Recent cybersecurity developments highlight a wave of cloud and third-party breaches, including OAuth token theft impacting Salesforce and Google Workspace, linked to supply-chain attacks such as TransUnion data leaks. Additionally, threat actors are shifting towards cloud-focused ransomware attacks like Storm-0501, while critical vulnerabilities are prompting urgent patches across multiple platforms. #SalesloftOAuth #Storm0501 #BigSleep #FreePBXZeroDay #ShadowSilk
Category: Daily Recap
![Cybersecurity News | Daily Recap [29 Aug 2025]](https://www.hendryadrian.com/tweet/image/DailyRecap.png "Cybersecurity News | Daily Recap [29 Aug 2025]")
Recent cybersecurity updates highlight widespread vulnerabilities in Plex and Citrix, along with urgent patches for FreePBX zero-day exploits. Key incidents include global data breaches affecting organizations like MathWorks and TransUnion, as well as nation-state espionage campaigns linked to Salt Typhoon exploiting Cisco, Ivanti, and Palo Alto devices. #CVE-2025-34158 #SaltTyphoon
Recent reports highlight China’s state-sponsored espionage efforts, including campaigns by UNC6384 and Blind Eagle, targeting diplomatic and government entities across multiple regions. Additionally, critical vulnerabilities in Citrix NetScaler and Git have been patched, while supply chain attacks and data breaches continue to threaten organizations globally. #UNC6384 #BlindEagle #CitrixNetScaler #SalesloftOAuth #HealthcareBreach #Infostealers #Sni5Gect
Today’s cybersecurity recap highlights recent data breaches involving Nissan, Farmers Insurance, and Healthcare Services Group, along with major ransomware and malware campaigns targeting U.S. manufacturers and Android users. It also covers critical vulnerabilities like Docker CVE-2025-9074, nation-state espionage activities by UNC6384 and Russian policies on foreign tech, emphasizing the need for urgent patching and security awareness. #Qilin #FarmersInsurance #ShadowCaptcha #UNC6384 #DockerCVE
This daily recap highlights recent cyber threats including a new Android malware linked to Russia’s FSB that evade detection by impersonating antivirus apps, and Pakistani APT36’s espionage activities targeting India’s government using sophisticated tools. It also reports major ransomware incidents affecting healthcare and insurance sectors, along with significant data breaches and law enforcement actions against cybercriminal networks. #AndroidBackdoor #APT36 #BianLian #FBI #GenesisMarket
![Threat Research | Weekly Recap [24 Aug 2025]](https://www.hendryadrian.com/tweet/image/WeeklyRecap.png "Threat Research | Weekly Recap [24 Aug 2025]")
The weekly Cybersecurity Threat Research recap highlights significant ransomware operations, including SharePoint exploitation by WarLock and advanced RaaS variants targeting multiple platforms. It also covers emerging backdoors like Cornflake V3 and PipeMagic, sophisticated phishing campaigns such as Salty 2FA, and targeted APT campaigns like APT36 and Static Tundra. #WarLock #CornflakeV3
This cybersecurity recap highlights the ongoing activities of state-linked APT groups such as Murky Panda, Silk Typhoon, and APT36, which employ supply-chain tactics and zero-day exploits against SaaS providers and government targets. Additionally, it covers recent malware campaigns involving GeoServer, Redis, Shamos, and cybercrime law enforcement efforts across Africa. #MurkyPanda #SilkTyphoon #APT36 #GeoServer #Shamos #Interpol
Chinese-linked groups such as Silk Typhoon and Murky Panda continue to increase cloud and telecom espionage activities across North America, exploiting zero-day vulnerabilities to compromise cloud trust and steal sensitive data. The report also highlights major ransomware breaches involving DaVita and Nissan, law enforcement operations disrupting cybercrime, critical vulnerabilities in software systems, and evolving malware delivery techniques. #SilkTyphoon #MurkyPanda #DaVita #Qilin #Atomic #VShell #CORNFLAKEV3
This daily recap highlights urgent vulnerabilities patched by Apple, Docker, Chrome, and Cisco, emphasizing the importance of timely updates. It also covers ongoing exploits by Russian APT groups targeting Cisco devices, significant data breaches, and advancements in malware infrastructure attacks. #CVE-2025-43300 #CVE-2025-9074 #CVE-2025-9132 #AV25-532 #StaticTundra #BerserkBear #CiscoExploit #Qilin #ScatteredSpider
This recap highlights recent major data breaches, including incidents involving Orange Belgium and the NY Business Council, and discusses the dismantling of the RapperBot DDoS operation by U.S. authorities. It also covers critical vulnerabilities in browsers, active exploits of enterprise systems, and emerging AI threats, emphasizing the need for timely patches and strategic defenses. #OrangeBelgium #RapperBot #PromptFix #GodRAT
The cybersecurity landscape this week highlights the emergence of PipeMagic, a modular backdoor exploiting a Windows zero-day, used by threat actors like Storm-2460 and RansomEXX to deploy ransomware through fake ChatGPT apps. Additionally, nation-state campai…
Recent cybersecurity activities include a contained attack on Bragg Gaming with no data breach, ongoing disruptions at Colt Services, and a social-engineering incident at Workday linked to Salesforce campaigns. Law enforcement actions seized assets from Zeppel…
This weekly recap highlights ongoing phishing campaigns involving malware like Lokibot and cyber-espionage activities by threat actors such as Sidewinder, Educated Manticore, and Lazarus Group. It emphasizes evolving tactics including supply-chain risks, zero-…
Cybersecurity experts highlight ongoing threats from nation-state APTs like UAT-7237, which breached Taiwanese web servers using persistent methods. Major malware activities include the leak of ERMAC v3.0 source code and Russian exploitation of Windows CVE-202…
Recent reports highlight significant nation-state cyber activities, including a pro-Russian intrusion into Norway’s dam systems and breaches linked to Russian actors targeting US federal courts and Canada’s House of Commons. The cybersecurity landscape also fe…