Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Enterprise DDoS attacks reached critical levels in 2025, with authoritative reports documenting unprecedented attack volumes and sophistication. Global cybercrime costs are projected to reach $10.5 trillion annually by 2025, representing the greatest transfer of economic wealth in history. Selecting the wrong cloud DDoS protection creates operational disruption, compliance violations, and irreversible business damage.

Large language model (LLM) security refers to the strategies and practices that protect the confidentiality, integrity, and availability of AI systems that use large language models. These models, such as OpenAI’s GPT series, are trained on vast datasets and can generate, translate, summarize, and analyze text. However, like any complex software component, LLMs present unique attack surfaces because they can be influenced by the data they process and the prompts they receive from users.

Most Zero Trust Network Access (ZTNA) solutions claim to eliminate perimeter-based security risks, but many actually introduce new vulnerabilities. At the DEF CON hacking conference in August 2025, researchers revealed significant flaws in several popular ZTNA products, including authentication bypasses and credential leakage.

Healthcare has always been one of the toughest environments for maintaining privacy. Now add AI assistants, retrieval-augmented generation, and multimodal inputs like clinical images and voice notes. Sensitive information travels farther and faster than ever before, and the fallout from a single leak can be devastating, affecting clinical, legal, and reputational aspects. The question for 2025 is simple: how do we harness the advantages of AI without compromising private health data?

LimaCharlie is opening its advanced Search feature for beta testing. For current SecOps Cloud Platform users Search brings a SIEM-like experience to their integrated security stack. For those new to LimaCharlie, our SecOps platform centralizes security tooling and third-party resources while providing limitless cloud scaling and native multi-tenancy. We also provide a free rolling year of telemetry storage.

CrowdStrike is tracking a mass exploitation campaign almost certainly leveraging a novel zero-day vulnerability — now tracked as CVE-2025-61882 — targeting Oracle E-Business Suite (EBS) applications for the purposes of data exfiltration. CrowdStrike Intelligence assesses with moderate confidence that GRACEFUL SPIDER is likely involved in this campaign but cannot rule out the possibility that multiple threat actors have exploited CVE-2025-61882.