UK government tells telecoms to do more to protect customers

Supply chain cyberattacks have escalated to a level that is increasingly unmanageable, posing significant risks to business continuity in the UK. As companies become more interconnected, vulnerabilities within supply chains are exploited, leading to severe operational disruptions.

Experts warn that Microsoft Teams' guest access feature may allow hackers to bypass critical security protections, urging organizations to limit guest invitations to trusted domains only. This vulnerability raises concerns about the security of sensitive information shared within Teams.

Meta has announced that ChatGPT and Copilot will be removed from WhatsApp by 2026, as the company enforces a ban on rival chatbots, compelling users to adopt its own AI chatbot, which has not gained popularity among users. This decision marks a significant shift in the competitive landscape of AI chatbots within messaging platforms.

Zendesk users are currently facing threats from hackers associated with Scattered Lapsus$, who are creating fake support sites to exploit unsuspecting customers. This incident highlights a broader trend of cyberattacks targeting various platforms, including Salesforce.

Kensington & Chelsea, Westminster, and Hammersmith & Fulham councils in London have reported being affected by a cyber incident, raising concerns about the security of local government systems. The nature and extent of the attack have not been fully disclosed, but it has prompted immediate attention from cybersecurity experts.

Asus has issued a warning regarding a critical-severity security flaw affecting multiple firmware versions of its AiCloud routers, prompting users to take immediate action to secure their devices. The vulnerability poses significant risks, as it could potentially be exploited by malicious actors.

Critical vulnerabilities have been identified in Fluent Bit, a widely used log processor, allowing for remote code execution, log manipulation, and authentication bypass across major cloud providers. This poses significant security risks to organizations relying on these services.

OpenAI has issued an apology following a significant data breach involving its partner, Mixpanel, which exposed user emails and other sensitive information. This incident has raised concerns about data security and the potential implications for users of ChatGPT, as it highlights vulnerabilities in the partner's security measures rather than OpenAI's own systems.