9/16/2025 September 16, 2025September 16, 2025 ~ The Cyber Beat ~ Leave a comment A DHS Data Hub Exposed Sensitive Intel to Thousands of Unauthorized UsersKrebs: Self-Replicating Worm Hits 180+ Software PackagesMicrosoft Seizes 340 Websites Linked to Growing Phishing Subscription ServiceWe Set Out to Craft the Perfect Phishing Scam. Major AI Chatbots Were Happy to Help.OpenAI to Predict Ages in Bid to Stop ChatGPT From Discussing Self Harm With KidsWant to Foil an AI Deepfake? Tell It to Draw a Smiley FaceHow to Set Up and Use a Burner PhoneCrowdStrike to Buy AI Security Company PangeaIsraeli Cybersecurity Startup Vega Raises $65 Million, Valued at $400 MillionCybersecurity Provider Netskope Boosts IPO Range as It Tests Tech Hot StreakJaguar Land Rover (JLR) Stuck in Neutral as Losses Skyrocket Amid Cyberattack CleanupFifteen Ransomware Gangs, including Scattered Spider, ShinyHunters and Lapsus$, “Retire,” Future UnclearNew FileFix Variant Delivers StealC Malware Through Multilingual Phishing SiteUK: Tax Refund-Themed Phishing Slows in 2025SlopAds Fraud Ring Exploits 224 Android Apps to Drive 2.3 Billion Daily Ad BidsChaos Mesh Critical GraphQL Flaws Enable RCE and Full Kubernetes Cluster TakeoverApple Backports Fix for CVE-2025-43300 Exploited in Sophisticated Spyware AttackBreachForums Hacking Forum Admin Resentenced to Three Years in PrisonTikTok’s Journey From Global Sensation to Trump Target
9/15/2025 September 15, 2025September 15, 2025 ~ The Cyber Beat ~ Leave a comment Ukraine Claims Cyberattacks on Russian Election Systems; Moscow Confirms DisruptionsNew Zealand Sanctions Russian Military Hackers Over Cyberattacks on UkraineRussia Tests Hypersonic Missile at NATO’s Doorstep—And Shares the VideoMustang Panda Deploys SnakeDisk USB Worm to Deliver Yokai Backdoor on Thailand IPsAI-Forged Military IDs Used in North Korean Phishing AttackGoogle Confirms Hackers Gained Access to Law Enforcement PortalFrance Threatens to Block Crypto Licence ‘Passporting’ in EU Regulatory FightU.S. National Charged in Finnish Psychotherapy Center ExtortionEuropol Adds Spanish Academic Suspected of Aiding Pro-Russian Hackers to Most Wanted ListGucci, Balenciaga and Alexander McQueen Private Data Ransomed by HackersUnion County (NC) Town Government Hacked in Recent Cyber AttackFinWise Insider Breach Impacts 689K American First Finance CustomersSEO Poisoning Targets Chinese Users with Fake Software SitesPhishing Campaigns Drop RMM Tools for Remote AccessNew Phoenix Attack Bypasses Rowhammer Defenses in DDR5 MemoryAI-Powered Villager Pen Testing Tool Hits 11,000 PyPI Downloads Amid Abuse ConcernsMicrosoft: Exchange 2016 and 2019 Reach End of Support in 30 DaysBuilding Highly Resilient IT Infrastructure Throughout the Enterprise From the Start
9/12-14/2025 September 14, 2025September 14, 2025 ~ The Cyber Beat ~ Leave a comment France Warns Apple Users of New Spyware CampaignPhilippine Military Company Spied Upon With New China-Linked MalwareCharlie Kirk Shooting Suspect Tyler Robinson Had ‘Leftist Ideology’ but Motive Unclear, Utah Gov. Says…‘Not Co-Operating’…Alleged Transgender Partner Is Cooperating and Not Believed to be InvolvedInside Our Investigation of Jeffrey Epstein’s Personal Yahoo AccountData Destruction Done Wrong Could Cost Your Company MillionsCompanies Are Competing for Employees With AI Skills. So Are Hackers.Man Gets Over 4 Years in Prison for Selling Unreleased MoviesHacker Convicted of Extorting 20,000 Psychotherapy Victims Walks Free During AppealDHS IG: CISA Mismanaged Multimillion-Dollar Employee Incentives ProgramVietnam Investigates Cyberattack on Creditors DataRansomware Attack Cancels School for Several Days at Uvalde Consolidated Independent School District (TX)Attackers Adopting Novel LOTL Techniques to Evade DetectionNew VoidProxy Phishing Service Targets Microsoft 365, Google Accounts‘WhiteCobra’ Floods VSCode Market with Crypto-Stealing ExtensionsFBI Warns of UNC6040 and UNC6395 Targeting Salesforce Platforms in Data Theft AttacksCritical CVE-2025-5086 in DELMIA Apriso Actively Exploited, CISA Issues WarningNew HybridPetya Ransomware Bypasses UEFI Secure Boot With CVE-2024-7344 ExploitSamsung Fixes Critical Zero-Day CVE-2025-21043 Exploited in Android AttacksCISA Official Calls on Lawmakers to Immediately Extend Cyber Info-Sharing Law
9/11/2025 September 12, 2025September 12, 2025 ~ The Cyber Beat ~ Leave a comment Chinese APT Actor Compromises Military Firm with Novel Fileless Malware ToolsetHow China’s Propaganda and Surveillance Systems Really OperateDidi Global’s $740 Million IPO Settlement Likely Ready Next Month, Plaintiffs’ Lawyer SaysKrebs: Bulletproof Host Stark Industries Evades EU SanctionsFour Years After Kaseya’s Nightmare Hack, a Cyber Turnaround Is UnderwaySwiss Government Looks to Undercut Privacy Tech, Stoking Fears of Mass SurveillanceFTC Opens Inquiry Into How AI Chatbots Impact Child Safety, PrivacyCyberattacks Against Schools Driven by a Rise in Student Hackers, ICO WarnsCalifornia Legislature Passes Bill Forcing Web Browsers to Let Consumers Automatically Opt Out of Data SharingFrance: Three Regional Healthcare Agencies Targeted by Cyber-AttacksPanama Ministry of Economy Discloses Breach Claimed by INC RansomwareDDoS Defender Targeted in 1.5 Bpps Denial-of-Service AttackFileless Malware Deploys Advanced RAT AsyncRAT via Legitimate ToolsFake Madgicx Plus and SocialMetrics Extensions Are Hijacking Meta Business AccountsNew VMScape Attack Breaks Guest-Host Isolation on AMD, Intel CPUsSonicWall SSL VPN Flaw and Misconfigurations Actively Exploited by Akira Ransomware HackersCISA Launches Roadmap for the CVE ProgramApple Warns Customers Targeted in Recent Spyware AttacksMicrosoft Adds Malicious Link Warnings to Teams Private Chats
9/10/2025 September 10, 2025September 10, 2025 ~ The Cyber Beat ~ Leave a comment China-Linked APT41 Hackers Target U.S. Trade Officials Amid 2025 NegotiationsPoland Downs Drones in Its Airspace, Becoming First NATO Member to Fire During War in UkraineU.S. Warns Hidden Radios May Be Embedded in Solar-Powered Highway InfrastructureU.S. Investment in Spyware Is SkyrocketingApple Says the iPhone 17 Comes With a Massive Security UpgradeU.S. Senator Wyden Pushes FTC to Investigate Microsoft for ‘Gross Cybersecurity Negligence’Ransomware Payments Plummet in Education Amid Enhanced ResiliencyChinese Companies and Bosses to Face Major Fines Over Cybersecurity IncidentsNepal Lifts Social Media Ban After Deadly Youth ProtestsUkraine’s Ousted Cyber Chief Posts Bail in Corruption CaseOracle, OpenAI Sign Massive $300 Billion Cloud Computing DealKillSec Ransomware Hits Brazilian Healthcare IT VendorJaguar Land Rover Admits Hackers May Have Taken DataFlu Jab Email Mishap Exposes Hundreds of Students’ Personal DataResearchers Find Spyware on Phones Belonging to Kenyan FilmmakersEuropean Crypto Platform Swissborg to Reimburse Users After $41 Million TheftHackers Left Empty-Handed After Massive NPM Supply-Chain AttackCHILLYHELL macOS Backdoor and ZynorRAT RAT Threaten macOS, Windows, and Linux SystemsCursor Autorun Flaw Lets Repositories Execute Code Without ConsentKrebs: Microsoft Patch Tuesday, September 2025 Edition…EoP Flaws Again Lead Microsoft Patch TuesdayMicrosoft Waives Fees for Windows Devs Publishing to Microsoft StorePixel 10 Fights AI Fakes With New Android Photo Verification Tech
9/9/2025 September 9, 2025September 9, 2025 ~ The Cyber Beat ~ Leave a comment House Lawmakers to Make Official Visit to China for the First Time Since 2019Massive Leak Shows How a Chinese Company Is Exporting the Great Firewall to the WorldNew Cybersecurity Rules Land for Defense Department ContractorsDefense Dept Didn’t Protect Social Media Accounts, Left Stream Keys Out in PublicCyber Command, NSA to Remain Under Single Leader as Officials Shelve Plan to End ‘Dual Hat’New Cyber Director Cairncross Calls on Industry to Help Put ‘America First’ in CyberspaceKrebs: 18 Popular Code Packages Hacked, Rigged to Steal CryptoClaude’s New AI File Creation Feature Ships With Deep Security Risks Built InA New Platform Offers Privacy Tools to Millions of Public ServantsFormer WhatsApp Security Boss in Lawsuit Likens Meta’s Culture to a “Cult”Mitsubishi Electric to Buy Nozomi Networks in $1 Billion DealU.S. Charges Admin of LockerGoga, MegaCortex, Nefilim RansomwareKosovo Hacker Pleads Guilty to Running BlackDB Cybercrime MarketplacePlex Tells Users to Reset Passwords After New Data BreachNew York Blood Center Says Thousands Had Data Leaked in January Ransomware AttackNo Gains, Just Pains as 1.6m HelloGym Fitness Phone Call Recordings Exposed OnlineBrazil Lesbian Dating App Sapphos Shuts Down After Security Flaw Exposes Sensitive User DataSalty2FA Phishing Kit Unveils New Level of SophisticationThreat Actor Accidentally Exposes AI-Powered OperationsTOR-Based Cryptojacking Attack Expands Through Misconfigured Docker APIsRatOn Android Malware Detected With NFC Relay and ATS Banking Fraud CapabilitiesAdobe Patches Critical SessionReaper Flaw in Magento eCommerce PlatformSAP Fixes Maximum Severity NetWeaver Command Execution FlawMicrosoft September 2025 Patch Tuesday Fixes 81 Flaws, Two Zero-DaysWindows 10 KB5065429 Update Includes 14 Changes and FixesMicrosoft: Anti-Spam Bug Blocks Links in Exchange Online, Teams
