Patching stories

Microsoft releases 66 new vulnerabilities in November Patch Tuesday, including a critical, exploited zero-day affecting most Microsoft software assets.

Two in five Australian firms faced ransomware attacks last year amid rising AI-driven cyber threats, with many paying ransoms exceeding USD $250,000.

A state-sponsored hack of F5's BIG-IP products risks critical infrastructure globally by exposing industrial control systems to unauthorised access and disruption.

Seventy-three zero-day vulnerabilities were uncovered at Pwn2Own, with winners sharing USD $1 million in prizes for exposing critical cyber flaws.

Rapid7 has added AI-generated risk summaries to its Command Platform, helping security teams speed up prioritisation and remediation of vulnerabilities.

While 94% of Canadian firms feel confident about recovering from ransomware, only 25% have fully restored their data after attacks, reveals OpenText survey.

WatchGuard reports a 40% rise in evasive malware hidden in encrypted traffic, with 70% of threats now using TLS to avoid detection in Q2 2025.

Qualys upgrades its Enterprise TruRisk Management platform with AI-driven identity security, threat prioritisation, and exploit validation to tackle complex cyber risks.

Microsoft releases October Patch Tuesday fixing 172 vulnerabilities, including six zero-days and final security updates for Windows 10 and Office 2016-2019.

Tenable Cloud Security gains IRAP PROTECTED approval, assuring Aussie government use; Microsoft patches 167 flaws, including critical zero-days in October update.

Microsoft will end Windows 10 support on 14 October 2025, urging firms to migrate soon as security updates and technical support will cease.

Hackers linked to CL0P exploited an Oracle E-Business Suite zero-day from July 2025, stealing data and extorting dozens of organisations worldwide.

Ransomware attacks hit a record in Q3 2025 as new alliances broaden targets to sectors like healthcare and critical infrastructure worldwide.

Oracle has issued an urgent patch for a critical flaw in its E-Business Suite, exploited by the Cl0p ransomware group using advanced social engineering tactics.

Over 40% of devices globally, including 38% in Australia, still run Windows 10 as Microsoft support ends in mid-October, raising cybersecurity risks.

Assurix launches a real-time trustmark for MSPs, enabling continuous verification of security and service standards via live operational data integrations.

Acronis True Image 2026 launches with built-in patch management, combining backup and advanced cyber defence for up to five PCs and unlimited mobiles.

Acronis teams up with CyberCert to help Australian MSPs streamline SMB cybersecurity certification via a unified platform meeting SMB1001 standards.

Tenable exposed three critical flaws in Google’s Gemini suite enabling unseen theft of sensitive user data, now patched by Google to prevent exploitation.

Researchers uncovered three critical flaws in Google's Gemini AI that risked sensitive data theft by exploiting AI platform behaviour, now fixed by Google.