This week’s roundup highlights coordinated sanctions, high-profile arrests, major data exposures, and critical vulnerabilities shaping the threat landscape. Key items include OFAC’s designation and a Tether freeze, the arrest of a Scattered Spider suspect, ADT’s customer data leak, dangerous ICS and IDE flaws, and North Korean social engineering targeting crypto firms. #OFAC #ShinyHunters
Keypoints
- OFAC designated cryptocurrency wallets tied to Iran’s central bank and Tether froze roughly $344 million in USDT.
- Finnish authorities arrested 19-year-old Peter Stokes, a Scattered Spider affiliate, and the U.S. is seeking his extradition.
- ShinyHunters claimed an ADT breach that exposed millions of customer records from a Salesforce database.
- CISA warned of a critical, unpatchable GRASSMARLIN flaw that enables data exfiltration and lateral movement in industrial networks.
- North Korea’s BlueNoroff is luring crypto executives into fake virtual meetings to steal wallet credentials and capture data for deepfakes.