9/8/2025 September 8, 2025September 8, 2025 ~ The Cyber Beat ~ Leave a comment Salt Typhoon Used Dozens of Domains, Going Back Five Years. Did You Visit One?Update: Noisy Bear Campaign Targeting Kazakhstan Energy Sector Outed as a Planned Phishing TestRemote Access Abuse Biggest Pre-Ransomware IndicatorSilicon Valley’s Graying Workforce: Gen Z Staff Cut in Half at Tech Companies as the Average Age Goes up by 5 YearsSoFi Launches New AI-Themed ETF as Skepticism GrowsCyberattack on Jaguar Land Rover Threatens to Hit British Economic GrowthThe U.S. Government Has No Idea How Many Cybersecurity Pros It EmploysSports Streaming Piracy Service With 123M Yearly Visits Shut DownU.S. Sanctions Companies Behind Cyber Scam Centers in Cambodia, MyanmarNepal Social Media Ban Sparks Protests, Dozens InjuredQualys, Tenable Latest Victims of Salesloft Drift Hack…GitHub Account Compromise Led to Salesloft Drift Breach Affecting 22 CompaniesGhostAction Supply Chain Attack Compromises 3000+ SecretsWealthsimple Confirms Data Breach After Supply Chain AttackLovesac Confirms Data Breach After Ransomware Attack ClaimsVC Giant Insight Partners Notifies Staff and Limited Partners After Data BreachMostereRAT Targets Windows Users With Stealth TacticsHackers Hijack npm Packages With 2 Billion Weekly Downloads in Supply Chain AttackSurge in Networks Scans Targeting Cisco ASA Devices Raise ConcernsThe Critical Failure in Vulnerability ManagementSignal Adds Secure Cloud Backups to Save and Restore Chats
9/5-7/2025 September 7, 2025September 7, 2025 ~ The Cyber Beat ~ Leave a comment Chinese Hackers Pretended to Be a Top U.S. Lawmaker During Trade TalksU.S. Says It Is Restricting Visas of Some Central American Nationals Over China TiesU.S. Is Increasingly Exposed to Chinese Election Threats, Lawmakers SayNoisy Bear Targets Kazakhstan Energy Sector With BarrelFire Phishing CampaignUkraine’s Cyber Chief on Russian Hackers’ Shifting Tactics, U.S. Cyber AidKrebs: GOP Cries Censorship Over Spam Filters That WorkQantas Penalizes Executives for July CyberattackRoblox to Verify Ages of All Gamers Who Use Chat and Text FeaturesEmbracing the Next Generation of Cybersecurity TalentWhy Threat Hunting Should Be Part of Every Security ProgramCISA Orders Federal Agencies to Patch Sitecore Zero-Day Following Hacking ReportsSchool District Five of Lexington & Richland Counties (SC) Data Breach Affects 31,000 PeopleNavy Federal Credit Union Data Breach Exposes Backup Files on Credit Union Serving Military MembersData Breach at American Credit Union Exposes Financial Data‘SEO Fraud-As-A-Service’ Scheme Hijacks Windows Servers to Promote Gambling WebsitesTAG-150 Develops CastleRAT in Python and C, Expanding CastleLoader Malware OperationsVirusTotal Finds 44 Undetected SVG Files Used to Deploy Base64-Encoded Phishing PagesiCloud Calendar Abused to Send Phishing Emails from Apple’s ServersmacOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple SecurityMalicious npm Packages Impersonate Flashbots, Steal Ethereum Wallet KeysSAP S/4HANA Critical Vulnerability CVE-2025-42957 Exploited in the Wild
9/4/2025 September 5, 2025September 5, 2025 ~ The Cyber Beat ~ Leave a comment How North Korean Hackers Are Using Fake Job Offers to Steal Cryptocurrency‘Unrestrained’ Chinese Cyberattackers May Have Stolen Data From Almost Every AmericanCzech Cyber Agency Warns Against Using Services and Products That Send Data to ChinaGhostRedirector Emerges as New China-Aligned Threat ActorU.S. Says It Is Restricting Visas of Some Central American Nationals Over China TiesU.S. and 14 Allies Release Joint Guidance on Software Bill of MaterialsBritain Rules Out Backing for Global Defence BankGoogle Fined $379 Million by French Regulator for Cookie Consent ViolationsTexas Sues PowerSchool Over Breach Exposing 62M Students, 880K TexansUkraine’s Cyber Chief on Russian Hackers’ Shifting Tactics, U.S. Cyber AidBlast Radius of Salesloft Drift Attacks Remains UncertainChess.com Discloses Recent Data Breach via File Transfer AppTire Giant Bridgestone Confirms Cyberattack Impacts ManufacturingDelivery Giant OnTrac Data Breach Exposes 40,000 Personal RecordsAttackers Snooping Around Sitecore, Dropping Malware via Public Sample KeysCMS Provider Sitecore Patches Exploited Critical Zero DayCISA Flags TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377 as Actively ExploitedMicrosoft Says Recent Windows Updates Cause App Install IssuesEuropean Court Rejects Challenge to EU-U.S. Data Transfer Agreement
9/3/2025 September 3, 2025September 3, 2025 ~ The Cyber Beat ~ Leave a comment Russian APT28 Expands Arsenal with ‘NotDoor’ Outlook BackdoorU.S. Offers $10 Million Bounty for Info on Russian FSB HackersVenezuela’s President Thinks American Spies Can’t Hack Huawei PhonesIranian Hackers Exploit 100+ Embassy Email Accounts in Global Phishing Targeting DiplomatsAutomated Sextortion Spyware Takes Webcam Pics of Victims Watching PornIt Looks Like You’re Ransoming Data. Would You Like Some Help?How Passkeys Work—And How to Use ThemFinland’s IQM Quantum Computers Raises $320 Million in New Funding RoundIsrael’s Cato Networks Buys Aim Security, Raises Another $50 MillionMore Personal Injury Lawyers Are Chasing Data-Breach SettlementsPolice Disrupts Streameast, Largest Pirated Sports Streaming NetworkU.S. Sues Robot Toy Maker Apitor Technology for Exposing Children’s Data to Chinese DevsSalesloft Takes Drift Offline After OAuth Token Theft Hits Hundreds of OrganizationsSaaS Giant Workiva Discloses Data Breach After Salesforce AttackM&S Hackers ‘Scattered Lapsus$ Hunters’ Claim to Be Behind Jaguar Land Rover Cyber AttackMatrix.org Homeserver Grinds to a Halt After Raid MeltdownHackers Breach Fintech Firm Sinqia S.A. in Attempted $130M Bank HeistThreat Actors Abuse X’s Grok AI to Spread Malicious LinksMalicious npm Packages Exploit Ethereum Smart Contracts to Target Crypto DevelopersMajor IPTV Piracy Network Uncovered Spanning 1100 DomainsThreat Actors Weaponize HexStrike AI to Exploit Citrix Flaws Within a Week of DisclosureAndroid Security Alert: Google Patches 120 Flaws, Including Two Zero-Days Under AttackWith Less Than a Month to Go, House Panel Votes to Extend Popular Cyber ProgramsCorruption Case Against Ousted Cyber Chief Is ‘Revenge,’ Ukraine’s Security Service Says
9/2/2025 September 2, 2025September 2, 2025 ~ The Cyber Beat ~ Leave a comment Lazarus Group Expands Malware Arsenal With PondRAT, ThemeForestRAT, and RemotePEMoscow Reportedly Hires Hackers Who Breached City’s School SystemUkrainian Network FDN3 Launches Massive Brute-Force Attacks on SSL VPN and RDP DevicesICE Reinstates Contract with Spyware Vendor ParagonWho Watches the Watchmen? Surveillanceware Firms Make Bank, Avoid OversightDisney Agrees to $10 Million Settlement for Collecting Data From ChildrenThat Supposed ‘Gmail Hack’: Google Says It’s False, but Watch Out for Phishing AnywayFBI, Cybersecurity Experts Warn of 3-Phase Scam That Is Draining Bank AccountsAI Chatbot Users Beware – Hackers Are Now Hiding Malware in the Images Served up by LLMsKrebs: The Ongoing Fallout from a Breach at AI Chatbot Maker SalesloftStolen OAuth Tokens Expose Palo Alto Customer DataCloudflare Hit by Data Breach in Salesloft Drift Supply Chain AttackCloudflare Blocks Largest Recorded DDoS Attack Peaking at 11.5 TbpsBritain’s Jaguar Land Rover Hit by Cyber Incident That Disrupts Production, SalesPennsylvania AG Says Recovery Continues After Office Refused to Pay Ransomware GangAzure AD Credentials Exposed in Public App Settings FileMalicious npm Package nodejs-smtp Mimics Nodemailer, Targets Atomic and Exodus WalletsResearchers Warn of MystRodX Backdoor Using DNS and ICMP Triggers for Stealthy ControlHackers Are Sophisticated & Impatient — That Can Be Good
9/1/2025 September 1, 2025September 2, 2025 ~ The Cyber Beat ~ Leave a comment Silver Fox APT Exploits Signed Drivers to Deploy ValleyRAT BackdoorChina Is About to Show Off Its New High-Tech Weapons to the WorldNorth Korea’s Kim Inspects New Missile Production Line, KCNA SaysGoogle: Gmail’s Protections Are Strong and Effective, and Claims of a Major Gmail Security Warning Are FalseSpanish Government Cancels €10M Contract Using Huawei EquipmentLegalPwn: Tricking LLMs by Burying Badness in Lawyerly Fine PrintZscaler Data Breach Exposes Customer Info After Salesloft Drift CompromiseRansomware Attack on Pennsylvania’s AG Office Disrupts Court CasesAndroid Droppers Now Deliver SMS Stealers and Spyware, Not Just Banking TrojansHigh-Risk SQLi Flaw Exposes WordPress Memberships Plugin UsersDDoS Is the Neglected Cybercrime That’s Getting Bigger. Let’s Kill It OffProof-of-Concept in 15 Minutes? AI Turbocharges Exploitation
