Cybersecurity News | Daily Recap [05 Aug 2025]

Recent cybersecurity incidents include data breaches at Cisco, Chanel, and Northwest Radiologists, with threat actors like ShinyHunters and D4rk4rmy responsible for data theft and system compromises. Notable threats involve the Akira ransomware targeting SonicWall devices and Chinese state-sponsored espionage activities against TSMC, highlighting escalating geopolitical cyber tensions. #CiscoDataBreach #ShinyHunters #D4rk4rmy #AkiraRansomware #TSMCSpyware

Data Breaches & Cybercrime

Cisco confirmed a vishing attack on a third-party CRM stole user profile data, prompting security upgrades and notifications – Cisco CRM Hack, Cisco Data Breach
French luxury brand Chanel exposed U.S. customer info after a ShinyHunters Salesforce data theft wave – Chanel Data Theft
Northwest Radiologists suffered a breach affecting over 348,000 Washington residents, likely ransomware-related with credit protection offered – Northwest Radiologists Breach
Luxury resort Monte-Carlo Société des Bains de Mer hacked by D4rk4rmy group stealing client data and internal records – Monte-Carlo Hack
Vietnamese-speaking cybercriminals using PXA Stealer malware and Telegram bots targeted 4,000+ IPs stealing 200,000+ passwords globally for resale – Vietnamese Hackers Global Theft, PXA Stealer Campaign

Ransomware & Vulnerabilities

SonicWall devices under active attack from Akira ransomware exploiting a potential zero-day in SSLVPN, prompting urgent disablement recommendations – SonicWall SSLVPN Warning, SonicWall Zero-Day Investigation, Akira Ransomware Attacks, SonicWall VPN Ransomware
Summer 2025 spike in cyberattacks targeted healthcare, retail, and government sectors with ransomware groups Interlock, Rhysida, and Qilin exploiting SharePoint flaws – Summer 2025 Attack Spike
Crypto ATMs misuse for scams and money laundering rises, prompting US Treasury calls for tighter monitoring and regulation – Crypto ATM Warning

Nation-State & Espionage

TSMC in Taiwan fired and arrested engineers for stealing secrets on 2-nanometer chip tech, highlighting Chinese state-sponsored cyber espionage – TSMC Secrets Theft
Pro-Iran hacker groups increased cyber operations aligned with kinetic war actions during the Israel conflict, including propaganda, DDoS, and data theft by APTs like Tortoiseshell – Pro-Iran Cyber War
Ukraine’s HUR agency hacked Russian-occupied Crimean servers to expose data on abducted children, aiding repatriation efforts – Crimean Server Hack
Chinese, Russian, and North Korean actors weaponizing open-source software by covertly inserting backdoors, threatening global organizations – Open-Source Backdoors

Security Software & AI Threats

Multiple remote code execution vulnerabilities found in Nvidia’s Triton Inference Server threaten AI models and data in cloud environments – Nvidia Triton Vulnerabilities, NVIDIA Triton Code Execution
AI-assisted Vibe Coding democratizes programming but raises serious concerns over software security and quality assurance – Vibe Coding Security
Approov secured $6.7 million to advance mobile app and API security against tampering and unauthorized access – Approov Funding

Cybersecurity Events & Initiatives

Black Hat USA 2025 showcased cutting-edge AI-driven security tools and new cybersecurity product launches from leading vendors – Black Hat 2025 Highlights
Microsoft’s Zero Day Quest hacking contest in spring 2026 offers up to $5 million in rewards to encourage research on cloud and AI security – Zero Day Quest, Microsoft Prize Pool Increase

Security Guidance & Awareness

The UAE Cybersecurity Council warned about risks posed by unverified mobile apps, advocating for safe digital habits and permissions management – UAE App Warning
SonicWall urges disabling SSLVPN to mitigate zero-day attacks amid ransomware surges exploiting firewall vulnerabilities – SonicWall Disable VPN
Distinguishing misconfigurations from vulnerabilities is critical for SaaS security, as over-reliance on threat detection can overlook key risks – Misconfigurations vs Vulnerabilities
Modern SOCs improve alert efficiency by leveraging automation and real-time analysis tools like ANY.RUN to reduce alert chaos – SOC Alert Management

Software Updates & Privacy

Google patched six Android vulnerabilities in August 2025 update, including critical Qualcomm GPU flaws exploited in the wild – Android Qualcomm Patch, Android Security Update
Proton fixed a bug leaking TOTP secrets in logs of its iOS Authenticator app, enhancing multi-factor authentication privacy – Proton Authenticator Fix
Microsoft will disable voice features in outdated Office apps by January 2026, urging users to update for continued support – Microsoft Office Feature End

Scams & Fraud

A widespread AI-driven scam campaign named ClickTok uses 15,000 fake TikTok Shop domains to deliver malware and steal cryptocurrency via phishing and trojanized apps – ClickTok Scam Campaign

Cybersecurity News | Daily Recap – hendryadrian.com