Skip to content

Analysis and Reporting

Weekly Report: New Hacking Techniques and Critical CVEs 23 Sep – 29 Sep, 2025

The week of September 22-30, 2025 witnessed a critical escalation in cyber threats, highlighted by the active exploitation of two Cisco ASA firewall zero-day vulnerabilities (CVE-2025-20333 and CVE-2025-20362) by sophisticated state-sponsored actors. The U.S. Cybersecurity and Infrastructure Security Agency issued Emergency Directive ED 25-03, ordering federal agencies to immediately identify and mitigate potential compromises of… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 23 Sep – 29 Sep, 2025

Stellantis Salesforce Data Breach

Date of Incident: 2025-05 Overview: In May 2025, Stellantis experienced a data breach involving unauthorized access to a third-party Salesforce platform used for customer service operations in North America. Attackers stole over 18 million records containing customer contact information, including names and contact details. No financial or sensitive personal information was compromised. The breach was… Read More »Stellantis Salesforce Data Breach

Weekly Report: New Hacking Techniques and Critical CVEs 09 Sep – 15 Sep, 2025

The final week of August was marked by an unprecedented intersection of SaaS, supply chain, and state infrastructure attacks. Standout incidents included the highly technical s1ngularity AI-assisted supply chain compromise of Nx, the widespread theft of Salesforce and Google data via the Salesloft Drift OAuth breach, and ransomware that brought Nevada’s government services to a… Read More »Weekly Report: New Hacking Techniques and Critical CVEs 09 Sep – 15 Sep, 2025

Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 09 Sep – 15 Sep, 2025

Between September 9-15, 2025, three major cybersecurity incidents exemplified persistent and evolving threats against manufacturing, government, and financial services. The Jaguar Land Rover global production shutdown exposed the devastating operational and economic risk from ransomware and supply chain exploitation. INC Ransom’s attack on Panama’s Ministry of Economy and Finance illustrated advanced double extortion tactics impacting… Read More »Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches 09 Sep – 15 Sep, 2025

Jaguar Land Rover Cyberattack 2025

Date of Incident: 2025-09-02 Overview: In September 2025, Jaguar Land Rover experienced a significant cyberattack that disrupted production activities and resulted in data theft. The attackers exploited vulnerabilities in their systems to gain access, using techniques such as valid accounts and public-facing application exploits. They then moved laterally within the network, deploying custom malware for… Read More »Jaguar Land Rover Cyberattack 2025

Use Cases
Technology
About
Partner
Resources

FireCompass – An EC Council Ecosystem Company.
©2025 . All Rights Reserved.