The UK government’s review of aging cybercrime laws lacks “urgency”, according to campaigners. Critics argue the delay undermines essential intelligence sharing between private cybersecurity and law enforcement agencies, with the UK lagging behind other nations in legal protections for legitimate security research. The consultation seeks feedback on law enforcement powers over maliciously deployed domains and IP addresses, and concerns over good-faith security work.

Mandiant warns of attacks on newly-disclosed Ivanti remote takeover threat
Google’s Mandiant team has issued an alert about a remote code execution flaw in the Ivanti Connect Secure VPN platform. The vulnerability, designated CVE-2025-22457, is