Weekly Recap: Numerous Cisco ASA Firewalls Remain Vulnerable, Hackers Report Red Hat’s GitLab Breach

### A Weekly Digest of Cybersecurity Developments: Insights and Innovations

In the ever-evolving landscape of cybersecurity, last week offered a trove of enlightening news, articles, interviews, and innovations that deserve a closer look. Here’s a breakdown of some of the most pertinent highlights.

#### Protecting the Alarming Vulnerability of Submarine Cables

A report from the Center for Cybersecurity Policy and Law emphasizes the growing vulnerabilities of our submarine cable networks. As geopolitical tensions rise, there’s an urgent need to bolster this critical infrastructure that underpins global communication. This report outlines collaborative strategies for governments and industries to enhance resilience against potential threats.

#### Cyber Risk Quantification for Executive Support

In an insightful interview with Vivien Bilquez, Global Head of Cyber Resilience at Zurich Resilience Solutions, the conversation centered on the strategies Chief Information Security Officers (CISOs) can adopt to ensure their cybersecurity initiatives align with business goals. Bilquez highlights the importance of cyber risk quantification in obtaining executive support, noting several commonly overlooked risks that need more attention.

#### The Dangers Lurking in Open-Source Code

Open-source software dominates our digital landscape, powering everything from browsers to crucial business infrastructure. Yet, its prevalence also creates unseen vulnerabilities. In their ongoing security assessments, industry leaders are increasingly scrutinizing open-source software, as failure to identify these hidden risks can lead to dire consequences.

#### Navigating the Complexity of AI Security Risks

As AI systems become integral to business operations, they bring a suite of unique security challenges. The newly released A2AS framework aims to address prompt injection and other vulnerabilities associated with AI applications. With traditional security measures falling short, this framework focuses on safeguarding AI agents in real time.

#### Advanced Automotive Cybersecurity Strategies

In a recent interview, Robert Sullivan, CIO & CISO at Agero, shared his perspectives on developing comprehensive automotive cybersecurity programs. He delves into the challenges of meeting regulatory requirements while also navigating evolving supply chain risks. Sullivan emphasizes the necessity of integrating AI and emerging technologies into future cybersecurity practices.

#### The Rising Threat of Akira Ransomware

Recent research by Arctic Wolf has unveiled how swiftly the Akira ransomware can infiltrate organizational systems—taking less than four hours from login to encryption. This alarming timeline underscores the necessity for continuous vigilance and robust defenses against such pervasive threats.

#### Western Digital Faces Critical Vulnerability

Western Digital has addressed a significant remote code execution vulnerability (CVE-2025-30247) impacting its My Cloud network-attached storage devices. Users are strongly encouraged to update their firmware immediately to safeguard against potential exploits.

#### CISA Steps Up Amid Funding Concerns

With a cooperative agreement ending, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) signaled its commitment to continue supporting state and local governments in cybersecurity initiatives. This support is vital as federal funding is gradually being phased out, leaving many entities in need of cybersecurity grants and expertise.

#### Innovating Measures Against LOTL Tactics

Bitdefender has introduced defenses against “Living off the Land” (LOTL) tactics that cybercriminals often employ. With hackers constantly evolving their methods, Bitdefender’s approach focuses on identifying and countering malicious activities that masquerade as legitimate operations.

#### Insecure Cisco ASA Firewalls Still Linger

Despite multiple alerts from Cisco about serious zero-day vulnerabilities (CVE-2025-20333 and CVE-2025-20362) in Cisco Adaptive Security Appliances, a staggering 48,000 devices remain unpatched. This oversight poses a critical risk and highlights the importance of timely vulnerability management.

#### Google Drive Enhances Ransomware Protections

Google has rolled out AI-driven ransomware detection tools in Drive for desktop, allowing users to quickly spot and remediate potential damage. This proactive measure aims to bolster file security, especially for users operating on Windows and macOS.

#### North Korea Expands Its Cyber Targets

Long known for targeting tech and cryptocurrency sectors, North Korea has broadened its cyber infiltration efforts to include industries like finance, healthcare, and public administration. This strategic shift necessitates heightened vigilance across a wider array of sectors.

#### Data Breach Threats for Oracle Customers

Oracle customers are facing potential data security threats, as attackers associated with the Cl0p extortion gang are sending emails claiming they have breached sensitive data within organizations’ Oracle E-Business Suite (EBS). Such tactics emphasize the ongoing need for robust threat detection and response mechanisms.

#### Red Hat GitLab Faces Breach

The Crimson Collective, a burgeoning hacker group, claims to have compromised Red Hat’s GitLab, exfiltrating data from over 28,000 repositories. This incident raises alarms over the security of cloud-based repositories and the necessity for stringent access controls.

#### The Dark Side of Generative AI

Attackers are skillfully leveraging generative AI to produce highly convincing spam, malicious code, and phishing content. They are also learning how to exploit the frameworks of AI systems themselves, turning advanced technologies into avenues for compromise.

#### Enhancing Security Operations Centers with LLMs

While LLMs and agentic systems show great potential for automating routine tasks, their current capabilities fall short in high-stakes environments like Security Operations Centers (SOCs). Until these systems can handle complex, high-precision tasks reliably, they will remain supplementary tools rather than full solutions.

#### Time as an Asset in Security Monitoring

Security Information and Event Management (SIEM) systems are praised for their ability to correlate events and issue alerts, but scalability issues often hamper their effectiveness. Organizations are urged to rethink their data storage and retention strategies to better balance visibility and budget constraints.

