Top Tech Headlines for July 28, 2025
Today’s cybersecurity and tech headlines are all about staying ahead of exploits, breaches, and AI breakthroughs. From sensitive data leaks and stealthy malware to major updates in operating systems and AI capabilities, here's a quick rundown of what every privacy-minded user should know this Monday.
Tea App Breach Deepens with Over a Million Private Chats Leaked
The Tea app's data breach just got worse. A second leaked database now exposes over 1.1 million private messages, available to hackers on underground forums. Users are urged to delete the app and monitor for any suspicious activity.
Google Gemini CLI Vulnerability Allowed Silent Code Execution
A flaw in Google's Gemini CLI AI assistant let attackers run stealth commands using trusted applications. This type of exploit is particularly dangerous for developers reliant on secure build workflows. Google has since issued a patch—update immediately if you're affected.
Malware Hidden in Endgame Gear Mouse Config Software
Endgame Gear admitted that its OP1w 4K v2 mouse configuration tool was compromised with malware between June 26 and July 9, hosted directly on their official site. Gamers who downloaded the software during that time should run a full malware scan ASAP.
macOS Sploitlight Flaw Could Leak Apple Intelligence Data
Microsoft researchers have disclosed a now-patched macOS vulnerability named “Sploitlight” that allowed attackers to bypass system protections and access sensitive Apple Intelligence cache data. macOS users should ensure they’re running the latest update to stay protected.
Critical Cisco ISE Bug Gets Fully Weaponized Exploit
Security warns about a live exploit chain for CVE-2025-20281—a severe vulnerability in Cisco's Identity Services Engine. This flaw allows attackers to gain unauthenticated remote code execution and is being actively abused in the wild. Patch your systems immediately if you're a Cisco user.
CISA: Patch PaperCut RCE Bug Now
CISA is flagging a high-risk vulnerability in PaperCut NG/MF printing software that's under active exploitation. The flaw enables CSRF-based remote command execution. If you haven't patched your PaperCut systems yet, this should be a top priority.
Windows 11 22H2 Enters End-of-Life in October
Microsoft is sunsetting support for Windows 11 22H2 on October 14, 2025. This means no more security updates or bug fixes for the affected editions—time to prepare your upgrade or bootable ISO backups now.
OpenAI Preps GPT-5 and a ChatGPT Shopping Feature
OpenAI’s GPT-5 is expected to roll out soon, continuing the rapid advancement in generative AI. The company is also testing a new "ChatGPT Shop" feature, signaling a move toward competing directly with services like Google Shopping.
France’s Naval Group Investigates 1TB Defense Leak
French state defense contractor Naval Group is investigating a cyberattack after 1TB of sensitive data linked to warship construction reportedly appeared on hacking forums. This leak could have serious defense and military implications.
Internet Archive Becomes Official U.S. Federal Depository
The Internet Archive has been designated as a U.S. federal depository library. Citizens now have improved access to archived versions of legislative, judicial, and executive documents through this independent digital library.
Autoswagger Tool Helps Spot API Flaws Before Hackers Do
The free Autoswagger tool by Intruder scans for exposed API documentation and highlights security weaknesses like broken access controls. It’s a must-have tool for any dev team looking to harden their API endpoints before attackers do.
Starlink Outage Disrupts Millions Worldwide
Starlink suffered a major 2.5-hour outage on July 24 due to a software fault, affecting users globally and disrupting Ukrainian military operations. The incident highlights the fragility of network dependencies in high-reliability environments.
Hackers Breach Toptal GitHub, Spread npm Malware
Hackers compromised Toptal’s GitHub and published 10 malicious npm packages, leading to 5,000+ downloads. This breach illustrates ongoing risks to open-source supply chains—developers should review their dependencies immediately.
Email Security Needs an Upgrade
Legacy email filters aren’t catching post-delivery malware in major platforms like Microsoft 365 and Google Workspace. Experts are pushing for tools that mirror endpoint detection response (EDR) strategies to plug the gap.
Ransomware Group Targets VMware ESXi in U.S. Infrastructure
The Scattered Spider ransomware group is exploiting VMware ESXi to target critical U.S. retail and air transport systems. Their attacks emphasize stealth and speed, proving that no sector is off-limits.
Niagara Framework Flaws Threaten Smart Building Security
Critical vulnerabilities in the Niagara Framework put smart buildings and industrial control systems at risk. Misconfigured or unpatched deployments could allow remote takeovers affecting everything from HVAC to lighting and security systems.
Linus Torvalds Warns of Chaotic Linux 6.17 Merge Window
Linux creator Linus Torvalds has cautioned developers that the merge window for Kernel 6.17 could be “chaotic”. Devs should prepare for extra diligence as new features and fixes flood in.
Google Web Guide Could Reshape SEO
Google's AI-powered Web Guide organizes search results by category, providing a new layout for information discovery. Marketers and SEOs should watch this space closely—it may impact how content visibility works in the near future.
Developer Roles Shift in AI-Powered Future
As agentic AI takes over rote tasks, software developers are transitioning into more strategic roles. Tools like Copilot are rewriting what it means to write code—devs need to focus on system design and orchestration now more than ever.
AI's Bigger Challenge: Communication Among Agents
While models like GPT-5 are headline-makers, experts argue that inter-agent communication is AI’s true test. Building agents that can meaningfully interact and collaborate could be AI’s next frontier.
Want to stay ready for anything? From data recovery to bootable OS installs, our Ultimate USBs have your back. Check out our tools today.
```