Researchers Uncover 13-Year-Old Redis Flaw Impacting Nearly 330,000 Instances The bug, tracked as CVE-2025-49844 and nicknamed RediShell, carried a top severity score — 10.0 on the CVSS scale — and affected every Redis release. An attacker with the ability to submit a Lua script — a capability that Redis supports by default — could trigger…
Crimson Collective, cyber criminal gang claims to have stolen nearly 570GB of compressed data across 28,000 internal development respositories, with the company confirming it was a breach of one of its GitLab instances. This data allegedly includes approximately 800 Customer Engagement Reports (CERs), which can contain sensitive information about a customer’s network and platforms. Red…
Britain’s beloved Harrods department store revealed on Sunday that 430,000 customers have been compromised in yet another cyberattack impacting the retailer in 2025 – this time, via one of its third-party vendors. Now, those same ransomware attackers have been reportedly contacting Harrods customers, ever since the retailer publicly declared it would not negotiate. Key takeaways:…
Cyber threat intelligence firm Prodaft provided details on Subtle Snail (UNC1549) is an Iran-nexus espionage group linked to Unyielding Wasp (Tortoiseshell), which is part of the Eclipsed Wasp (Charming Kitten) network. The group has been active since at least June 2022 and recently shifted focus to European telecom, aerospace, and defense organizations. The group’s primary motivation involves infiltrating…
Recently Securitydive spoke to Dipesh Kaura serves as the Country Director for India & SAARC at Securonix. As threat landscape expand so are offerings to secure enterprise. With AI poised as an integral part of cyber threats, organizations have shifted their investments following this trend, with a focus on AI-based defenses against cyberattacks. The demand…
Research from HP Wolf Security has found that cyber attackers are continually refining established tactics in order to evade security measures and deceive users. Living-off-the-land tactics The HP Threat Insights Report describes an increasing trend in the use of “living-off-the-land” (LOTL) techniques, whereby cybercriminals utilise legitimate tools and features within the operating system to carry…
Jaguar Land Rover says a cyber-attack has “severely disrupted” vehicle production as well as its retail operation. The firm, which is owned by India’s Tata Motors, says it took immediate action to lessen the effect of the hack and is working quickly to restart operations. There was no evidence any customer data had been stolen,…
HDFC Bank has invested in QNu Labs, an Indian start-up specialising in quantum-safe cybersecurity solutions. The investment is part of HDFC Bank’s focus on supporting indigenous technology initiatives aimed at enhancing digital security. QNu Labs, founded in 2016 and incubated at IIT Madras Research Park, develops full-stack cybersecurity platforms based on quantum technologies. Its flagship…
Pantherun Technologies was founded by Srinivas Shekar (CEO) and Tiffany Chan (COO). It was officially launched on 25th September 2019 and is headquartered out of Bangalore, with offices in Germany, Taiwan and the United States. Security by design starts at the whiteboard stage & security needs to be part of the first conversation: What sets…
In a sweeping effort conducted between June and August 2025, INTERPOL led Operation Serengeti 2.0 targeting cybercrime networks across Africa. Investigators from 18 African countries alongside the United Kingdom collaborated to combat ransomware, online scams, business email compromise (BEC), and other significant cyber threats noted in INTERPOL’s Africa Cyberthreat Assessment Report. The three-month investigation, launched…