8/29-31/2025 August 31, 2025August 31, 2025 ~ The Cyber Beat ~ Leave a comment Abandoned Sogou Zhuyin Update Server Hijacked, Weaponized in Taiwan Espionage CampaignNorth Korean APT37 Hackers Weaponize Seoul Intelligence Files to Target South KoreansAmazon Disrupts APT29 Watering Hole Campaign Abusing Microsoft Device Code AuthenticationState-Sponsored Hackers Behind Majority of Vulnerability ExploitsAkira, Cl0p Top List of 5 Most Active Ransomware-as-a-Service GroupsRansomware Gang Takedowns Causing Explosion of New, Smaller GroupsSSA Whistleblower’s Resignation Email Mysteriously Disappeared From InboxesA Troubled Man, His Chatbot and a Murder-Suicide in Old GreenwichOpenAI is Testing “Thinking Effort” for ChatGPTThere’s Something Bizarre About When GPT-5 Writes in a Literary StyleScammer Steals $1.5 Million From Baltimore by Spoofing City VendorTamperedChef Malware Disguised as Fake PDF Editors Steals Credentials and CookiesBrokewell Android Malware Delivered Through Fake TradingView AdsAttackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 TunnelingNpm Package Hijacked to Steal Data and Crypto via AI-Powered MalwareFreePBX Servers Targeted by Zero-Day Flaw, Emergency Patch Now AvailableWhatsApp Patches Zero-Click Exploit Targeting iOS and macOS DevicesResearcher Who Found McDonald’s Free-Food Hack Turns Her Attention to Chinese Restaurant RobotsMicrosoft to Enforce MFA for Azure Resource Management in OctoberNoem Fires Two Dozen FEMA Employees Over Alleged Cybersecurity Gaps
8/28/2025 August 29, 2025August 29, 2025 ~ The Cyber Beat ~ Leave a comment Netherlands Confirms China’s Salt Typhoon Targeted Small Dutch TelcosSalt Typhoon Exploits Cisco, Ivanti, Palo Alto Flaws to Breach 600 Organizations WorldwideFBI Cyber Cop: Salt Typhoon Pwned ‘Nearly Every American’Germany Charges Man Over Cyberattack on Rosneft SubsidiaryLawmakers Press UnitedHealth on Hack Loan RepaymentsPolice Seize VerifTools Fake ID Marketplace Servers, DomainsCrypto Companies Freeze $47m in Romance Baiting FundsKrebs: Affiliates Flock to ‘Soulless’ Scam Gambling MachineMalware Devs Abuse Anthropic’s Claude AI to Build RansomwareSentinelOne Raises Annual Revenue Forecast on Strong Cybersecurity DemandTransUnion Suffers Data Breach Impacting Over 4.4 Million PeopleMATLAB Dev Says Ransomware Gang Stole Data of 10,000 PeopleCyber-Attack on UK Contractor Affects IslandersCISA Steps in to Help Nevada State Government Recover From CyberattackGoogle Warns Salesloft Breach Impacted Some Workspace AccountsFake IT Support Attacks Hit Microsoft TeamsMicrosoft Warns of Ransomware Gang Shifting to Steal Cloud Data, Lock Companies Out of SystemsMalicious Nx Packages in ‘s1ngularity’ Attack Leaked 2,349 GitHub, Cloud, and AI CredentialsMalicious VS Code Extensions Exploit Name Reuse LoopholePasswordstate Dev Urges Users to Patch Auth Bypass Vulnerability
8/27/2025 August 28, 2025August 29, 2025 ~ The Cyber Beat ~ Leave a comment Global Salt Typhoon Hacking Campaigns Linked to Chinese Tech FirmsU.S. Sanctions Russian National and Chinese Company Over North Korean IT Worker SchemesShadowSilk Hits 35 Organizations in Central Asia and APAC Using Telegram BotsBlind Eagle’s Five Clusters Target Colombia Using RATs, Phishing Lures, and Dynamic DNS InfraFinnish Police Wiretap Reveals Russian ‘Shadow Fleet’ Captain Instructed to Destroy EvidenceAll NATO Members Hit Old Spending Target, Only Three Meet New GoalThis Is the Group That’s Been Swatting U.S. UniversitiesChatGPT Hates LA Chargers Fans‘Vibe-Hacking’ Is Now a Top AI ThreatWe’re Upgrading Crowdstrike Despite a Post-earnings Stock DropIT System Supplier Miljödata Cyberattack Impacts 200 Municipalities in SwedenHealthcare Services Group (HSGI) Data Breach Impacts 624,000 PeopleGreenville (TX) Restoring Services After Cyber AttackStorm-0501 Exploits Entra ID to Exfiltrate and Delete Azure Data in Hybrid Cloud AttacksNew Phishing Campaign Abuses ConnectWise ScreenConnect to Take Over DevicesFreePBX Servers Hacked via Zero-Day, Emergency Fix ReleasedOver 28,000 Citrix Devices Vulnerable to New Exploited RCE FlawLicense-Plate Reader Company Flock Safety Pauses Work With Federal Agencies After BacklashSpanish Police Arrest Student Suspected of Hacking School System to Change Grades
8/26/2025 August 26, 2025August 26, 2025 ~ The Cyber Beat ~ Leave a comment Silk Typhoon Hackers Hijack Network Captive Portals in Diplomat AttacksGovernments, Tech Companies Meet in Tokyo to Share Tips on Fighting North Korea IT Worker SchemeSurge in Coordinated Scans Targets Microsoft RDP Auth ServersNew Sni5Gect Attack Crashes Phones and Downgrades 5G to 4G without Rogue Base StationFirst AI-Powered Ransomware Spotted, but It’s Not Active – YetKrebs: DSLRoot, Proxies, and the Threat of ‘Legal Botnets’DOGE Accused of Duplicating Critical Social Security Database on Unsecured CloudGoogle to Verify All Android Devs to Block Malware on Google PlayOkta Raises Forecast as CEO Says Economic Conditions Were ‘Better Than We Thought’Nevada State Offices Close After Wide-Ranging ‘Network Security Incident’Nissan Confirms Design Studio Data Breach Claimed by Qilin RansomwareSalesloft Breached to Steal OAuth Tokens for Salesforce Data-Theft AttacksNew Android Trojan Variant Hook Expands with Ransomware TacticsShadowCaptcha Exploits WordPress Sites to Spread Ransomware, Info Stealers, and Crypto MinersMixShell Malware Delivered via Contact Forms Targets U.S. Supply Chain ManufacturersCitrix Patches Three NetScaler Flaws, Confirms Active Exploitation of CVE-2025-7775CISA Adds Three Exploited Vulnerabilities to KEV Catalog Affecting Citrix and Git
8/25/2025 August 25, 2025 ~ The Cyber Beat ~ Leave a comment UNC6384 Deploys PlugX via Captive Portal Hijacks and Valid Certificates Targeting DiplomatsTransparent Tribe Targets Indian Gov’t With Weaponized Desktop Shortcuts via PhishingThe Mysterious Shortwave Radio Station Stoking U.S.-Russia Nuclear FearsU.S. Senator Calls for Independent Review of Federal Judiciary CybersecurityEmail Security for Attorneys and Law Firms (And Anyone Else)Australian University Used Wi-Fi Location Data to Identify Student ProtestorsAWS, Cloudflare, Digital Ocean, and Google Helped Feds Investigate Alleged Rapper Bot DDoS PerpSouth Korea Arrests Suspected Chinese Hacker Accused of Targeting BTS Singer and Other CelebritiesRussia Weighs Google Meet Ban as Part of Foreign Tech CrackdownFarmers Insurance Data Breach Impacts 1.1m People After Salesforce AttackMaryland Transit Administration Investigating Cyberattack Impacting Transit Service for Disabled PeopleAuchan Retailer Data Breach Impacts Hundreds of Thousands of CustomersNew AI Attack Hides Data-Theft Prompts in Downscaled ImagesPhishing Campaign Uses UpCrypter in Fake Voicemail Emails to Deliver RAT PayloadsMalicious Android Apps With 19M Installs Removed From Google PlayDocker Fixes CVE-2025-9074, Critical Container Escape Vulnerability With CVSS Score 9.3Securing the Cloud in an Age of Escalating Cyber ThreatsCISA Seeks Biden Era’s SBOM Minimum Requirements Guideline Change
8/22-24/2025 August 24, 2025September 17, 2025 ~ The Cyber Beat ~ Leave a comment Chinese Hackers Murky, Genesis, and Glacial Panda Escalate Cloud and Telecom EspionageAPT36 Hackers Abuse Linux .Desktop Files to Install Malware in New AttacksMy Ex Stalked Me, so I Joined a ‘Dating Safety’ App. Then My Address Was LeakedWaymo Granted First Permit to Begin Testing Autonomous Vehicles in New York CityCoinbase CEO Says He’s Mandating In-Person Orientation to Combat North Korean Hackers Seeking Remote JobsCybersecurity Firm Netskope Files to Go Public on the NasdaqFive Point-Backed WaterBridge Files for U.S. IPO as Listings Market Heats UpFTC Warns Tech Giants Not to Bow to Foreign Pressure on EncryptionInterpol-Led African Cybercrime Crackdown Leads to 1209 ArrestsChinese National Who Sabotaged Ohio Company’s Systems Handed Four-Year Jail StintElectronics Manufacturer Data I/O Reports Ransomware Attack to SECNew Android Malware Poses as Antivirus From Russian Intelligence AgencyFake Mac Fixes Trick Users Into Installing New Shamos InfostealerAttackers Abuse Virtual Private Servers to Compromise SaaS AccountsLinux Malware Delivered via Malicious RAR Filenames Evades Antivirus DetectionMalicious Go Module Poses as SSH Brute-Force Tool, Steals Credentials via Telegram BotGeoServer Exploits, PolarEdge, and Gayfemboy Push Cybercrime Beyond Traditional BotnetsCISA Warns of Apple Zero-Day Used in Targeted CyberattacksBug Bounties: The Good, the Bad, and the Frankly Ridiculous Ways to Do ItApple Intelligence Is Picking Up More User Data Than Expected, Researcher FindsMicrosoft to Make All Products Quantum Safe by 2033
8/21/2025 August 22, 2025August 22, 2025 ~ The Cyber Beat ~ Leave a comment Europe’s Ransomware Surge Is a Warning Shot for US DefendersEuropol Confirms $50,000 Qilin Ransomware Reward Is FakeKrebs: SIM-Swapper, Scattered Spider Hacker, Florida Man Gets 10 YearsDeveloper Jailed for Taking Down Employer’s Network With Kill Switch MalwareDoes Cybersecurity Awareness Training Deliver Any Value?Ransomware Attack at Davita Impacted 2.7 Million People, U.S. Health Dept Website ShowsColt Confirms Customer Data Stolen as Warlock Ransomware Auctions FilesHackers Using New QuirkyLoader Malware to Spread Agent Tesla, AsyncRAT and Snake KeyloggerCybercriminals Deploy CORNFLAKE.V3 Backdoor via ClickFix Tactic and Fake CAPTCHA Pages
