The mobile phone numbers of temporary staff at seven Scottish NHS boards have been exposed online following a security breach at an unnamed third-party supplier. NHS National Services Scotland says the situation was quickly resolved and affected staff will be contacted by their respective NHS Scotland Boards. There was no risk to patient data.

Mandiant warns of attacks on newly-disclosed Ivanti remote takeover threat
Google’s Mandiant team has issued an alert about a remote code execution flaw in the Ivanti Connect Secure VPN platform. The vulnerability, designated CVE-2025-22457, is