This week’s cybersecurity updates reveal a series of notable incidents and vulnerabilities that could impact users and organizations alike.
FBI Seizes RAMP Cybercrime Forum
The U.S. Federal Bureau of Investigation (FBI) has taken action against the RAMP cybercrime forum, a well-known platform for illicit activities. Users attempting to access the forum’s Tor site or its clearnet domain, ramp4u[.]io, are now met with a seizure notice. This operation was conducted in coordination with the U.S. Attorney’s Office for the Southern District of Florida and the Department of Justice’s Computer Crime and Intellectual Property Section. Following the takedown, RAMP’s administrator, Stallman, expressed the significant impact of this event, stating it has destroyed years of work to create a free forum.
WhatsApp Privacy Lawsuit
A new lawsuit against Meta alleges that the company has misrepresented the privacy of WhatsApp communications. The lawsuit claims that Meta can access users’ private messages, contradicting the platform’s claims of end-to-end encryption. Meta has dismissed the lawsuit as frivolous and maintains that WhatsApp cannot read messages due to encryption keys being stored on users’ devices. However, the lawsuit raises questions about the extent of internal access to user communications, suggesting that there may be scenarios where access is granted without sufficient scrutiny.
Security Vulnerabilities in Dormakaba Systems
Over 20 vulnerabilities have been identified in Dormakaba’s physical access control systems, ranging from CVE-2025-59090 to CVE-2025-59109. These flaws could potentially allow unauthorized individuals to open doors remotely at various organizations. The vulnerabilities include issues such as hard-coded credentials, weak passwords, and a lack of proper authentication measures. Although these vulnerabilities are serious, there is currently no evidence that they have been exploited in the wild.
Phishing Campaigns Targeting Job Seekers
A new phishing campaign has emerged, utilizing fake recruitment-themed emails to lure individuals into providing their login credentials. These emails impersonate well-known employers and offer enticing job opportunities. Clicking on links in these messages directs users to fraudulent pages designed to harvest sensitive information. This campaign has been observed targeting users across multiple languages and regions, including the U.S., U.K., France, Italy, and Spain.
As these incidents unfold, they underscore the ongoing challenges in cybersecurity, where familiar platforms and tools are increasingly exploited in unexpected ways.
This article was produced by NeonPulse.today using human and AI-assisted editorial processes, based on publicly available information. Content may be edited for clarity and style.
