The Record

Cisco still has work to do in communicating with the private sector about the impact of two vulnerabilities in its Adaptive Security Appliances, Sen. Bill Cassidy says in a letter to the company's CEO.

The emergency directive orders all agencies to apply the latest updates for all at-risk F5 virtual and physical devices and downloaded software by October 22.

Matthew Lane, who demanded a ransom of $2.9 million from PowerSchool in exchange for not leaking personal data belonging to more than 70 million people, also was ordered to pay about $14 million in restitution and a $25,000 fine.

Spain-based fashion chain Mango reported a data breach that exposed customer information but did not appear to affect internal corporate systems.

Car insurance price-quote tools that auto-populated with people's sensitive data allowed cybercriminals to commit fraud elsewhere, New York's state government said in announcing fines against several companies.

U.K. outsourcing giant Capita will pay the largest penalty ever imposed by the Information Commissioner's Office (ICO) in a ransomware case.

According to a new report by cybersecurity firm Symantec, the hackers gained access to the Russian company’s software build and code-repository systems between January and May 2025 — suggesting the breach may have been an attempted software supply-chain attack aimed at the firm’s customers.

Michigan City, Indiana, has confirmed that a damaging cyber incident in September that impacted government systems was a ransomware attack.

The Florida attorney general's office sued the smart television company Roku for collecting and selling children’s sensitive data, including information showing precise geolocation, without notice and parental consent.

The Treasury Department targeted the company, Prince Group, and 146 associated people and entities with sanctions.

California's governor signed a bill that requires chatbot operators to set up a system to prevent suicidal ideation — an issue that several federal lawmakers have also focused on in recent months.

Taiwan’s National Security Bureau says network intrusions and influence operations by China have increased this year, with critical infrastructure drawing the most attention.

The Australian airline Qantas confirmed that hackers have published customer data they stole by exploiting Salesforce technology.

The British government says it will be writing to the chief executives and chairs of the country's leading businesses to “take concrete actions” to protect their enterprises from attacks.

Harvard University said a recent incident that is impacting Oracle E-Business Suite customers impacted a "limited number of parties associated with a small administrative unit."

Ukraine lawmakers are considering uniting the country's offensive and defensive military cyber capabilities under a single command within the Armed Forces.

The Dutch ministry of economic affairs said it was making the “highly exceptional” move “following recent and acute signals of serious governance shortcomings” at Nexperia.

Britain's communications regulator took another step in a process that could lead to internet service providers being required to block access to 4chan.

Army Lt. Gen. William Hartman, the acting leader of U.S. Cyber Command and the NSA, will not be nominated to take the job permanently, sources told Recorded Future News.

Prosecutors are seeking a seven-year prison sentence for the Massachusetts man who pleaded guilty to hacking into the education technology company PowerSchool's databases.