Top 5 Cybersecurity News Stories September 25, 2025

Cybersecurity threats are constantly evolving as threat actors seek access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small as we look at threats from espionage to security flaws in everyday devices:

1. Boyd Gaming discloses data breach after suffering a cyberattack

U.S. casino and hotel operator Boyd Gaming Corporation has confirmed a data breach following a cyberattack that compromised its internal systems. The breach exposed personal information related to current and former employees, including names, Social Security numbers, and other sensitive identifiers.

While the company stated that no evidence suggests misuse of the stolen data so far, it is providing impacted individuals with identity protection services. Boyd Gaming has engaged forensic experts and notified law enforcement, emphasizing that its casino operations and customer gaming data remain unaffected. The incident underscores the ongoing cyber risks facing the gaming and hospitality sector.
Read more on BleepingComputer

2. Collins Aerospace working on restoring software for airlines hit by cyberattack

Collins Aerospace, a Raytheon subsidiary, is urgently restoring its MUSE passenger service system after a ransomware attack disrupted airline operations across Europe on September 19, 2025. The MUSE platform, which manages check-in, boarding, and baggage processing, was taken offline, resulting in widespread flight delays and cancellations at major airports including Berlin.

Authorities in the U.K. have arrested a suspect linked to the incident, though investigations remain ongoing. Collins emphasized that no evidence indicates data theft, but airlines experienced operational chaos and reputational strain. The event highlights the aviation industry’s reliance on centralized service providers and the consequences of disruption.
Read more on Reuters

3. Automotive Titan Stellantis Discloses Data Breach

Stellantis, the world’s fourth-largest car manufacturer, has announced a data breach stemming from a third-party vendor handling its North American customer service operations. The incident exposed customer contact details such as names, email addresses, and phone numbers. Stellantis confirmed that no financial or highly sensitive data, including driver’s license or payment information, was affected.

The company has initiated its incident response procedures, informed regulators, and is directly notifying impacted customers. In response, Stellantis is reviewing supplier security practices and reinforcing contractual requirements. This disclosure highlights the growing risks associated with supply-chain dependencies in the automotive industry’s digital ecosystem.
Read more on SecurityWeek

4. Cisco Warns of Actively Exploited SNMP Vulnerability Allowing RCE or DoS in IOS Software

Cisco has issued an urgent advisory for CVE-2025-20352, a high-severity vulnerability affecting its IOS and IOS XE software. The flaw resides in the SNMP subsystem and stems from a stack overflow issue, allowing authenticated attackers to trigger denial-of-service or, in privileged cases, execute arbitrary code. Exploitation requires valid SNMP credentials, with root-level execution demanding elevated access.

Impacted products include various Catalyst switches, routers, and Meraki devices. Cisco confirmed that attackers are actively exploiting the vulnerability in the wild. Administrators are urged to immediately restrict SNMP access, monitor logs for unusual behavior, and upgrade to patched releases.
Read more on The Hacker News

5. Chinese Hackers RedNovember Target Global Governments Using Pantegana and Cobalt Strike

Cybersecurity researchers have linked RedNovember, a suspected Chinese state-sponsored group, to a year-long campaign compromising perimeter devices at government and critical sector organizations worldwide. Active between June 2024 and July 2025, the group exploited edge appliances to gain initial footholds, deploying a custom Go-based backdoor called Pantegana alongside Cobalt Strike for lateral movement and persistence.

Once established, attackers performed reconnaissance, credential harvesting, and staged further operations. Analysts assess that RedNovember aligns with broader Chinese cyber-espionage objectives, using sophisticated tradecraft and blending espionage with cybercrime tactics. Organizations are advised to harden external devices and closely monitor abnormal network activity.
Read more on The Hacker News

At DIESEC, our experts are ready to assist with all your cybersecurity needs. We ensure your system is safe and secure and provide training for your employees to avoid falling victim to social engineering tactics.

For more information, please contact us now!