This is a have a look at cybersecurity tales that moved the needle, raised the alarm, or supplied very important classes in July 2025
31 Jul 2025
With one other month behind us, it is time for ESET Chief Safety Evangelist Tony Anscombe to take a look at cybersecurity tales that made an affect and supplied very important classes in July 2025. This is Tony’s rundown of a few of what stood out most over the previous 30 or so days.
- assaults focusing on on-premises Microsoft SharePoint servers by exploiting the ToolShell zero-day vulnerabilities – and the implications of those assaults for companies,
- Lumma Stealer, beforehand disrupted in a world operation that additionally relied on ESET’s expertise, has returned, as additionally confirmed by ESET research,
- KNP, a UK transport firm with a historical past of 158 years, has gone out of business after cybercriminals compromised its laptop programs with ransomware in an assault that started by guessing an worker’s password,
- a vulnerability in McHire, McDonald’s chatbot job software platform, that exposed the chats of greater than 64 million job functions throughout the USA, with the platform’s admin panel utilizing “123456” as each its username and password,
- so-called “PerfektBlue” important vulnerabilities in a extensively used Bluetooth stack that might have allowed distant code execution on thousands and thousands of vehicles,
- the UK authorities’s proposal to ban public sector our bodies and important infrastructure organizations from paying ransoms after ransomware assaults.
Remember to take a look at the June 2025 edition of Tony’s month-to-month safety information roundup for extra insights.