8/20/2025 August 20, 2025August 20, 2025 ~ The Cyber Beat ~ Leave a comment FBI Warns FSB-Linked Hackers Static Tundra Exploiting Unpatched Cisco Devices for Cyber EspionageRussian Investment Platform Confirms Cyberattack by Pro-Ukraine HackersAustralian Banking Regulator Warns Geopolitical Tensions Could Lead to More Cyber AttacksBritain Targets Kyrgyz Crypto Networks Aiding Kremlin With SanctionsMicrosoft Scales Back Chinese Access to Cyber Early Warning SystemPhone Searches at the U.S. Border Hit a Record HighNew Zero-Day Startup Advanced Security Solutions Offers $20 Million for Tools That Can Hack Any SmartphoneErasing Personal Data From the Devices You Discard Is a Booming BusinessTRM Launches Industry-Wide Platform to Fight Crypto CrimesAI Website Builder Lovable Increasingly Abused for Malicious ActivityPerplexity’s Comet AI Browser Tricked Into Buying Fake Items OnlineMajor Belgian Telecom Firm Orange Belgium Says Cyberattack Compromised Data on 850,000 AccountsAt Least Three UK Organizations Hit by SharePoint Zero-Day Hacking CampaignWarlock Ransomware Hitting Victims Globally Through SharePoint ToolShell ExploitHackers Weaponize QR Codes in New ‘Quishing’ AttacksMule Operators in META Adopt Advanced Fraud SchemesHackers Steal Microsoft Logins Using Legitimate ADFS RedirectsDOM-Based Extension Clickjacking Exposes Popular Password Managers to Credential and Data TheftExperts Find AI Browsers Can Be Tricked by PromptFix Exploit to Run Malicious Hidden PromptsCommvault Releases Patches for Two Nasty Bug Chains After Exploits ProvenApple Fixes New Zero-Day Flaw Exploited in Targeted AttacksAmazon Quietly Fixed Q Developer Flaws That Made AI Agent Vulnerable to Prompt Injection, RCE
8/19/2025 August 19, 2025August 19, 2025 ~ The Cyber Beat ~ Leave a comment Canadian Financial Regulator Hacked, Exposing Personal Data from Member OrganizationsAttacker “Patches” Vulnerability Post Exploitation to Lock Out CompetitionElastic Rejects Claims of a Zero-Day RCE Flaw in Defend EDRUK Drops Demand for Backdoor Into Apple Encryption…U.S. Spy Chief Gabbard Says UK Agreed to Drop ‘Backdoor’ Mandate for AppleSouth Yorkshire Police Deletes 96,000 Pieces of Digital Evidence493 Cases of Sextortion Against Children Linked to Notorious Scam CompoundsKrebs: Oregon Man Charged in ‘Rapper Bot’ DDoS ServiceOkta Open-Sources Catalog of Autho Rules for Threat Detection10 Major GitHub Risk Vectors Hidden in Plain SightAustralian ISP iiNet Suffers Breach of 280,000+ RecordsPharma Firm Inotiv Says Ransomware Attack Impacted OperationsHighly Sensitive Medical Cannabis Patient Data Exposed by Unsecured DatabaseNY Business Council Discloses Data Breach Affecting 47,000 PeopleMassive Allianz Life Data Breach Impacts 1.1 Million PeopleNew GodRAT Trojan Targets Trading Firms Using Steganography and Gh0st RAT CodeLegitimate Chrome VPN Extension Turns to Browser SpywarePyPI Blocks 1,800 Expired-Domain Emails to Prevent Account Takeovers and Supply Chain AttacksApache ActiveMQ Flaw Exploited to Deploy DripDropper Malware on Cloud Linux SystemsPublic Exploit Released for Critical SAP NetWeaver Flaw
8/18/2025 August 18, 2025August 18, 2025 ~ The Cyber Beat ~ Leave a comment Pot Calls Kettle Black as China Dubs U.S. ‘Surveillance Empire’ Over Chip TrackingXenoRAT Malware Campaign Hits Multiple Embassies in South Korea…How Evolving RATs Are Redefining Enterprise Security ThreatsCryptomining Group Kinsing Expands Operations to Russia, Researchers WarnBoffins Say Tool Can Sniff 5G Traffic, Launch ‘Attacks’ Without Using Rogue Base StationsAI Drives Rise in CEO Impersonator ScamsThai Police Arrest SMS Blasting Scammers Allegedly Hired by Chinese BossMan Jailed for 20 Months After Compromising Millions of AccountsNebraska Man Gets 1 Year in Prison for $3.5m Cryptojacking SchemeMicrosoft’s Nuance Coughs up $8.5m to Rid Itself of MOVEit Breach SuitPalo Alto’s Forecasts Signals AI Boost for Cybersecurity ToolsMozilla Warns Germany Could Soon Declare Ad Blockers IllegalHR Giant Workday Reveals CRM Breach…Likely Linked to ShinyHunters Salesforce AttacksCasino Gaming Company Bragg Says Hackers Accessed ‘Internal Computer Environment’Personal Info Leaked in Lexington-Richland 5 School District (SC) Data BreachBlue Locker Ransomware Launches Targeted Attacks on the Oil and Gas Sector in PakistanRansomware Gang Masking PipeMagic Backdoor as ChatGPT Desktop App: MicrosoftPopular npm Package Compromised in Phishing AttackNoodlophile Malware Campaign Expands Global Reach with Copyright Phishing LuresUSB Malware Campaign Spreads Cryptominer WorldwideMalicious PyPI and npm Packages Discovered Exploiting Dependencies in Supply Chain AttacksMicrosoft Windows Vulnerability Exploited to Deploy PipeMagic RansomExx MalwareOver 800 N-Able Servers Left Unpatched Against Critical Flaws
8/15-17/2025 August 17, 2025August 17, 2025 ~ The Cyber Beat ~ Leave a comment Taiwan Web Servers Breached by UAT-7237 Using Customized Open-Source Hacking ToolsCriminals, Good Guys and Foreign Spies: Hackers Everywhere Are Using AI NowOpenAI Releases Warmer GPT-5 Personality, but Only for Non Thinking ModelAnthropic: Claude Can Now End Conversations to Prevent Harmful UsesU.S. and Five Global Partners Release First Unified OT Security TaxonomyERMAC V3.0 Banking Trojan Source Code Leak Exposes Full Malware InfrastructureAccenture to Buy Australian Cybersecurity Firm CyberCX for Reported $650 MlnU.S. Seizes $2.8 Million in Crypto From Zeppelin Ransomware OperatorColt Telecom Attack Claimed by WarLock Ransomware, Data up for SaleCyberattack on Dutch Prosecution Service Is Keeping Speed Cameras OfflineKrebs: Mobile Phishers Target Brokerage Accounts in ‘Ramp and Dump’ Cashout SchemeScammers Turn to ‘Ghost-Tapping’ Retail Fraud to Launder FundsRussian Group EncryptHub Exploits MSC EvilTwin Vulnerability to Deploy Fickle Stealer MalwareResearcher to Release Exploit for Full Auth Bypass on FortiWebPlex Warns Users to Patch Security Vulnerability ImmediatelyCisco Discloses Critical RCE Flaw in Firewall Management SoftwareMicrosoft Teams to Protect Against Malicious URLs, Dangerous File Types
8/14/2025 August 15, 2025August 15, 2025 ~ The Cyber Beat ~ Leave a comment Pro-Russian Hackers Blamed for Water Dam Sabotage in NorwayPoland Foiled Cyberattack on Big City’s Water Supply, Deputy PM SaysCanada’s House of Commons Investigating Data Breach After CyberattackFBI Shares Tips to Spot Fake Lawyer Schemes Targeting Crypto Scam Victims…Google Requires Crypto App Licenses in 15 Regions as FBI Warns of $9.9M Scam Losses…Hacked Law Enforcement and Government Email Accounts Sold on Dark Web for $40Perplexity Makes Longshot $34.5 Billion Offer for ChromeFCC’s Data Breach Reporting Rules for Telecoms Are Upheld in Appeals CourtOver $300 Million in Cybercrime Crypto Seized in Anti-Fraud EffortU.S. Updates Sanctions on Russian Cryptocurrency Exchange GarantexRussia Curbs WhatsApp, Telegram Calls to Counter CybercrimeCybersecurity Spending Slows & Security Teams ShrinkTens of Thousands of Italian Hotel Guests May Be Hit by Cyber HeistMichigan Medicine Sends Postcards Without Envelopes, Exposing Personal Data of 1,015Hack at UnitedHealth’s Tech Unit Impacted 192.7 Million People, U.S. Health Dept Website ShowsBtcTurk Suspends Operations Amid Alleged $49M Hot Wallet HeistBooking.com Phishing Campaign Uses Sneaky ‘ん’ Character to Trick YouPhantomCard: New Android Malware Wave Hits Banking via NFC Relay Fraud, Call Hijacking, and Root ExploitsCrypto24 Ransomware Hits Large Orgs With Custom Edr Evasion ToolHackers Found Using CrossC2 to Expand Cobalt Strike Beacon’s Reach to Linux and macOSNew HTTP/2 ‘MadeYouReset’ Vulnerability Enables Large-Scale DoS AttacksCISA Warns of N-Able N-Central Flaws Exploited in Zero-Day AttacksKernelSU v0.5.7 Flaw Lets Android Apps Gain Root AccessGoogle Gemini’s Deep Research Is Finally Coming to API
8/13/2025 August 13, 2025August 13, 2025 ~ The Cyber Beat ~ Leave a comment Trump Shrugs off Suspected Russian Hack of U.S. Federal Courts: ‘Are You Surprised?’UK Secretly Spent $3.2 Million to Stop Journalists From Reporting on Data BreachUK Expands Police Facial Recognition Rollout With 10 New Vans Heading to a Town Near YouDeepfake AI Trading Scams Target Global InvestorsBattered by Constant Hacks, Security Chiefs Turn to AICrooks Can’t Let Go: Active Attacks Target Office Vuln Patched 8 Years AgoEstonians Behind $577 Million Cryptomining Fraud Sentenced to 16 MonthsNew York Lawsuit Against Zelle Creator Alleges Features Allowed $1 Billion in TheftsHow We Found TeaOnHer Spilling Users’ Driver’s Licenses in Less Than 10 MinutesNew PS1Bot Malware Campaign Uses Malvertising to Deploy Multi-Stage In-Memory AttacksNew Downgrade Attack Can Bypass FIDO Auth in Microsoft Entra IDAlarm Raised Over ‘High-Severity’ Vulnerabilities in Matrix Messaging ProtocolSpike in Fortinet VPN Brute-Force Attacks Raises Zero-Day Concerns…Fortinet Warns About FortiSIEM Vulnerability (CVE-2025-25256) With In-the-Wild Exploit CodeZoom and Xerox Release Critical Security Updates Fixing Privilege Escalation and RCE FlawsMicrosoft Removes PowerShell 2.0 from Windows 11, Windows Server
