WestJet Airlines is investigating a significant cybersecurity breach that has affected its mobile application and internal systems, while ensuring that core flight operations remain secure.
A critical client-side open redirect vulnerability, known as “the Grafana Ghost” (CVE-2025-4123), threatens over 46,000 Grafana instances with account takeover risks, as more than one-third remain unpatched since its discovery in May 2025.
The Anubis ransomware-as-a-service operator combines file encryption with a destructive data-wiping feature, significantly increasing pressure on victims and complicating recovery efforts.
A recent wave of cyber-attacks utilizing the HijackLoader and DeerStealer malware has been identified, employing advanced phishing tactics to compromise victims and extract sensitive data.
Organizations are increasingly focusing on Identity & Access Management (IAM) to combat the rising threat of identity-based attacks, which exploit weak credentials and pose significant risks to data security.
The United Kingdom, led by the National Cyber Security Centre and the Department for Science, Innovation & Technology, is developing global standards to enhance the cybersecurity of AI systems, addressing both emerging and traditional threats.
