw in OpenAI’s newly launched ChatGPT Atlas web browser that can be exploited to inject malicious instructions into the AI assistant’s memory and execute arbitrary code on victim machines. The attack, which leverages a prompt injection technique, abuses the omnibox to jailbreak Atlas by disguising a malicious prompt as a URL to navigate to or as a natural-language command to the assistant.
This week’s cybersecurity news highlights that the infamous Qilin ransomware group continues to target victims around the world, with victims totaling 84 incidents reported on the threat group’s public data leak site in August and September 2025. The Qilin ransomware variant, which has also been called Agenda, Gold Feather, and Water Galura, has now claimed victims in more than 40 countries, according to a 2025 report from Cisco Talos.