8/12/2025 August 12, 2025August 12, 2025 ~ The Cyber Beat ~ Leave a comment New Charon Ransomware Targets Middle East Public Sector, Aviation FirmsRussia Is Suspected to Be Behind Breach of Federal Court Filing System…Russia Might Be Responsible for the PACER HackCurly COMrades Cyberspies Hit Gov’t Orgs With Custom MalwareMITRE: Russian APT28’s LameHug, a Pilot for Future AI Cyber-AttacksGPT-5 Safeguards Bypassed Using Storytelling-Driven JailbreakBlack Hat NOC Expands AI Implementation Across Security OperationsWill Secure AI Be the Hottest Career Path in Cybersecurity?Cybercriminals Exploit Low-Cost Initial Access Broker MarketBlackwater’s Founder Would Like to Sell You a Privacy Phone Made in the USAData Brokers Are Hiding Their Opt-Out Pages From Google SearchU.S. Gov’t Seizes $1 Million in Crypto From BlackSuit Ransomware GangHow to Stay a Step Ahead of a Non-Obvious ThreatMajor Outage at Pennsylvania Attorney General’s Office Blamed on ‘Cyber Incident’Hackers Raid Dutch Lab, Stealing Data on 500,000 PatientsManpower Franchise Discloses Data Theft After RansomHub Posts Alleged Stolen DataSecond Ransomware Attack in Two Months Disrupts South Korean Ticketing Giant Yes24Home Office Phishing Scam Targets UK Immigration SponsorsHackers Leak Allianz Life Data Stolen in Salesforce Attacks…Cybercrime Groups ShinyHunters, Scattered Spider Join Forces in Extortion Attacks on Businesses…Financial Services Could Be Next in Line for ShinyHuntersResearchers Spot XZ Utils Backdoor in Dozens of Docker Hub Images, Fueling Supply Chain RisksFortinet SSL VPNs Hit by Global Brute-Force Wave Before Attackers Shift to FortiManagerOver 3,000 NetScaler Devices Left Unpatched Against Citrixbleed 2 BugKrebs: Microsoft Patch Tuesday, August 2025 Edition
8/11/2025 August 11, 2025August 11, 2025 ~ The Cyber Beat ~ Leave a comment Russia’s RomCom Among Those Exploiting a WinRAR 0-Day in Highly-Targeted AttacksWhat Trump’s Nvidia and AMD China Deal Means for the WorldFinland Charges Captain of Suspected Russian ‘Shadow Fleet’ Tanker for Subsea Cable DamageREvil Actor Accuses Russia of Planning 2021 Kaseya AttackNorth Korean Kimsuky Hackers Exposed in Alleged Data BreachWikimedia Foundation Loses First Court Battle to Swerve Online Safety Act RegulationHow Wikipedia Is Fighting AI Slop ContentUK Red Teamers “Deeply Skeptical” of AIInside the Multimillion-Dollar Gray Market for Video Game CheatsGhanaian Nationals Extradited for Roles in $100M Romance and Wire Fraud RingConnex Credit Union Breach Exposes 172,000 Members’ DataNew TETRA Radio Encryption Flaws Expose Law Enforcement CommunicationsNetherlands: Citrix Netscaler Flaw CVE-2025-6543 Exploited to Breach OrgsInterlock Ransomware Gang Claims Attack on St. Paul City GovernmentHow to Protect Yourself From Portable Point-of-Sale ScamsResearchers Spot Surge in Erlang/OTP SSH RCE Exploits, 70% Target OT FirewallsResearchers Detail Windows EPM Poisoning Exploit Chain Leading to Domain Privilege EscalationOver 29,000 Exchange Servers Unpatched Against High-Severity FlawWhat Does Palantir Actually Do?MuddyWater’s DarkBit Ransomware Cracked for Free Data Recovery
8/8-10/2025 August 10, 2025August 10, 2025 ~ The Cyber Beat ~ Leave a comment U.S. Federal Judiciary Tightens Security Following Escalated Cyber-AttacksNorth Korean Cyber-Espionage Group ScarCruft Adds Ransomware in Recent AttackChinese Biz Using AI to Hit U.S. Politicians, Influencers With PropagandaAI Agents Are Being Drafted Into the Cyber Defense Forces of CorporationsResearchers Uncover GPT-5 Jailbreak and Zero-Click AI Agent Attacks Exposing Cloud and IoT SystemsAI Tools Fuel Brazilian Phishing Scam While Efimer Trojan Steals Crypto from 5,000 VictimsCyber Companies Wary of Broader Economic ChallengesHow Small Businesses Can Fight a Growing Wave of Cyber CrimeKrebs: KrebsOnSecurity in New ‘Most Wanted’ HBO Max SeriesDARPA Announces $4 Million Winner of AI Code Review Competition at DEF CONMicrosoft 365 Apps to Soon Block File Access via FPRPC by DefaultColumbia University Data Breach Impacts Nearly 870,000 IndividualsGoogle Confirms Data Breach Exposed Potential Google Ads Customers’ InfoRoyal and BlackSuit Ransomware Gangs Hit Over 450 U.S. CompaniesEmbargo Ransomware Gang Has Handled at Least $34 Million in About a YearGreedyBear Steals $1M in Crypto Using 150+ Malicious Firefox Wallet ExtensionsRubyGems, PyPI Hit by Malicious Packages Stealing Credentials, Crypto, Forcing Security ChangesCyberArk and HashiCorp Flaws Enable Remote Vault Takeover Without CredentialsWinRAR Zero-Day Exploited to Plant Malware on Archive ExtractionNew Win-DDoS Flaws Let Attackers Turn Public Domain Controllers into DDoS Botnet via RPC, LDAPLinux-Based Lenovo Webcams’ Flaw Can Be Remotely Exploited for BadUSB AttacksGoogle Calendar Invites Let Researchers Hijack Gemini to Leak User Data
8/7/2025 August 7, 2025August 7, 2025 ~ The Cyber Beat ~ Leave a comment U.S. Federal Court Filing System Hit in Sweeping HackMysterious Crime Spree Targeted National Guard Equipment StashesEncryption Made for Police and Military Radios May Be Easily CrackedA Single Poisoned Document Could Leak ‘Secret’ Data Via ChatGPTMicrosoft Accidentally Confirms GPT-5, GPT-5-Mini, GPT-5-Nano Ahead of Launch…ChatGPT’s GPT-5 Models Released: Everything You Need to KnowMassive IPTV Piracy Service With 28,000 Channels Taken OfflineCryptomixer Samourai Wallet Founders Pled Guilty to Laundering Money for CybercriminalsGermany’s Top Court Holds That Police Can Only Use Spyware to Investigate Serious CrimesWhat CMMC 3.0 Really Means for Government ContractorsCISA Releases Malware Analysis for Sharepoint Server AttackThe Critical Flaw in CVE ScoringKLM, Air France Latest Major Organizations Looted for Customer DataBouygues Telecom Confirms Data Breach Impacting 6.4 Million CustomersMalicious Go, npm Packages Deliver Cross-Platform Malware, Trigger Remote Data WipesFake WhatAapp Developer Libraries Hide Destructive Data-Wiping CodeSocGholish Malware Spread via Ad Tools; Delivers Access to LockBit, Evil Corp, and OthersNew EDR Killer Tool Used by Eight Different Ransomware GroupsWave of 150 Crypto-Draining Extensions Hits Firefox Add-on Store6,500 Axis Servers Expose Remoting Protocol; 4,000 in U.S. Vulnerable to ExploitsSonicWall Confirms Patched Vulnerability Behind Recent VPN Attacks, Not a Zero-DayNew Microsoft Exchange Vulnerability Puts Hybrid Cloud Environments at Risk…CISA Orders Fed Agencies to Patch New Exchange Flaw by Monday
8/6/2025 August 6, 2025August 6, 2025 ~ The Cyber Beat ~ Leave a comment British Intelligence Warns Cyber Threat to Critical Infrastructure Is IncreasingHackers Using Fake Summonses in Attacks on Ukraine’s Defense SectorHackers Hijacked Google’s Gemini AI With a Poisoned Calendar Invite to Take Over a Smart HomeAs AI Changes Internet Search, Reddit Lies in a Sweet SpotMicrosoft Launches Project Ire to Autonomously Classify Malware Using AI ToolsNuclear Experts Say Mixing AI and Nuclear Weapons Is InevitableKrebs: Who Got Arrested in the Raid on the XSS Crime Forum?What to Know About Traveling to China for BusinessWhatsApp Adds New Security Feature to Protect Against ScamsWhy the Old Ways Are Still the Best for Most CybercriminalsTornado Cash Cofounder Dodges Money Laundering Conviction, Found Guilty of Lesser ChargeMicrosoft Pays Record $17 Million in Bounties Over the Last 12 MonthsGoogle Says the Group Behind Last Year’s Snowflake Attack Slurped Data From One of Its Salesforce InstancesA Rival Tea App for Men TeaOnHer Is Leaking Its Users’ Personal Data and Driver’s LicensesFlorida Hand Center Hit by Ransomware AttackFake VPN and Spam Blocker Apps Tied to VexTrio Used in Ad Fraud, Subscription ScamsAkira Ransomware Abuses CPU Tuning Tool to Disable Microsoft DefenderRansomware Actors Expand Tactics Beyond Encryption and ExfiltrationNew Ghost Calls Tactic Abuses Zoom and Microsoft Teams for C2 OperationsResearchers Uncover ECScape Flaw in Amazon ECS Enabling Cross-Task Credential TheftAttackers Are Targeting Critical Apex One Vulnerabilities, Trend Micro WarnsCISA Adds 3 D-Link Vulnerabilities to KEV Catalog Amid Active Exploitation EvidenceReVault Flaws Let Hackers Bypass Windows Login on Dell Laptops
8/5/2025 August 6, 2025August 6, 2025 ~ The Cyber Beat ~ Leave a comment Pro-Iran Hackers Aligned Cyber with Kinetic War AimsActive Infrastructure for Candiru Spyware Linked to Hungary, Saudi ArabiaVietnamese-Speaking Hackers Appear to Be Running Global Data Theft Operation Through TelegramTaiwan’s TSMC Fires Engineers Over Suspected Theft of Semiconductor SecretsFrance Extradites Nigerian National to U.S. Over $2.5 Million Hack Targeting Tax BusinessesDutch Caribbean Islands Respond to Cyberattacks on Courts, Tax DepartmentsStudy Finds Humans Not Completely Useless at Malware DetectionCybersecurity Teams Hit by Lowest Budget Growth in Five YearsU.S. Companies Spending Record Amounts to Protect Executives as Threats RiseHacker Summer Camp: What to Expect From BSides, Black Hat, and DEF CONJeff Moss on DEF CON And Its Shadow PowerMicrosoft Increases Zero Day Quest Prize Pool to $5 MillionMicrosoft and Google Among Most Affected as Zero Day Exploits Jump 46%Bipartisan Senate Duo Wants Answers From UnitedHealth Over Episource Data BreachPandora Confirms Data Breach Amid Ongoing Salesforce Data Theft AttacksSome Georgia Electronic Food Benefits Accounts Locked After CyberattackPBS Confirms Data Breach After Employee Info Leaked on Discord ServersFort Smith Schools (AR) Employees’ Personal Information May Have Been Accessed During Cyber AttackHacked Columbia University Data Includes Bank Numbers, GPAsDialysis Company DaVita Says More Than 900,000 People Affected by April Ransomware AttackChinese Smishing Campaigns Compromise up to 115 Million US Payment CardsClickFix Malware Campaign Exploits CAPTCHAs to Spread Cross-Platform InfectionsSonicWall Urges Admins to Disable SSLVPN Amid Rising AttacksCursor AI Code Editor Vulnerability Enables RCE via Malicious MCP File Swaps Post ApprovalAdobe Issues Emergency Fixes for AEM Forms Zero-Days After PoCs ReleasedAndroid Gets Patches for Qualcomm Flaws Exploited in AttacksSecurity Flaw Found, Fixed That Could Have Left Millions of Dell Laptops Vulnerable, Researchers SayGoogle’s August Patch Fixes Two Qualcomm Vulnerabilities Exploited in the Wild
