Plex urges users to reset passwords following disclosed database breach — Streaming platform Plex advised customers to reset credentials after confirming a compromise of a user database, triggering incident response and credential-hygiene actions (2025-09-09) [US/Global]. For responders, expedite credential resets, hunt for token reuse, and review suspicious logins across identity providers and SSO. (Source: TechCrunch, 2025-09-09).

Microsoft Patch Tuesday ships fixes for 80+ flaws including 13 critical — September updates require rapid triage: prioritize internet-facing services and vulnerable components and schedule emergency change windows (2025-09-09) [Global]. DFIR teams should pre-stage rollbacks, monitor for exploit attempts, and ensure coverage for recent Android/Chrome/Apple zero-days referenced in parallel bulletins. (Source: KrebsOnSecurity, 2025-09-09).

US probes China-linked phishing email impersonating US lawmaker amid trade talks — Investigators traced malware in emails spoofing Rep. John Moolenaar during sensitive China trade discussions (2025-09-06/08 reported) [US/China]. Case underscores classic diplomacy-themed spear-phishing and the need for strict verification and email security for legislative staff. (Source: The Straits Times, 2025-09-06/08).

China accuses Dior’s Shanghai unit of illegal cross-border data transfer — Public security authorities alleged a May leak followed non-compliant transfers to France without required assessments or encryption (2025-09-09) [China/EU]. Investigators are assessing scope and controls, highlighting rising enforcement on outbound data flows. (Source: Reuters, 2025-09-09).

Plex discloses breach of user database; urges resets — Streaming service reported unauthorized access to a user database and pushed account-wide password resets (2025-09-09) [US/Global]. Potential credential stuffing risk across other services elevates incident severity for consumers and enterprises. (Source: TechCrunch, 2025-09-09).

Florida pediatric ENT specialists report data breach affecting ~44,000 patients — Provider disclosed exposure impacting tens of thousands of individuals, with parallel investigations at other clinics (2025-09-09) [US]. Healthcare entities should validate ePHI access logs, revoke tokens, and notify per HIPAA timelines. (Source: HIPAA Journal, 2025-09-09).

Hijacked npm packages with ~2B weekly downloads used for supply-chain malware — Threat actors injected browser-side interceptors into popular packages following account takeovers (2025-09-08) [Global]. Prioritize dependency audits, lockfile verification, and provenance checks across CI/CD. (Source: BleepingComputer, 2025-09-08).

Adobe patches critical “SessionReaper” flaw in Adobe Commerce/Magento — Emergency fixes address unauthenticated account-takeover paths via the Commerce REST API (2025-09-09) [Global]. E-commerce operators should fast-track patching and review API access logs for anomalies. (Source: BleepingComputer, 2025-09-09).

Patch Tuesday: Microsoft fixes 80+ flaws; Android fixes 84 with 2 zero-days — Multi-vendor bulletins elevate exploitation risk windows, requiring coordinated enterprise patch cycles (2025-09-09) [Global]. Track high-risk asset groups and verify detections for newly patched components. (Source: BleepingComputer, 2025-09-09).

DoJ charges administrator behind LockerGoga, MegaCortex, and Nefilim ransomware — US prosecutors unsealed a superseding indictment against a Ukrainian national tied to multiple campaigns targeting hundreds of organizations (2025-09-09) [US/International]. The State Department announced rewards information as authorities seek to apprehend the fugitive. (Source: U.S. DoJ (OPA), 2025-09-09).

EDNY details rewards up to $11M in related ransomware case — The US Attorney’s Office highlighted an $11M reward for information leading to arrest, underscoring ongoing international coordination (2025-09-09) [US/International]. Case materials link to broader takedown and disruption efforts coordinated with global partners. (Source: USAO-EDNY, 2025-09-09).

CISA issues fourteen new ICS advisories — Advisories released 2025-09-09 update risk owners on newly disclosed control-systems vulnerabilities and mitigations (2025-09-09) [US/Global]. Asset owners should map advisories to SBOMs and prioritize patch/compensating controls for affected OT. (Source: US-CERT activity feed (aggregated), 2025-09-09).

Monthly Patch Tuesday reinforces compliance baselines — Microsoft’s September release (80+ CVEs) prompts organizations to document remediation for audit trails and vulnerability SLAs (2025-09-09) [Global]. Ensure evidence of change control, testing, and rollback plans to satisfy internal and external compliance requirements. (Source: KrebsOnSecurity, 2025-09-09).