This is a have a look at cybersecurity tales that moved the needle, raised the alarm, or provided important classes in July 2025
31 Jul 2025
With one other month behind us, it is time for ESET Chief Safety Evangelist Tony Anscombe to have a look at cybersecurity tales that made an affect and provided important classes in July 2025. This is Tony’s rundown of a few of what stood out most over the previous 30 or so days.
- assaults concentrating on on-premises Microsoft SharePoint servers by exploiting the ToolShell zero-day vulnerabilities – and the implications of those assaults for companies,
- Lumma Stealer, beforehand disrupted in a worldwide operation that additionally relied on ESET’s experience, has returned, as additionally confirmed by ESET analysis,
- KNP, a UK transport firm with a historical past of 158 years, has gone out of enterprise after cybercriminals compromised its laptop techniques with ransomware in an assault that started by guessing an worker’s password,
- a vulnerability in McHire, McDonald’s chatbot job utility platform, that uncovered the chats of greater than 64 million job purposes throughout america, with the platform’s admin panel utilizing “123456” as each its username and password,
- so-called “PerfektBlue” vital vulnerabilities in a broadly used Bluetooth stack that would have allowed distant code execution on thousands and thousands of automobiles,
- the UK authorities’s proposal to ban public sector our bodies and significant infrastructure organizations from paying ransoms after ransomware assaults.
Do not forget to take a look at the June 2025 version of Tony’s month-to-month safety information roundup for extra insights.
