News Roundups
Here you can access the latest 48hr Global News Roundups from DFM
We scour the internet to find the latest stories relating to:
DFIR, Cyber Investigations, Major Cyber Incidents, Exploits & Threat Intelligence, Law Enforcement, Policy, and Standards & Compliance
We also provide an Editorial Perspective and a Reference List for further reading.
Sign up now to get these emailed direct to your inbox.
NEWS ROUNDUP – 17th November 2025
Global DFIR teams face cascading fallout from an Oracle EBS zero-day campaign, SaaS and VPN breaches, and side-channel attacks on AI models. UK resilience legislation, sanctions Amber Alerts and NIST’s CSF 2.0 profile reshape compliance expectations. Law enforcement pushes back on crypto fraud and DPRK IT-worker schemes, while police expand digital forensics capacity, demanding sharper playbooks and faster incident reporting.
NEWS ROUNDUP – 14th November 2025
Healthcare, media and critical infrastructure all feature in this 48-hour DFIR snapshot. From Synnovis and Washington Post breach fallout to Akira’s evolving ransomware playbook, defenders face expanding pressure across on-prem and cloud estates. Operation Endgame arrests, new UK cyber resilience powers and fresh NIST mappings underline how law enforcement and regulation are reshaping incident response expectations for global teams worldwide.
NEWS ROUNDUP – 12th November 2025
The latest 48-hour global cybersecurity roundup covers ongoing fallout from Oracle E-Business Suite exploitation, new Microsoft Patch Tuesday detections, CISA’s KEV update, and the UK’s proposed Cyber Security and Resilience Bill. It highlights data-breach disclosures, evolving policy frameworks, and cross-sector responses that matter most to DFIR and cyber-risk professionals worldwide.
NEWS ROUNDUP – 10th November 2025
Over the past 48 hours, global cybersecurity saw major Oracle E-Business Suite breaches, new ransomware claims, and critical container runtime exploits. India expanded cyber-fraud crackdowns, Ghana deepened cross-border cooperation, and Morocco launched AI-driven dark-web monitoring. DFIR teams face sustained ERP targeting, evolving regulations, and rising enforcement intensity across finance, government, and critical digital infrastructure.
NEWS ROUNDUP – 7th November 2025
Global coverage from 05–07 Nov 2025: SonicWall attributes its breach to a state-backed actor, while the Washington Post confirms exposure via Oracle-linked software. Android’s “Landfall” spyware zero-day and Monsta FTP RCE headline new exploits. ENISA warns of DDoS waves on public services as CISA releases fresh ICS advisories and NCSC announces Mail/Web Check retirement.
NEWS ROUNDUP – 5th November 2025
The past 48 hours saw major movement across global cyber fronts, including AI-enabled backdoors, cargo-theft hacking campaigns, and high-impact data breaches in Japan and Sweden. Actively exploited WordPress and Android vulnerabilities demand immediate patching, while new CISA KEVs and ICS advisories raise urgency for OT environments. Meanwhile, Europol operations disrupted large-scale fraud and crypto-platform crime.
NEWS ROUNDUP – 3rd November 2025
BADCANDY reinfection warnings, telecom resilience failures, and new DDoS alerts dominated the last 48 hours. The Philippines DICT warned of a possible 5 November cyberattack, while Australia’s Optus outage review exposed change-control gaps. Global DFIR teams are urged to verify router hygiene, review vendor trust chains, and monitor evolving breach-reporting rules shaping future compliance.
NEWS ROUNDUP – 31st October 2025
ACSC and CISA released synchronized Exchange Server hardening guidance as new KEV entries and ICS advisories highlight active exploitation across IT and OT systems. Major incidents hit Ribbon Communications and Conduent, while U.S. prosecutions target Conti and insider espionage cases. DFIR teams should prioritize patch validation, supplier risk reviews, and Exchange baseline enforcement.
NEWS ROUNDUP – 29th October 2025
Qilin ransomware tactics evolve, commercial spyware resurfaces, and municipal services face fresh extortion pressure. A Lanscope zero-day and BIND 9 risks demand swift patching, while Singapore tackles SIM-fraud networks on the ground. New supply-chain ransomware guidance and crypto-finance sanctions signal policy tightening. Plus, standards shifts in ICMPv6 and hashing preview changes coming to defensive stacks.
Advertisements
