Cyber Security Headlines CISA orders feds to patch OIM, Delta Dental incurs breach, Ukraine postal operator systems down
17 snips
Nov 25, 2025 CISA has ordered federal agencies to patch a critical zero-day vulnerability in Oracle's OIM following alarming exploitation activities. Delta Dental suffers a breach, affecting the personal and health data of 146,000 customers. In Ukraine, cyberattacks have severely impacted postal services, leaving systems offline. Amazon's AI agents are on the hunt for software vulnerabilities, while the Shadowray 2.0 malware exploits cloud clusters for cryptomining. Additionally, actionable security advice is emphasized against outdated myths, showcasing the evolving landscape of cybersecurity.
AI Snips
Chapters
Transcript
Episode notes
Urgent Patching For OIM Zero-Day
- Patch critical Oracle Identity Manager (OIM) flaws immediately after vendor fixes are released.
- CISA required federal agencies to remediate the OIM zero-day by December 12th due to active exploitation evidence.
Pre-Patch Scans Signal Immediate Risk
- Logs showed scans targeting OIM dated back to late August, indicating pre-patch weaponization.
- Early scanning activity transforms vendor fixes into emergency, prioritized remediations.
Delta Dental Email Account Breach
- Delta Dental of Virginia disclosed a compromised email account exposed personal and health data for ~146,000 customers.
- The company found the breach April 23rd and is offering one year of identity protection to affected individuals.