Top 5 Cybersecurity News Stories September 12, 2025

Cybersecurity threats are constantly evolving as threat actors seek access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small as we look at threats from espionage to security flaws in everyday devices:

1. Critical CVE-2025-5086 in DELMIA Apriso Actively Exploited, CISA Issues Warning

A critical vulnerability (CVE-2025-5086, CVSS 9.0) in Dassault Systèmes’ DELMIA Apriso Manufacturing Operations Management software has been added to the U.S. CISA’s Known Exploited Vulnerabilities catalog following evidence of active exploitation. The flaw stems from deserialization of untrusted data, enabling remote code execution through a malicious Base64-encoded payload.

Attackers are deploying spyware capable of keystroke logging, screenshot capture, and application enumeration. Agencies and enterprises are urged to apply patches before October 2, 2025, to mitigate risk and protect critical manufacturing operations.

Read more on The Hacker News.

2. Jaguar Land Rover shutdown extended after cyber attack

Jaguar Land Rover has extended its production shutdown after a cyberattack disabled key systems, halting operations for at least 12 days. The incident has impacted both manufacturing facilities and the broader supply network, with approximately 6,000 supplier employees temporarily laid off.

Companies such as Evtec, WHS Plastics, SurTec, and OPmobility have been affected. Union leaders and lawmakers warned of severe financial strain on smaller suppliers, calling for government support and the potential introduction of a furlough-style program to safeguard jobs during the disruption.

Read more on Sky News.

3. Plex tells users to reset passwords after new data breach

Plex has disclosed a data breach exposing customer authentication data, including email addresses, usernames, hashed passwords, and related credentials from one of its databases. Although payment information remains unaffected, Plex has urged all users to reset their passwords, enable two-factor authentication, and log out of connected devices to reduce potential risks.

The company has not specified which hashing algorithm was used, raising concerns that some passwords may be susceptible to cracking. Security experts highlight the importance of implementing layered security measures to limit exposure following such incidents.

Read more on BleepingComputer.

4. New HybridPetya Ransomware Bypasses UEFI Secure Boot With CVE-2024-7344 Exploit

Researchers have identified HybridPetya, a new ransomware strain that combines Petya’s destructive capabilities with the ability to bypass UEFI Secure Boot protections through exploitation of CVE-2024-7344. The malware installs a malicious EFI application on the system partition, encrypts the Master File Table of NTFS partitions, and disguises its actions using fake CHKDSK messages.

It operates through both bootkit and installer components, employing out-of-band files and unsigned binaries to evade integrity checks. While no confirmed attacks have been reported, experts warn it signals a growing threat to firmware-level defenses.

Read more on The Hacker News.

5. Samsung patches actively exploited zero-day reported by WhatsApp

Samsung has released urgent security updates for a zero-day vulnerability (CVE-2025-21043) affecting Android 13 and later devices. The flaw, discovered by WhatsApp, lies within the closed-source image processing library libimagecodec.quram.so and allows remote code execution through an out-of-bounds write.

Evidence confirms the vulnerability is being exploited in the wild, potentially impacting multiple messaging apps beyond WhatsApp. Samsung has advised immediate patching to mitigate the risk of compromise. This incident underscores the ongoing risk posed by supply-chain dependencies on proprietary third-party libraries within mobile ecosystems.

Read more on BleepingComputer.

At DIESEC, our experts are ready to assist with all your cybersecurity needs. We ensure your system is safe and secure and provide training for your employees to avoid falling victim to social engineering tactics.

For more information, please contact us now!