Ransomware, data leaks, and zero-days dominated the past 48 hours. Qantas confirmed customer data was posted online, while Texas officials battled a municipal network breach. Healthcare ransomware rose 30%, and Apple doubled its top bug bounty. Germany’s rejection of EU “chat control” rules underscores encryption’s central role as DFIR teams confront escalating third-party and exploit risks.

A sweeping 48-hour snapshot reveals Oracle E-Business Suite exploitation driving global extortion, Discord’s vendor breach exposing 70,000 IDs, and new CISA KEV and ICS advisories. Law enforcement seized BreachForums’ latest domain, while Clearview AI lost a key UK tribunal case. ENISA’s 2025 threat report underscores accelerating vulnerability exploitation and ransomware persistence worldwide.

NAO’s Home Office 2024–25 overview highlights digital transformation and elevated risks for investigations. LEDS and HOB migrations, Hendon data-centre exit, and ESN delays affect evidence integrity and incident communications. Principal risks—cyber threats, data quality, and insider activity—demand stronger governance, forensic readiness, and skills. Recommendations: standardised toolsets, AI governance, immutable logging, dual-running comms, and whole-system cyber exercises across forces and departments.

CISA expands its Known Exploited Vulnerabilities list as Microsoft investigates active GoAnywhere MFT attacks. Japan’s Asahi Group faces a ransomware claim, while UK police arrest teens behind the Kido Nurseries breach. New NCSC guidance urges observability and proactive threat hunting. Global DFIR teams should prioritise patching, token hygiene, and compliance readiness amid rising cross-sector intrusions.

Oracle E-Business Suite zero-day (CVE-2025-61882) is being actively exploited, prompting global CERT advisories and extortion attempts linked to Clop. Asahi resumes operations after a ransomware-driven week-long outage. CISA adds a Meteobridge flaw to KEV. Europol spotlights cross-border data access gaps, while ETSI and ISO open security conferences shaping future compliance standards.