8/4/2025 August 4, 2025August 4, 2025 ~ The Cyber Beat ~ Leave a comment Hacked Crimean Servers Reveal Information About Abducted Children, Ukraine SaysRansomware Gangs Join Attacks Targeting Microsoft SharePoint ServersAttackers Exploit Link-Wrapping Services to Steal Microsoft 365 LoginsSean Cairncross Confirmed as National Cyber DirectorPanel to Create Roadmap for Establishing U.S. Cyber ForceThe Big Money and High Cost of the U.S. Military’s On-Base Slot MachinesCrypto ATMs Fueling Criminal Activity, Treasury WarnsGerman Phone Repair Biz Einhaus Group Collapses Following 2023 Ransomware AttackFashion Giant Chanel Hit in Wave of Salesforce Data Theft AttacksCTM360 Spots Malicious ‘ClickTok’ Campaign Targeting TikTok Shop UsersPlayPraetor Android Trojan Infects 11,000+ Devices via Fake Google Play Pages and Meta AdsMozilla Flags Phishing Wave Aimed at Hijacking Trusted Firefox Add-OnsGhost in the Zip Reveals Expanding Ecosystem Behind PXA StealerNew ‘Plague’ PAM Backdoor Exposes Critical Linux Systems to Silent Credential TheftNVIDIA Triton Bugs Let Unauthenticated Attackers Execute Code and Hijack AI ServersProton Fixes Authenticator Bug Leaking TOTP Secrets in Logs
8/1-3/2025 August 4, 2025August 4, 2025 ~ The Cyber Beat ~ Leave a comment Russia’s Mobile Internet Shutdowns Hit Record High Amid Ukrainian Drone AttacksLuxembourg Probes Reported Attack on Huawei Tech That Caused Nationwide Telecoms OutageStorm-2603 Deploys DNS-Controlled Backdoor in Warlock and LockBit Ransomware AttacksCL-STA-0969 Installs Covert Malware in Telecom Networks During 10-Month Espionage CampaignChina State Media Says Nvidia Must Provide ‘Security Proofs’ to Regain TrustNorth Korea Sent Me Abroad to Be a Secret IT Worker. My Wages Funded the RegimeNot Just YouTube: Google Is Using AI to Guess Your Age Based on Your Activity – EverywhereSilent Push CEO on Cybercrime Takedowns: ‘It’s an Ongoing Cat-And-Mouse Game’CISA Roasts Unnamed Critical National Infrastructure Body for Shoddy Security HygieneHackers Leak Purported Aeroflot Data as Russia Denies BreachPi-hole Discloses Data Breach Triggered by WordPress Plugin FlawAI-Generated Malicious npm Package Drains Solana Funds from 1,500+ Before TakedownAffiliates of Disrupted Ransomware Gangs Sought by Other OperationsStaggering 800% Rise in Infostealer Credential TheftAttackers Use Fake OAuth Apps with Tycoon Kit to Breach Microsoft 365 AccountsAI-Powered Cursor IDE Vulnerable to Prompt-Injection AttacksAkira Ransomware Exploits SonicWall VPNs in Likely Zero-Day Attack on Fully-Patched DevicesPwn2Own Hacking Contest Pays $1 Million for WhatsApp ExploitHackers Regularly Exploit Vulnerabilities Before Public Disclosure, Study FindsPentagon Snub Rattles Cybersecurity Conference Circuit
7/31/2025 July 31, 2025July 31, 2025 ~ The Cyber Beat ~ Leave a comment Secret Blizzard Deploys Malware in ISP-Level AitM Attacks on Moscow EmbassiesThe Kremlin’s Most Devious Hacking Group Turla Is Using Russian ISPs to Plant SpywareEspionage Costing Australia $8 Billion Each Year, Warns Intelligence ChiefNvidia Says Its Chips Have No ‘Backdoors’ After China Flags H20 Security ConcernsSpikes in Malicious Activity Precede New Security Flaws in 80% of CasesColumbia University Fends Off Hackers by Going Back to BasicsIsraeli Cyber Startup Noma Security Raises $100 Million to Keep AI Agents From Going RogueAs Ransomware Gangs Threaten Physical Harm, ‘I Am Afraid of What’s Next,’ Ex-negotiator SaysN. Korean Hackers Used Job Lures, Cloud Account Access, and Malware to Steal Millions in CryptoDoubleTrouble Android Malware Targets Banking Users Through Discord ChannelsMicrosoft Now Pays up to $40,000 for Some .Net VulnerabilitiesMicrosoft to Disable Excel Workbook Links to Blocked File TypesKali Linux Can Now Run in Apple Containers on macOS SystemsCISA Unveils Eviction Strategies Tool to Aid Incident ResponseCISA Open-Sources Thorium Platform for Malware, Forensic AnalysisBiotech Contractor Illumina Settles for $9.8 Million With DOJ Over Alleged Cybersecurity LapsesCybercriminals ‘Spooked’ After Scattered Spider Arrests
7/30/2025 July 31, 2025July 31, 2025 ~ The Cyber Beat ~ Leave a comment More Than 90 State, Local Governments Targeted Using Microsoft Sharepoint Vulnerability, Group SaysChinese Firms Linked to Silk Typhoon Filed 15+ Patents for Cyber Espionage ToolsCyberattack Shuts Down Hundreds of Russian Pharmacies, Disrupts Healthcare ServicesRussia Blocks Popular U.S.-Made Internet Speed Test Tool Over National Security ConcernsKrebs: Scammers Unleash Flood of Slick Online Gaming SitesHackers Use Facebook Ads to Spread JSCEAL Malware via Fake Cryptocurrency Trading AppsWarning Over Email Scam Using Fake Telecom BillsFunkSec Ransomware Decryptor Released Free to Public After Group Goes DormantDropbox Is Shutting Down Its Password ManagerMore Than 100 Flights Cancelled After UK Air Traffic Control IssueThe TSA Likes Facial Recognition at Airports. Passengers and Politicians, Not So MuchSafePay Ransomware Threatens to Leak 3.5tb of Ingram Micro DataShinyHunters Behind Salesforce Data Theft Attacks at Qantas, Allianz Life, and LVMHDollar Tree Denies Ransomware Claims, Says Stolen Data Is From Defunct Discount ChainHidden Backdoor Found in ATM Network via Raspberry PiHackers Actively Exploit Critical RCE in WordPress Alone ThemeCritical Dahua Camera Flaws Enable Remote Hijack via ONVIF and File Upload ExploitsNew Lenovo UEFI Firmware Updates Fix Secure Boot Bypass FlawsApple Patches Safari Vulnerability Also Exploited as Zero-Day in Google ChromeThird of Exploited Vulnerabilities Weaponized Within a Day of DisclosureGoogle to Publicly Report New Vulnerabilities Within One Week of Vendor DisclosureSchools Are Next for Flock Safety’s Automatic License Place Reader Cameras
7/29/2025 July 29, 2025July 29, 2025 ~ The Cyber Beat ~ Leave a comment Minnesota Activates National Guard After St. Paul CyberattackPoland Says More Than 30 Suspects Face Trial Over Pro-Russian SabotageWyden Asks White House to Scrutinize UK Surveillance LawsSenator Presses Musk on Starlink ‘Misuse’ by Southeast Asian ScammersGoogle Workspace Is Rolling Out a Security Update to Stop Token Stealing AttacksCharity Birthlink Fined After Destroying “Irreplaceable” RecordsFBI Seizes $2.4m in Crypto from Chaos Ransomware GangPalo Alto Networks Nears Over $20 Billion Deal for Cybersecurity Firm CyberArkSex Toy Maker Lovense Caught Leaking Users’ Email Addresses and Exposing Accounts to TakeoversFrench Telco Orange Hit by Cyber-AttackScattered Spider Is Targeting Victims’ Snowflake Data Storage for Quick ExfiltrationCybercriminals Use Fake Apps to Steal Data and Blackmail Users Across Asia’s Mobile NetworksPyPI Warns of Ongoing Phishing Campaign Using Fake Verification Emails and Lookalike DomainNimble ‘Gunra’ Ransomware Evolves With Linux VariantAuto-Color Backdoor Malware Exploits SAP VulnerabilityCritical Authentication Flaw Identified in Base44 Vibe Coding Platform
7/28/2025 July 28, 2025July 28, 2025 ~ The Cyber Beat ~ Leave a comment Flights Grounded as Russia’s Largest Airline Aeroflot Hacked and Systems ‘Destroyed’…‘Partisans’ Who Paralyzed Russian Airports Have Track Record of Disruptive HacksNaval Group Denies Hack Claims, Alleges “Reputational Attack”Microsoft: macOS Sploitlight Flaw Leaks Apple Intelligence DataThe UK Is Slogging Through an Online Age-Gate ApocalypseAn Inside Look Into How a Coalition of State Legislators Plans to Take On Data BrokersThe Internet Archive Is Now a U.S. Federal Depository LibraryTea App Leak Worsens With Second Database Exposing User ChatsEndgame Gear Mouse Config Tool Infected Users With MalwareCISA Flags Papercut RCE Bug as Exploited in Attacks, Patch NowExploit Available for Critical Cisco ISE Bug Exploited in AttacksCritical Flaws in Niagara Framework Threaten Smart Buildings and Industrial Systems WorldwideFlaw in Gemini CLI AI Coding Assistant Allowed Stealthy Code ExecutionNew York State Cyber Chief Calls Out Trump for Cybersecurity Cuts
7/25-27/2025 July 27, 2025July 27, 2025 ~ The Cyber Beat ~ Leave a comment Patchwork Targets Turkish Defense Firms with Spear-Phishing Using Malicious LNK FilesMicrosoft Probing if Chinese Hackers Learned Sharepoint Flaws Through AlertCyber Espionage Campaign ‘CargoTalon’ Hits Russian Aerospace Sector Using EAGLET Backdoor‘Quishing’ Scams Dupe Millions of Americans as Cybercriminals Turn the QR Code BadScattered Spider is Running a VMware ESXi Hacking SpreeAmazon AI Coding Agent Hacked to Inject Data Wiping CommandsSpaceX Probes for Cause of Starlink’s Global Satellite Network OutageU.S. Sanctions North Korean Firm, Nationals Behind IT Worker SchemesAllianz Life Confirms Data Breach Impacts Majority of 1.4 Million CustomersWomen’s Dating App Tea Reports 72,000 Images Stolen in Security BreachParents Concerned After Personal Information of Hundreds of Dearborn Heights (MI) Children Exposed OnlineNASCAR Confirms Data Breach After March CyberattackEmail Scam Demanding Money Targets Hull UniversityNew Chaos Ransomware Emerges, Launches Wave of AttacksPost SMTP Plugin Flaw Exposes 200K WordPress Sites to Hijacking AttacksSecurity Awareness: Why Security Nudges Majorly Took Off
