Top Tech Headlines for August 29, 2025

Today's cybersecurity and tech landscape is buzzing with updates, from critical Windows patches to marketing industry shifts and alarming zero-day threats. Whether you're an IT pro or just tech-curious, here’s your quickfire rundown of what’s happening.

Windows 11 Update Enhances Task Manager CPU Metrics

Microsoft’s latest KB5064081 update for Windows 11 24H2 brings 36 new features, including improved CPU usage visualization in the Task Manager. This makes it easier than ever for users to spot performance issues at a glance. It also includes updates to the much-discussed Recall feature, continuing Microsoft's focus on usability.

Certificate Enrollment Errors Fixed in Windows 11

If you've been battling confusing cert enrollment issues lately, Microsoft has your back. The pesky CertEnroll error messages following recent preview updates have been squashed — no more false alarms.

WhatsApp Patches Exploited Zero-Day Vulnerability

WhatsApp has released a critical security patch for iOS and macOS users following the discovery of an exploit used in targeted zero-day attacks. If you're chatting on an Apple device, update now to stay secure.

Microsoft to Enforce MFA for Azure in October

Starting this October, all Azure resource management actions will require multi-factor authentication (MFA). It's a proactive step to block unauthorized access, especially for business-critical cloud environments.

No, That Windows Update Didn’t Brick Your SSD

Been hearing rumors about the KB5063878 update nuking SSDs? Microsoft investigated and found no links between the update and reported drive failures. Your storage is (officially) safe — but backups are still a best practice.

AI Marketing Tools Face Trust Issues Despite Widespread Adoption

Although 92% of marketers now use AI, a growing trust crisis might curb the momentum. Consumers are increasingly wary of how their data is being used, putting pressure on brands to stay transparent.

Social Media Central to 2025 Marketing Strategies

AI, podcasts, and short-form content are thriving on platforms like Instagram and TikTok, making social media the cornerstone of digital strategies in 2025. Expect more targeted, AI-driven ad campaigns in your feed.

Programmatic Advertising: The Growth Opportunity Brands Can’t Ignore

Real-time ad bidding is helping businesses unlock new revenue by reaching the right people at the right time. If you're in marketing, overlooking programmatic ads in 2025 could mean falling behind.

Depth Over Doomscrolling: The Rise of Intentional Content

Creators and brands are shifting to “intentional content consumption,” replacing mindless scrolling with meaningful engagement. Think fewer clickbait headlines, more useful stories — and happier followers.

Sitecore Exploit Chain Leads to RCE and Cache Poisoning

Security researchers warned of a vulnerability chain in Sitecore’s platform involving cache poisoning and remote code execution. The flaws could lead to full site compromise if unpatched — updates released in June and July are critical.

Code-to-Cloud Security a 2025 Priority Amid Data Breach Spike

A new report highlights the need for end-to-end app security as 2025 sees rising data breaches and GenAI-related threats. Security teams are leaning on code-to-cloud visibility to tighten defenses.

Amazon Foils APT29’s Device Code Campaign

Amazon Web Services helped disrupt a June watering hole attack by APT29, which abused Microsoft's device code authentication. Around 10% of user traffic was redirected to malicious domains before Amazon intervened.

Abandoned Update Server Hijacked in Taiwan Espionage Campaign

Threat group TAOTH hijacked an abandoned Sogou Zhuyin update server to spy on users in Taiwan. Nearly half of the victims were inside the country, highlighting risks of neglected infrastructure.

Can Your Security Stack Detect ChatGPT?

As GenAI tools like ChatGPT proliferate in workplaces, some security stacks are struggling to keep up. DLP systems are being supplemented by network-based tools like Fidelis NDR to prevent sensitive data leaks.

Click Studios Fixes Passwordstate Authentication Flaw

Click Studios patched an authentication bypass vulnerability in Passwordstate’s emergency access page. The August 28th update also includes clickjacking protection — a must-have fix for 29,000 enterprise customers.

FreePBX Hit by Zero-Day Exploit with CVSS 10.0 Score

A critical zero-day (CVE-2025-57819) is actively being exploited in FreePBX systems, allowing remote code execution without authentication. An emergency patch is now available — apply it immediately if you're impacted.

FBI and Dutch Police Seize $6.4M Fake-ID Marketplace

VerifTools, a major marketplace for fake IDs and KYC bypass tools, was taken offline — but its operators have already relaunched on a new domain. International cybercrime enforcement remains a game of whack-a-mole.

Google Cautions OAuth Breach May Affect More Than Salesforce

Google reports that UNC6395 exploited OAuth tokens linked to Drift, not just Salesforce as previously thought. Between August 8–18, several integrations were compromised, raising alarms for connected platforms.

New Malware ‘TamperedChef’ Disguised as Fake PDF Editors

From late June to August, fake PDF editing software carried TamperedChef malware, harvesting credentials and cookies. Always download tools from verified sources — if it’s too good to be free, it probably isn’t safe.

Want to stay ready for anything? From data recovery to bootable OS installs, our Ultimate USBs have your back. Check out our tools today.