Cyber Brief: Ivanti, Gladinet and Oracle Breaches

Each day brings fresh cyber challenges and lessons on resilience. In today’s Cyber Brief, we spotlight key incidents from supply-chain, vulnerability and recovery fronts that UK organisations need to know — and act on.

JLR begins phased production restart after cyber disruption

Jaguar Land Rover has confirmed a phased resumption of operations at its engine and battery facilities following a debilitating cyber incident that halted much of its production. Recovery work is underway, but even partial restarts expose complexities in supply chains and systems integration. The restart underscores how deeply cyber impact can ripple outward — affecting supplier contracts, logistics, and partner confidence.
Why it matters: Even when a primary victim recovers, smaller suppliers and linked firms can suffer cascading disruption. Getting ahead with upstream risk assessments is critical.
Source: Reuters

Oracle issues emergency patch for EBS vulnerability (CVE-2025-61882)

Oracle has released an urgent patch to address a zero-day flaw in its E-Business Suite, which was reportedly under real-world exploitation. The vulnerability affects a core enterprise system used across finance, procurement, and operations modules. Despite the urgency of patching, many organisations run versions that lag security updates — increasing their risk surface.
Why it matters: A compromised ERP or finance backbone can grant attackers deep access to sensitive operations and exfiltration paths. Prompt patching and segmentation are essential.
Source: Oracle / Oracle Security Advisory

Redis flaw lays bare thousands of servers to exploit

Security researchers have revealed an aged but dangerous flaw in Redis that leaves ~60,000 servers exposed to remote exploitation. The vulnerability allows attackers to execute commands or manipulate memory in vulnerable instances, especially where default configurations or weak network isolation are used. The disclosure has spurred urgency across tech stacks that rely on Redis for caching, session stores, or data buffering.
Why it matters: Redis is ubiquitous in modern application landscapes. An exposed instance can serve as a springboard into wider infrastructure, especially in microservices or cloud environments.
Source: SecurityWeek / Research disclosures

🔍 Today’s Key Actions

1. Confirm your position in the JLR supply chain; stress-test recovery processes for linked partners.
2. Immediately patch or mitigate CVE-2025-61882 in Oracle EBS environments.
3. Audit Redis usage — restrict access, upgrade to safe versions, enforce network segmentation.
4. Re-evaluate your upstream risk mechanisms (supplier audits, dependency reviews, contractual safeguards).

💬 Secarma Insight

Resilience is as much about anticipation as reaction. Through our ACT Framework — Advise, Certify, Test — Secarma helps organisations close the gap between threat alerts and operational readiness. If any part of today’s brief hits close to home, get in touch and let’s build your next-step roadmap

Get in touch with us to start a conversation about your organisation’s security journey.