Cyber Security News Daily Recap

Cybersecurity News | Daily Recap [05 Nov 2025]

admin
Cybersecurity News | Daily Recap [05 Nov 2025]
Global authorities disrupted crypto-fraud rings and sanctioned North Korea‑linked actors, reflecting ongoing law‑enforcement pressure on financial cybercrime. The report also documents widespread vulnerabilities and breaches—from WordPress Post SMTP exploitation to supply‑chain incidents and high‑profile hacks affecting media, software suppliers, and mobile ecosystems. #SmudgedSerpent #ScatteredSpider #LAPSUS$ #ShinyHunters #BlackCat #NikkeiBreach #OpenOfficeDispute #AndroidMalware #ZipperDown #PostSMTP #ReactNative #BitLocker #DefenderApplicationGuard

Law Enforcement & Sanctions

  • European authorities dismantled credit-card fraud rings that stole €300 million from about 4.3 million cardholders in a global sweep – Credit Rings
  • Europol and Eurojust dismantled a crypto-fraud network that moved roughly €600 million in a coordinated international operation – Crypto Sweep
  • The U.S. Treasury sanctioned multiple North Korea-linked bankers and entities tied to cybercrime and IT‑worker scams, alleging laundering of about $12.7 million in crypto and related proceeds – NK Sanctions 1, NK Sanctions 2, NK Sanctions 3

Vulnerabilities & Exploits

  • A critical flaw in the WordPress Post SMTP plugin is actively exploited to hijack admin accounts and take over sites – Post SMTP, Post SMTP
  • CWP and Gladinet vulnerabilities were added to CISA’s KEV catalog after evidence of active exploitation, and CISA warned organizations to patch immediately – CWP Warn, KEV Additions
  • A critical flaw in a popular React Native NPM package exposes developers to supply-chain attacks and remote compromise – React Native
  • State-backed actors exploited ZipperDown and Android zero‑days to achieve one‑click email-client RCE and account takeovers, enabling broad espionage access – ZipperDown RCE
  • Microsoft’s October Windows updates triggered unexpected BitLocker recovery prompts for some users, causing boot disruptions – BitLocker Issue
  • Microsoft will remove Defender Application Guard from Office as part of a platform change that affects some threat‑containment functionality – Defender Removed

Breaches & Incidents

  • Media giant Nikkei reported a breach from a compromised Slack account affecting about 17,000 individuals – Nikkei Breach, Nikkei Breach
  • A data breach at a major Swedish software supplier impacted roughly 1.5 million people, raising supply‑chain data exposure concerns – Swedish Breach
  • Hackers disrupted a Polish loan platform, mobile payment system and other businesses in a coordinated compromise affecting payments and travel services – Poland Disruption
  • Apache OpenOffice disputed a ransomware gang’s claim of exfiltrated data after the group alleged a breach of the project – OpenOffice Dispute
  • Malicious Android apps on Google Play were downloaded about 42 million times before removal, highlighting ongoing mobile-supply-chain risks – Android Malware
  • A report found data brokers selling location information that could be used to track EU officials, raising privacy and physical-security alarms – Location Brokers
  • Transportation companies were targeted in hacks that enabled attackers to tamper with systems and steal cargo, showing the physical impact of cyber intrusions – Cargo Theft
  • Software supply‑chain attacks set record levels in October, underlining expanding risks to development ecosystems and downstream customers – Supply Chain

Threat Actors & Legal Actions

  • The mysterious SmudgedSerpent group targeted U.S. policy experts amid Iran–Israel tensions in espionage‑style intrusions – SmudgedSerpent
  • Reports describe a rare merger of cybercriminal groups—Scattered Spider, LAPSUS$ and ShinyHunters—pooling capabilities for larger operations – Threat Merger
  • U.S. prosecutors indicted alleged insiders for assisting BlackCat ransomware operations, highlighting insider‑threat prosecutions – BlackCat Indict
  • The DOJ accused U.S. ransomware negotiators of launching their own ransomware attacks during negotiation processes, prompting legal and ethical scrutiny – DOJ Accusation

Industry, Policy & Market Moves

  • India and Israel signed an MoU to strengthen defense and cybersecurity cooperation across technology and intelligence sharing – India-Israel MoU
  • China updated its Cybersecurity Law to address risks from AI and critical infrastructure, tightening regulatory oversight – China CSL
  • Apple rolled out iOS 26.1 and iPadOS 26.1 with critical security fixes to address multiple vulnerabilities – iOS 26.1
  • Security startup Daylight raised $33 million to expand its AI‑powered MDR platform amid growing demand for managed detection services – Daylight Raise
  • An advisory on practical steps explains how organizations can avoid SOC burnout, retain talent and improve alert handling efficiency – SOC Burnout

Cybersecurity News | Daily Recap – hendryadrian.com

SHARE THIS STORY

WhatsAppX (Twitter)TelegramBlueskyFacebookLinkedInThreadsEmailPrint