7/24/2025 July 24, 2025July 24, 2025 ~ The Cyber Beat ~ Leave a comment China-Based APTs Deploy Fake Dalai Lama Apps to Spy on Tibetan CommunityFire Ant Exploits VMware Flaws to Compromise ESXi Hosts and vCenter EnvironmentsSatya Nadella Seeks to Reassure Microsoft Employees in Layoffs MemoMicrosoft Put Older Versions of Sharepoint on Life Support. Hackers Are Taking AdvantageDHS and HHS Among Federal Agencies Hacked in Microsoft Sharepoint BreachMicrosoft Says Some SharePoint Server Hackers Now Using RansomwareU.S. Lawmaker Presses for Details of Pentagon Use of Chinese Engineers Under Microsoft DealTemu Lawsuits Pit States Against a Digital SuperpowerUK and Romania Crack Down on ATM Fraudster NetworkBlackSuit Ransomware Leak Sites Seized in Operation CheckmateFBI Exposes The Com’s Criminal Activities and Involvement of MinorsU.S. Woman Gets 8-Year Sentence for Stealing Identities to Give North Koreans JobsA Premium Luggage Service’s Web Bugs Exposed the Travel Plans of Every User—Including DiplomatsKrebs: Phishers Target Aviation Execs to Scam CustomersSarangTrap: Malware Campaign Masquerades as Dating Apps to Steal DataNew Koske Linux Malware Hides in Cute Panda ImagesHacker Sneaks Infostealer Malware Into Early Access Steam GameSoco404: Active Campaign Exploits Cloud Flaws for CryptominingCastleLoader Malware Infects 469 Devices Using Fake GitHub Repos and ClickFix PhishingHackers Breach Toptal Github Account, Publish Malicious npm PackagesHackers Deploy Stealth Backdoor in WordPress Mu-Plugins to Maintain Admin AccessCritical Mitel Flaw Lets Hackers Bypass Login, Gain Full Access to MiVoice MX-ONE SystemsSophos and SonicWall Patch Critical RCE Flaws Affecting Firewalls and SMA 100 DevicesWhy ISO 42001 Matters for AI Governance at Scale
7/23/2025 July 23, 2025July 23, 2025 ~ The Cyber Beat ~ Leave a comment U.S. Nuclear Weapons Agency Reportedly Breached in Microsoft Sharepoint Attacks…CISA Orders Urgent Patching After Chinese Hackers Exploit SharePoint Flaws in Live Attacks…Microsoft SharePoint Victim Count Hits 400+ Orgs in Ongoing AttacksNothing to See Here: Brave Browser Blocks Privacy-Busting Microsoft RecallProton Is Launching a Privacy-Focused AI ChatbotChatGPT Is Rolling Out ‘Personality’ Toggles to Become Your AssistantAfter $380M Hack, Clorox Sues Its “Service Desk” Vendor for Simply Giving Out PasswordsSuspected XSS Forum Admin Arrested in Ukraine5 Nevada Men Sentenced to Prison for Running Jetflicks Pirated Content SiteRussia Turns to Kyrgyzstan’s Booming Crypto Sector to Evade Sanctions, Researchers SayFrance: New Data Breach Could Affect 340,000 JobseekersRadiology Associates of Richmond Data Breach Affects 1.4 Million PatientsThreat Actor Mimo Targets Magento and Docker to Deploy Crypto Miners and ProxywareCISA Warns: SysAid Flaws Under Active Attack Enable Remote File Access and SSRFNPM Package ‘Is’ With 2.8m Weekly Downloads Infected Devs With MalwareNPM ‘Accidentally’ Removes Stylus Package, Breaks Builds and PipelinesVMware Prevents Some Perpetual License Holders From Downloading PatchesNew York Unveils New Cyber Regulations, $2.5 Million Grant Program for Water SystemsIRL Com Recruits Teens for Real-Life Stabbings, Shootings, FBI Warns
7/22/2025 July 23, 2025July 23, 2025 ~ The Cyber Beat ~ Leave a comment Microsoft Says Chinese Hacking Groups Are Behind Sharepoint Attacks…Linen Typhoon, Violet Typhoon & Storm-2603…Microsoft Knew of SharePoint Security Flaw but Failed to Effectively Patch It, Timeline ShowsRussian Threat Actors Target NGOs with New OAuth Phishing TacticsYouTube Wipes Out Thousands of Propaganda Channels Linked to China, Russia, OthersRussian-Speaking Hacker Group Disrupted by Local ResearchersSilicon Valley Engineer Admits Theft of U.S. Missile Tech SecretsUK Confirms Ransomware Payment Ban for Public Sector and CNI…UK Government Wants Ransomware Victims to Report Breaches So It Can Carry Out ‘Targeted Disruptions’ Against HackersAustralian Regulator Alleges Financial Firm Exposed Clients to Unacceptable Cyber RisksCitizen Will Share Crime Videos With the NYPDAI’s High Cost Pushes Smaller Cybersecurity Companies to SellMajor European Healthcare Network AMEOS Group Discloses Security Breach158-Year-Old Company Knights of Old Forced to Close After Ransomware Attack Precipitated by a Single Guessed Password — 700 Jobs Lost After Hackers Demand Unpayable SumWidespread Net RFQ Scam Targets High-Value GoodsCredential Theft and Remote Access Surge as AllaKore, PureRAT, and Hijack Loader ProliferateCISA and FBI Warn of Escalating Interlock Ransomware AttacksLumma Infostealer Malware Returns After Law Enforcement DisruptionCoyote Malware Abuses Windows Accessibility Framework for Data TheftArch Linux Users Told to Purge Firefox Forks After AUR Malware ScareCisco Confirms Active Exploits Targeting ISE Flaws Enabling Unauthenticated Root AccessCritical Infrastructure Security Is a Critical ConcernHumans Can Be Tracked With Unique ‘Fingerprint’ Based on How Their Bodies Block Wi-Fi Signals
7/21/2025 July 21, 2025July 21, 2025 ~ The Cyber Beat ~ Leave a comment China Denies Link to Espionage Group Accused of Attacking Singapore Critical InfrastructureChina-Linked APT41 Hackers Launch Targeted Espionage Campaign on African IT InfrastructureIranian Hackers Deploy New Android Spyware VersionThis ‘Violently Racist’ Hacker Claims to Be the Source of the New York Times’ Mamdani ScoopMalicious Implants Are Coming to AI Components, ApplicationsPoland Investigates Sabotage After Air Traffic Control Disruption Delayed FlightsAlaska Airlines Lifts Ground Stop Caused by Software OutageUK Wants to Weasel Out of Demand for Apple Encryption Back DoorRing Reintroduces Video Sharing With PoliceIntel Announces End of Clear Linux OS Project, Archives GitHub ReposKrebs: Microsoft Fix Targets Attacks on SharePoint Zero-Day…Microsoft Server Hack Hit About 100 Organizations, Researchers SayDell Confirms Breach of Test Lab Platform by World Leaks Extortion GroupRing Denies Breach After Users Report Suspicious LoginsDior Begins Sending Data Breach Notifications to U.S. CustomersIndian Crypto Exchange CoinDCX Says $44 Million Stolen from ReservesExpressVPN Bug Leaked User IPs in Remote Desktop Sessions3,500 Websites Hijacked to Secretly Mine Crypto Using Stealth JavaScript and WebSocket TacticsAccounting Firm Targeted by Malware Campaign Using New Crypter Ghost CryptFake Receipt Generators Fuel Rise in Online Fraud
7/18-20/2025 July 20, 2025July 20, 2025 ~ The Cyber Beat ~ Leave a comment Singapore Says Cyber Espionage Group UNC3886 Targeting Critical InfrastructureMicrosoft to Stop Using Engineers in China for Tech Support of U.S. Military, Hegseth Orders ReviewHow China’s Patriotic ‘Honkers’ Became the Nation’s Elite CyberspiesUNG0002 Group Hits China, Hong Kong, Pakistan Using LNK Files and RATs in Twin CampaignsRussia APT28 Linked to New Malware ‘Authentic Antics’ Targeting Email Accounts for EspionageKrebs: Poor Passwords Tattle on AI Hiring Bot Maker Paradox.aiEx-IDF Cyber Chief on Iran, Scattered Spider, and Why Social Engineering Worries Him More Than 0-DaysNew Phobos and 8Base Ransomware Decryptor Recover Files for FreeRetail Becomes New Target as Healthcare Ransomware Attacks SlowAt Least 750 U.S. Hospitals Faced Disruptions During Last Year’s CrowdStrike Outage, Study FindsSecuring the Budget: Demonstrating Cybersecurity’s ReturnMalware Injected into 5 npm Packages After Maintainer Tokens Stolen in Phishing AttackAI-Generated Lcryx Ransomware Discovered in Cryptomining BotnetArch Linux Pulls AUR Packages that Installed Chaos RAT MalwareThreat Actors Downgrade FIDO2 MFA Auth in PoisonSeed Phishing AttackEncryptHub Targets Web3 Developers Using Fake AI Platforms to Deploy Fickle Stealer MalwareHPE Warns of Hardcoded Passwords in Aruba Access PointsHackers Scanning for TeleMessage Signal Clone Flaw Exposing PasswordsHackers Exploit Critical CrushFTP Flaw to Gain Admin Access on Unpatched ServersIvanti Zero-Days Exploited to Drop MDifyLoader and Launch In-Memory Cobalt Strike AttacksCritical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Company ServersCISA Issues Advisories on Critical ICS Vulnerabilities Across Multiple SectorsCitrix Bleed 2 Exploited Weeks Before PoCs as Citrix Denied Attacks
7/17/2025 July 17, 2025July 17, 2025 ~ The Cyber Beat ~ Leave a comment Personal Details of UK Special Forces and Spies Were Included in Afghan Data BreachLawmakers Call On DNI to Review Intel Sharing With Spain Over Huawei RevelationsAI Cloaking Tools Enable Harder-to-Detect Cyber-AttacksMicrosoft Exposes Scattered Spider’s Latest TacticsOne in 12 US/UK Employees Uses Chinese GenAI ToolsCrypto Crime in 2025 Is Topping Last Year’s Totals AlreadyQuantum Code Breaking? You’d Get Further With an 8-Bit Computer, an Abacus, and a DogGoogle Sues to Disrupt BadBox 2.0 Botnet Infecting 10 Million DevicesArmenian, Ukrainian Nationals Among Ryuk Ransomware Actors Facing U.S. Hacking ChargesUK NCA Officer Jailed for Stealing Bitcoin From Darknet Criminal He Previously Helped InvestigateMeta Investors, Zuckerberg Settle $8 Billion Privacy Lawsuit Tied to Cambridge Analytica ScandalElite Russian University Launches Degree Program on Sanctions EvasionThai Officials Restore Ministry of Labor Website After Hack, DefacementCo-op Confirms Data of 6.5 Million Members Stolen in CyberattackHacker Steals $27 Million in BigONE Exchange Crypto BreachRussian Vodka Producer Reports Disruptions After Ransomware AttackMower County (MN) Still Working to Restore Systems After Cyber AttackMalware-as-a-Service Campaign Exploits GitHub to Deliver PayloadsHackers Are Finding New Ways to Hide Malware in DNS RecordsLameHug Malware Uses AI LLM to Craft Windows Data-Theft Commands in Real-TimeHackers Exploit Apache HTTP Server Flaw to Deploy Linuxsys Cryptocurrency MinerCisco Warns of Critical ISE Flaw Allowing Unauthenticated Attackers to Execute Root CodeVMware Fixes Four ESXi Zero-Day Bugs Exploited at Pwn2Own BerlinWhy Cybersecurity Still Matters for America’s Schools