#### Firezone: Securing Remote Access

Firezone presents an open-source platform designed to enhance secure remote access management. Moving away from conventional VPN models, it employs a least-privileged approach that restricts user access to only what is necessary, enhancing overall security.

#### The Risk of Low-Cost Android Devices

Low-cost Android phones often come with pre-installed apps that have extensive system access. Research indicates that many of these apps can serve as vehicles for malware or unwanted data collection, posing privacy risks for users.

#### The Challenges of Biometric Security

Though touted as a secure authentication method, biometric technologies can be vulnerable to exploitation. Understanding these weaknesses is vital to enhancing security measures around biometric systems.

#### Cyberattacks Targeting the Energy Sector

A report by the Karlsruhe Institute of Technology highlights the intricate connections between geopolitical dynamics and the frequency of cyberattacks on the energy sector. As nations grapple with sustainability and resource management, the energy grid becomes a prime target for digital warfare.

#### Securing Cloud Infrastructure with Chekov

Chekov is an open-source static code analysis tool designed to enhance the security of cloud infrastructure and code. By focusing on infrastructure as code (IaC) and providing software composition analysis, it serves as an essential resource for teams looking to bolster their cloud security.

#### Apple’s Updates to Disk Image Formats

With the release of macOS 26 Tahoe, Apple introduced new disk image formats alongside enhancements to existing ones. These updates are drawing scrutiny from system testers and forensic specialists as they re-evaluate data management strategies.

#### The Risks Associated with Machine Learning Models

Downloading machine learning models carries risks that are often underestimated. This aspect of cybersecurity is critical as organizations increasingly incorporate AI into their operational frameworks without adequately considering the potential vectors for attack.

#### Effective Communication Strategies for CISOs

In a video from Help Net Security, Alisdair Faulkner explores the evolving role of CISOs in communicating cybersecurity strategies to boards. By avoiding overly technical jargon, CISOs can position cybersecurity as a core business enabler.

#### Understanding Third-party Cyber Risks

In another informative video, William Dixon discusses the growing concern surrounding third-party cyber risks. As companies increasingly intertwine their operations, understanding how a single vendor breach could devastate interconnected systems is crucial for maintaining business continuity.

#### AI’s Impact on Workforce Development

An AI Workforce Consortium report sheds light on how artificial intelligence is reshaping Information and Communication Technology (ICT) job roles across G7 economies. With new challenges emerging in security and governance, businesses must adapt their workforce strategies to meet these evolving needs.

#### Underreporting Cyber Incidents

A new report from VikingCloud reveals a troubling trend: security leaders are underreporting cybersecurity incidents to their executives. With the frequency and severity of attacks increasing, this lack of transparency could have serious repercussions.

#### Ransomware’s Leading Role in Cyber Insurance Claims

Ransomware continues to dominate the landscape of cyber insurance claims. The Allianz Cyber Security Resilience 2025 report indicates a shift towards targeting smaller firms, highlighting the urgent need for enhanced security measures across all business sizes.

#### AI Transforming Underwriting Practices

As financial institutions seek faster, more accurate credit decisions, the underwriting process is set for a revolution. A new Experian report predicts that by 2030, AI will play a central role in real-time credit assessments.

#### Biotech Security Shortcomings

The biotech sector has come under scrutiny due to not meeting basic security standards. Researchers found alarming vulnerabilities, such as exposed genomic records and misconfigured APIs, emphasizing the urgency for improved cybersecurity practices.

#### Android Spyware Threats

ESET researchers have uncovered new spyware families, ProSpy and ToSpy, targeting users seeking secure messaging apps. The attackers are using social engineering tactics to lure victims to fake websites, demonstrating the importance of vigilance in app selection.

#### OpenSSL 3.6.0 Features Update

The OpenSSL Project’s latest release, version 3.6.0, introduces significant enhancements and improved standards compliance. Developers and security teams are advised to review the changes thoroughly to ensure effective application.

#### AI Projects Hitting a Wall

Despite increased investments in AI for IT operations, a global survey indicates many projects remain immature. Only 12% of AI initiatives have been fully deployed, signaling a call for more strategic implementation approaches.

#### Rise of Digital Scams

A rising wave of digital scams continues to target unsuspecting Americans, with nearly half of U.S. adults reporting being targeted. The Consumer Cyber Readiness Report highlights the need for heightened awareness and robust preventative measures.

#### Protegrity’s Developer Edition Toolkit

Protegrity Developers Edition offers a free, containerized Python package designed for securing AI pipelines and unstructured data workflows. Dubbed the first of its kind, it aims to streamline data protection without the complexities of enterprise setups.

#### Upcoming Cybersecurity Events

Look out for The BAS Summit 2025, where thought leaders and CISOs will explore AI’s potential in redefining attack simulations and enhancing cyber resilience. This event will showcase the latest advancements in cybersecurity strategies.

#### Cybersecurity Job Opportunities

For those interested in entering or advancing in the cybersecurity field, various positions are currently available. As the demand for skilled professionals remains high, it’s an opportune time to explore available roles.

#### New Infosec Products

Lastly, the week saw exciting new cybersecurity products released from key players like Acronis and Siemens, all geared towards enhancing security measures and addressing emerging threats.

In this fast-paced world of cybersecurity, staying informed and proactive has never been more crucial. The developments from the past week serve as a vital reminder of the importance of resilience and the need for continuous adaptation in our security strategies.