Cyber security awareness month 2025 has encouraged businesses to focus on their cyber security strategy all year around and there has been a big emphasis on how IT and cyber security is everyone’s responsibility, not just one departments. Following the amid surge in AI-driven threats, critical vulnerabilities and high-profile breaches, this October has only just reinforced further the demand for everyone to take cyber security seriously.
October has been a wake-up call for businesses worldwide, with threat actors exploiting both legacy systems and emerging technologies. Here’s a breakdown of the biggest stories, the lessons they teach and how companies can respond.
Major cyber security events in October
Jaguar Land Rover cyber hack
The UK’s most damaging cyber attack to date happened this October, where Jaguar Land Rover was hit, disrupting operations across 5,000 firms and causing an estimated £1.9 billion in losses. The attack halted production and exposed supply chain vulnerabilities, highlighting the ripple effect of systemic breaches.
Global internet outage via AWS
A fault in Amazon Web Services triggered outages across major platforms including Snapchat, Canva and PlayStation. Experts warned of increased phishing and scam risks during such disruptions.
US Government breach
A critical vulnerability in Citrix NetScaler Gateway allowed attackers to infiltrate FEMA and Border Patrol systems, exposing sensitive employee data.
F5 networks breach
Nation-state actors gained long-term access to F5’s BIG-IP development environment, raising concerns about supply chain attacks and persistent threats.
AI is the double-edged sword
AI is transforming cyber security, raising solutions and concerns.
- AI-powered phishing and deepfakes are now more convincing than ever.
- Autonomous multistage attacks can identify targets, exploit vulnerabilities, and deploy malware without human oversight. [forbes.com]
- AI-driven social engineering is now the top threat for 2026, according to ISACA. [infosecuri…gazine.com]
Yet, AI also strengthens defenses. Microsoft and Sophos are leading the charge with intelligent threat detection and response systems.
Microsoft updates: AI integration
Microsoft’s October Patch Tuesday addressed 172 vulnerabilities, including six zero-days. One of the most urgent was CVE-2025-59287, a flaw in Windows Server Update Service (WSUS) that allowed attackers to push malware disguised as legitimate updates.
“The currently trending WSUS vulnerability is a critical issue that should receive top priority for patching in any environment.”
— Jimi Sebree, Horizon3.ai [yahoo.com]
Microsoft also ended support for Windows 10, urging users to upgrade or enroll in Extended Security Updates to avoid exposure.
Sophos update: threat intelligence
Sophos launched Identity Threat Detection and Response (ITDR), a powerful tool to combat identity-based attacks, now the leading cause of breaches [sophos.com].
“Cloud and remote work have expanded the identity attack surface… Sophos ITDR helps close those gaps.” – Rob Harrison, SVP Product Management, Sophos.
Sophos also reported a 106% increase in stolen credentials on the dark web and emphasised the need for multi-factor authentication (MFA) and proactive threat hunting.
Key actions to take
Patch promptly
Apply all critical updates, especially for WSUS, Citrix, and legacy systems. Unpatched vulnerabilities are the easiest entry points.
Adopt Zero Trust
No user or device should be trusted by default. Implement strict access controls and continuous verification.
Invest in AI-driven defence
Use AI to detect anomalies, automate response and predict threats. Microsoft Sentinel and Sophos XDR are leading solutions.
Secure identity
Monitor for compromised credentials, enforce MFA, and use tools like Sophos ITDR to detect identity-based attacks.
Prepare for supply chain risks
Assess vendor security and ensure incident response plans include third-party breaches.
October 2025 has shown that cyber threats are growing faster than ever, driven by AI, geopolitical tensions and systemic vulnerabilities. Businesses must move beyond reactive security and embrace proactive, intelligent defense strategies.
Cyber security awareness month is not just a campaign; it’s a call to action for businesses.