7/16/2025 July 16, 2025July 16, 2025 ~ The Cyber Beat ~ Leave a comment Ukrainian Hackers Claim to Have Destroyed Major Russian Drone Maker’s Entire NetworkWhat We Know So Far About Afghan Data BreachChina-Linked Hackers Target Taiwan’s Chip Industry With Increasing Attacks, Researchers SaySenate Panel Passes Intelligence Authorization Act That Takes Aim At Telecom HacksChinese Authorities Are Using a New Tool to Hack Seized Phones and Extract DataDark Web Travel Agencies Take FlightCloudflare Says 1.1.1.1 Outage Not Caused by Attack or BGP HijackPro-Russian Cybercrime Network NoName057(16) Demolished in Operation EastwoodCo-op Aims to Divert More Young Hackers into Cyber CareersAdoption Agency Data Exposure Revealed Information About Children and ParentsLouis Vuitton Says Regional Data Breaches Tied to Same CyberattackDragonForce Claims Belk Data Breach from May, Says Belk Refuse to Pay UpSquidLoader Malware Campaign Targets Hong Kong Financial SectorHackers Leverage Microsoft Teams to Spread Matanbuchus 3.0 Malware to Targeted FirmsNew Konfety Malware Variant Evades Detection by Manipulating APKs and Dynamic CodeNew Fortinet FortiWeb Hacks Likely Linked to Public RCE ExploitsUNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP RootkitUrgent: Google Releases Critical Chrome Update for CVE-2025-6558 Exploit Active in the Wild
7/15/2025 July 15, 2025July 15, 2025 ~ The Cyber Beat ~ Leave a comment U.S. National Guard Unit Was ‘Extensively’ Hacked by Salt Typhoon in 2024, Memo SaysNSA: Volt Typhoon Was ‘Not Successful’ at Persisting in Critical InfrastructureState-Backed HazyBeacon Malware Uses AWS Lambda to Steal Data from SE Asian GovernmentsNorth Korean Actors Expand Contagious Interview Campaign with New Malware Loader XORIndexKrebs: DOGE Denizen Marko Elez Leaked API Key for xAIMITRE Launches New Framework to Tackle Crypto RisksICEBlock Isn’t ‘Completely Anonymous’Ex-U.S. Soldier Who Googled ‘Can Hacking Be Treason’ Pleads Guilty to ExtortionPolice Disrupt “Diskstation” Ransomware Gang Attacking NAS DevicesLouis Vuitton Says Customers in Turkey, South Korea and UK Impacted by Data BreachesAlbemarle County (VA) IDs INC Ransom Group Behind Ransomware AttackThreat Actors Exploit SVG Files in Stealthy JavaScript RedirectsAsyncRAT’s Open-Source Code Sparks Surge in Dangerous Malware Variants Across the GlobeAndroid Malware Konfety Uses Malformed APKs to Evade DetectionHyper-Volumetric DDoS Attacks Reach Record 7.3 Tbps, Targeting Key Global SectorsGoogle Says ‘Big Sleep’ AI Tool Found Bug Hackers Planned to UseCurl Creator Mulls Nixing Bug Bounty Awards to Stop AI SlopAbacus Dark Web Market Shutters After Exit Scam, Say Experts
7/14/2025 July 14, 2025July 14, 2025 ~ The Cyber Beat ~ Leave a comment Russia-Linked Group Storm-1516 Spoofing European Journalists to Spread DisinformationElmo’s Hacked X Account Posted Racist Messages. Sesame Workshop Is Trying to Regain ControlGrok-4 Jailbroken Two Days After Release Using Combined AttackAI ‘Nudify’ Websites Are Raking in Millions of DollarsCBI Shuts Down £390K U.K. Tech Support Scam, Arrests Key Operatives in Noida Call CenterRomanian Police Arrest 13 Scammers Targeting UK’s Tax AuthorityPiracy Sites for Nintendo Switch, PS4 Games Taken Down by FBIFederal IT Contractor Hill Associates to Pay $14.75 Fine Over ‘Cyber Fraud’ AllegationsGardendale (AL) Purportedly Compromised by INC Ransom GroupMalicious VSCode Extension in Cursor IDE Led to $500K Crypto TheftInterlock Ransomware Unleashes New RAT in Widespread CampaignGigabyte Motherboards Vulnerable to UEFI Malware Bypassing Secure BootIoT Devices at Risk Due to eSIM Flaw in Kigen eUICC CardsExploited Wing File Transfer Bug Risks ‘Total Server Compromise,’ CISA WarnsUK Launches Vulnerability Research Program for External ExpertsThe Dark Side of Global Power Shifts & Demographic Decline
7/11-13/2025 July 14, 2025July 14, 2025 ~ The Cyber Beat ~ Leave a comment MPs Warn of “Significant” Iranian Cyber-Threat to UKSpain Awards Huawei Contracts to Manage Intelligence Agency WiretapsFormer Mexican President Investigated Over Allegedly Taking Bribes From Spyware IndustryMounting Ransomware Gang Prevalence Met With Decline in VictimizationTrump Blocks Acquisition of Equipment Supplier Jupiter Systems by Hong Kong FirmTikTok Loses Bid to Dismiss Lawsuit Alleging Its ‘Addictive Design’ Exploits KidsOver Half of “Finfluencer” Victims Have Lost Money, Says TSBGoogle Gemini Flaw Hijacks Email Summaries for PhishingAirline Executive Agrees to Dismiss Litigation Around Alleged Hack-For-Hire SchemeBritish Man Sentenced for Network Rail Wi-Fi HackIndonesia Extradites Russian Accused of Selling Personal Data on TelegramISACA Addresses Experience Gap with CISA Associate DesignationLouis Vuitton Says UK Customer Data Stolen in Cyber-AttackHacker Returns Cryptocurrency Stolen From GMX Exchange After $5 Million Bounty PaymentGPUHammer: New RowHammer Attack Variant Degrades AI Models on NVIDIA GPUsWordPress Gravity Forms Developer Hacked to Push Backdoored PluginsOver 600 Laravel Apps Exposed to Remote Code Execution Due to Leaked APP_KEYs on GitHubHackers Are Exploiting Critical RCE Flaw in Wing FTP ServerCritical Wing FTP Server Vulnerability (CVE-2025-47812) Actively Being Exploited in the WildFortinet Releases Patch for Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257)CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target EnterprisesWindows 11 Now Uses JScript9Legacy Engine for improved SecurityFactoring Cybersecurity Into Finance’s Digital Strategy
7/10/2025 July 11, 2025July 11, 2025 ~ The Cyber Beat ~ Leave a comment Security Through Quality: Navigating the Latest Cybersecurity Executive OrderHackers Target Eldercare HomesNew AI Malware PoC Reliably Evades Microsoft DefenderLLMs Fall Short in Vulnerability Discovery and ExploitationKrebs: UK Arrests Four in ‘Scattered Spider’ Ransom GroupRussian Pro Basketball Player Arrested in France for Alleged Role in Ransomware AttacksEx-ASML Engineer Who Stole Chip Tech for Russia Gets Three Years in Dutch PrisonLovestruck U.S. Air Force Worker Admits Leaking Secrets on Dating AppWindows 11 Now Uses JScript9Legacy Engine for Improved SecurityNippon Steel IT Subsidiary Hit by “Zero-Day Attack,” Causing Data BreachAlbemarle County (VA) Warns of Cybersecurity BreachFlorida Lung, Asthma and Sleep Specialists Warn Patients of Data Breach After Russian Group Claims ResponsibilityMicrosoft Outlook Hit With Hours-Long OutageFake Gaming and AI Firms Push Malware on Cryptocurrency Users via Telegram and DiscordNew ZuRu Malware Variant Targeting Developers via Trojanized Termius macOS AppCritical MCP-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ DownloadsPerfektBlue Bluetooth Flaws Impact Mercedes, Volkswagen, Skoda Cars
7/9/2025 July 9, 2025July 9, 2025 ~ The Cyber Beat ~ Leave a comment French Intel Chief Warns of Evolving Russian Hybrid Operations, ‘Existential Threat’ to EuropeRubio Impersonator Signals Growing Security Threat From DeepfakesDoNot APT Expands Operations, Targets European Foreign Ministries with LoptikMod MalwareFake CNN and BBC Sites Used to Push Investment ScamsAfter Setback, Tech Firms Renew Push for Federal AI RegulationIsrael’s Cyberstarts Launches $300 Million Fund to Help Startups Retain TalentMicrosoft Authenticator on iOS Moves Backups Fully to iCloudSamsung Announces Major Security Enhancements Coming to One UI 8Google Reveals Details on Android’s Advanced Protection for ChromeGerman Court Rules Meta Tracking Technology Violates European Privacy LawsTreasury Sanctions North Korean Over IT Worker Malware SchemeKnow Your Enemy: Understanding Dark Market DynamicsMcDonald’s AI Hiring Bot Exposed Millions of Applicants’ Data to Hackers Using the Password ‘123456’Ransomware Attack Stops Nova Scotia Power Meter ReadingsM&S Confirms Social Engineering Led to Massive Ransomware AttackQantas Confirms Data Breach Impacts 5.7 Million CustomersBitcoin Depot Breach Exposes Data of Nearly 27,000 Crypto UsersMore Than $40 Million Stolen From GMX Crypto PlatformIngram Micro Starts Restoring Systems After Ransomware AttackNew Android TapTrap Attack Fools Users With Invisible UI TrickGold Melody IAB Exploits Exposed ASP.NET Machine Keys for Unauthorized Access to TargetsNew ServiceNow Flaw Lets Attackers Enumerate Restricted DataRuckus Networks Leaves Severe Flaws Unpatched in Management DevicesAMD Warns of New Meltdown, Spectre-Like Bugs Affecting CPUsKrebs: Microsoft Patch Tuesday, July 2025 Edition