Top 5 Cybersecurity News Stories July 11, 2025

Cybersecurity threats are constantly evolving as threat actors seek access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small as we look at threats from espionage to security flaws in everyday devices:

1. CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2025-23916, a critical flaw in Citrix NetScaler ADC and Gateway, to its Known Exploited Vulnerabilities (KEV) catalog. The vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, posing significant threats to federal systems.

CISA mandates federal agencies to apply mitigations by July 23, 2025. This move underscores ongoing threats targeting widely-used enterprise solutions and the urgency of patching critical systems promptly to avoid exploitation.

Read more on The Hacker News

2. Rubio impersonator using AI contacted foreign ministers, cable says

An AI-generated voice impersonating U.S. Senator Marco Rubio was used to contact foreign ministers in a sophisticated deception campaign. The incident, revealed via a diplomatic cable, highlights rising geopolitical threats posed by synthetic media.

While no classified data was compromised, the misuse of AI for impersonation raises serious concerns about the authenticity of communications and potential diplomatic fallout. Governments are increasingly urged to adopt verification protocols to combat AI-driven misinformation.

Read more on Reuters

3. Betfair and Paddy Power issue statement to customers in wake of data leak

Flutter Entertainment’s betting platforms, Betfair and Paddy Power, have issued statements to customers regarding a recent data breach. On July 8, 2025, the company disclosed that an unauthorized third party accessed limited account information, including usernames, email addresses, partial home addresses, and device-related data.

Crucially, no passwords, identification documents, or payment details were compromised. Upon detection, Flutter promptly initiated a comprehensive investigation with cybersecurity experts, terminated the unauthorized access, and informed relevant regulatory authorities. Customers have been assured that no immediate action is required but are advised to remain vigilant against potential phishing attempts.

Read more on ReadWrite

4. PerfektBlue Bluetooth flaws impact Mercedes, Volkswagen, Skoda cars

Newly discovered Bluetooth vulnerabilities, dubbed “PerfektBlue,” affect in-vehicle infotainment systems of Mercedes-Benz, Volkswagen, and Škoda vehicles. Exploitable flaws in Qualcomm and MediaTek chipsets allow attackers within range to compromise systems without user interaction, potentially enabling data exfiltration or unauthorized controls.

While vendors have issued patches, the findings raise concerns about the automotive industry’s supply chain security and the increasing attack surface introduced by connected car technologies.

Read more on BleepingComputer

5. Woman and three teenagers arrested over M&S, Co-op and Harrods cyber attacks

British authorities arrested a woman and three teenagers in connection with recent cyberattacks on high-profile retailers Marks & Spencer, Co-op, and Harrods. The arrests follow a coordinated investigation involving cybercrime units, highlighting the increasing involvement of minors in organized digital crime.

The nature of the attacks and damage caused remain undisclosed, but the case underscores the growing need for cybersecurity education and early intervention to prevent youth radicalization into cybercrime.

Read more on Sky News

At DIESEC, our experts are ready to assist with all your cybersecurity needs. We ensure your system is safe and secure and provide training for your employees to avoid falling victim to social engineering tactics.

For more information, please contact us now!