Daily Recap, Iran is reportedly tracking US military phones as new macOS threats such as CrashStealer and ClickLock appear to steal credentials, while OkoBot reportedly delivered 20 payloads aimed at data and crypto theft. Shortly after disclosure, attackers began exploiting a SharePoint vulnerability, alongside reports of active abuse of Fortinet flaws, while Japan’s Nichirei experienced an operational disruption and Fairlife ransomware tied to Coca-Cola’s supplier halted US dairy production. #CrashStealer #ClickLock #OkoBot #SharePoint #Fortinet #Nichirei #CocaCola #Fairlife #TfL #ScatteredSpider
Threats & Malware
- Iran is reportedly tracking US military phones while new macOS threats like CrashStealer and ClickLock emerge to steal credentials, alongside OkoBot deploying 20 payloads for data and crypto theft. – CrashStealer
- A fresh SharePoint vulnerability was exploited soon after disclosure, joining reports of actively abused Fortinet flaws and broader attacker activity affecting enterprise infrastructure. – SharePoint Flaw, Fortinet Flaws
- Security researchers highlighted a n8n token-exchange flaw that could let attackers log in as users from another issuer, plus a Claude Chrome extension weakness that malicious extensions could abuse to trigger AI actions. – n8n Flaw, Claude Flaw
Ransomware & Business Disruption
- Japan‘s Nichirei said a cyberattack disrupted operations at its frozen-food business, while Coca-Cola confirmed a ransomware attack on Fairlife halted US dairy production. – Nichirei Attack, Fairlife Ransomware
- Scattered Spider members were sentenced in the UK over the £29 million TfL hack, underscoring the legal fallout from major ransomware and extortion campaigns. – TfL Sentence, Spider Jail
AI, Cloud & Security Ops
- Coverage of agentic AI warned that broken governance and new AI workflows are reshaping security, while analysts noted AI data centers are being built faster than they can be secured. – Agentic AI, AI Data Centers
- Security teams are rethinking operations as AI agents break traditional playbooks and as program audits show federal cyber-personnel rotation efforts saw little use. – AI Playbook, Cyber Rotation
- Beacon Security raised $13 million and Risk Ledger secured $32 million in funding to expand security-data and third-party risk platforms. – Beacon Funding, Risk Ledger
Law Enforcement & Policy
- U.S. authorities charged two people with laundering $43 million from investment fraud, while a Russian trio was indicted over bulletproof hosting tied to cybercrime. – $43M Laundering, Hosting Indictment
- A senator urged pushback on Canadian surveillance legislation, reflecting continued concern over lawful-access and privacy proposals. – Canada Surveillance
Enterprise & OT Risk
- Windows Server 2022 is approaching end of mainstream support in 90 days, while experts say legacy OT systems remain a major real-world security challenge. – Windows Server, OT Security