Australia warned on Cisco SD-WAN exploitation, U.S. investigators examined a suspected China-linked FBI network breach, LexisNexis and TriZetto disclosed major data exposures, and authorities disrupted LeakBase and Tycoon 2FA. The roundup also tracks Google’s 90 zero-day tally for 2025, White House cyber strategy priorities, and European Commission guidance for applying the Cyber Resilience Act across health, government, telecom, and sectors.

Mobile device geolocation has become a critical evidential source in digital investigations. This briefing examines how smartphones determine location using GNSS, cellular networks, Wi-Fi, and device sensors. It explores the reliability of these technologies, the risks of spoofing and manipulation, and how investigators can validate location data through multi-source correlation and forensic analysis to strengthen evidential confidence.

CISA added five newly exploited vulnerabilities to KEV as Cisco warned more Catalyst SD-WAN flaws are under active attack. Europol seized LeakBase and disrupted Tycoon 2FA, while Passaic County reported a malware outage and LexisNexis confirmed a data breach. Google challenged geofence warrants, and draft Cyber Resilience Act guidance signalled tougher product-security expectations for vendors and defenders globally this week.

UK NCSC urged organisations to tighten monitoring amid Middle East spillover risks, while Cloudflare reported session-token abuse. AkzoNobel confirmed a breach at a U.S. site after an extortion leak claim, and Russian government portals suffered a multi-vector DDoS. CISA warned VMware Aria Operations is being exploited, and California’s privacy regulator fined PlayOn Sports $1.1M. Supreme Court heard geofence warrant challenge.

CISA updated hunting guidance for RESURGE malware lingering on Ivanti appliances, while Juniper warned of a critical PTX router takeover flaw. Reuters tracked cyber operations hitting Iranian apps and sites after strikes, as Sophos monitored Iran-linked hacktivist claims. In the US, UH Cancer Center reported SSN exposure affecting up to 1.15 million people. Substack disclosed stolen emails and phone numbers.