Daily Security Briefing 024
- DjediTech
- Security , Newsletter
- September 28, 2025
Table of Contents
September 28, 2025 | Read Online
Akira ransomware bypasses MFA on SonicWall VPNs, Harrods data breach exposes customer info, EU investigates SAP’s ERP support practices
Executive Summary
Today’s cybersecurity landscape highlights persistent challenges in multifactor authentication and data protection, as ransomware actors evolve to circumvent MFA on critical VPN devices. Retail sector breaches continue to impact customer privacy, with arrests following major attacks on renowned British stores. Meanwhile, regulatory scrutiny over technology providers’ market behavior intensifies, as the European Commission probes SAP for potential anti-competitive practices. These developments underscore ongoing risks both in cybersecurity defenses and regulatory compliance within IT ecosystems.
Top Articles
Akira ransomware breaching MFA-protected SonicWall VPN accounts
The Akira ransomware group is successfully compromising SonicWall SSL VPN devices despite OTP-based multifactor authentication being enabled. Researchers suspect attackers may be leveraging previously stolen OTP seeds to authenticate, although the exact technique remains unconfirmed. This evolution stresses the need for enhanced VPN security and monitoring to mitigate such sophisticated intrusion methods.
BleepingComputer
British Department Store Harrods Warns Customers That Some Personal Details Taken in Data Breach
Harrods and two other major British retailers recently suffered cyberattacks resulting in compromised customer data. Four suspects were arrested in connection to these incidents, signaling active law enforcement efforts to curb retail cybercrime. Affected customers have been warned about potential exposure of personal information, reinforcing the ongoing threat to consumer data in the retail industry.
SecurityWeek
EU probes SAP over anti-competitive ERP support practices
The European Commission has launched an investigation into SAP regarding allegations of anti-competitive behavior in providing aftermarket support for its on-premise ERP software. The probe could have significant implications for the ERP market and vendor support practices across the EU, reflecting increasing regulatory attention on software monopolies and fair competition.
BleepingComputer
AI Transparency: This newsletter uses AI to curate, rank, and summarize cybersecurity content from leading industry blogs. All articles link directly to original authors. Executive summaries are AI-generated based on article content. I curate the sources and deliver the digest—the original authors deserve the credit for their excellent work.