CyberSecurity Updates

24 Sep

Feds Tie ‘Scattered Spider’ Duo to $115M in Ransoms

Data Breaches, Information, Insights

U.S. prosecutors last week levied criminal hacking charges against 19-year-old U.K. national Thalha Jubair for allegedly being a core member of Scattered Spider, a prolific cybercrime group blamed for extorting at least $115 million in ransom payments from victims. The charges came as Jubair and an alleged co-conspirator appeared in a London court to face accusations of hacking into and extorting several large U.K. retailers, the London transit system, and healthcare providers in the United…

Read More
23 Sep

Jaguar Land Rover Says Shutdown Will Continue Until at Least Oct 1 After Cyberattack

Information, News

Jaguar Land Rover said Tuesday that its production lines, shut down after a cyberattack in August, will remain at a halt until at least Oct. 1. Britain’s biggest automaker sent workers home from its factories in central and northwest England on Aug. 31. The shutdown has rippled through the U.K. auto industry. JLR, which is owned by India’s Tata Motors, employs more than 30,000 people, with its supply chain supporting tens of thousands more jobs.…

Read More
23 Sep

Widespread Supply Chain Compromise Impacting npm Ecosystem

Attacks, Insights, Malware

CISA is releasing this Alert to provide guidance in response to a widespread software supply chain compromise involving the world’s largest JavaScript registry, npmjs.com. A self-replicating worm—publicly known as “Shai-Hulud”—has compromised over 500 packages.[i] After gaining initial access, the malicious cyber actor deployed malware that scanned the environment for sensitive credentials. The cyber actor then targeted GitHub Personal Access Tokens (PATs) and application programming interface (API) keys for cloud services, including Amazon Web Services (AWS),…

Read More
23 Sep

CISA Releases Advisory on Lessons Learned from an Incident Response Engagement

Attacks, Insights, Malware

Today, CISA released a cybersecurity advisory detailing lessons learned from an incident response engagement following the detection of potential malicious activity identified through security alerts generated by the agency’s endpoint detection and response tool.  This advisory, CISA Shares Lessons Learned from an Incident Response Engagement, highlights takeaways that illuminate the urgent need for timely patching, comprehensive incident response planning, and proactive threat monitoring to mitigate risks from similar vulnerabilities. The advisory also outlines the tactics,…

Read More
22 Sep

Mycroft Raises $3.5 Million for AI-Powered Security and Compliance Platform

Information, News

Toronto, Canada-based company Mycroft emerged from stealth on Monday with a solution designed to help organizations manage and operate their security and IT stack with the aid of autonomous AI agents. Mycroft has raised $3.5 million in seed funding in a round led by Luge Capital, with participation from Brightspark Ventures, Graphite Ventures, Ripple Ventures, Developer Capital, Antler, BoxOne Ventures, and angel investors. The company has developed a platform that acts as an AI Security…

Read More
22 Sep

SonicWall Releases Advisory for Customers after Security Incident

Attacks, Insights, Malware

SonicWall released a security advisory to assist their customers with protecting systems impacted by the MySonicWall cloud backup file incident. SonicWall’s investigation found that a malicious actor performed a series of brute force techniques against their MySonicWall.com web portal to gain access to a subset of customers’ preference files stored in their cloud backups. While credentials within the files were encrypted, the files also included information that actors can use to gain access to customers’…

Read More
21 Sep

Airport Cyberattack Disrupts More Flights Across Europe

Information, News

Fallout from a cyberattack that disrupted check-in systems at several European airports extended into a second full day on Sunday, as passengers faced dozens of canceled and delayed flights — and the impact poised to worsen for at least one major airport. Brussels Airport, seemingly the hardest hit, said it asked airlines to cancel nearly 140 departing flights scheduled for Monday because a U.S.-based software system provider “is not yet able to deliver a new…

Read More
20 Sep

Gamaredon X Turla collab

Information

In this blogpost, we uncover the first known cases of collaboration between Gamaredon and Turla, in Ukraine. Key points of this blogpost: In February 2025, we discovered that the Gamaredon tool PteroGraphin was used to restart Turla’s Kazuar backdoor on a machine in Ukraine. In April and June 2025, we detected that Kazuar v2 was deployed using Gamaredon tools PteroOdd and PteroPaste. These discoveries lead us to believe with high confidence that Gamaredon is collaborating…

Read More
19 Sep

Small businesses, big targets: Protecting your business against ransomware

Information

Business Security Long known to be a sweet spot for cybercriminals, small businesses are more likely to be victimized by ransomware than large enterprises Phil Muncaster 18 Sep 2025  •  , 5 min. read Think your business is too small to be singled out for digital extortion? Think again. Indeed, if you’re an SMB owner, you’d better assume you’re a potential target. Verizon data reveals that, while ransomware comprises 39% of data breaches at large…

Read More
19 Sep

In Other News: 600k Hit by Healthcare Breaches, Major ShinyHunters Hacks, DeepSeek’s Coding Bias

Data Breaches, Information, News

SecurityWeek’s cybersecurity news roundup provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a valuable summary of stories that may not warrant an entire article, but are nonetheless important for a comprehensive understanding of the cybersecurity landscape. Each week, we curate and present a collection of noteworthy developments, ranging from the latest vulnerability discoveries and emerging attack techniques to significant policy changes and industry reports.  Here are this…

Read More