Dark Reading.

"Marks and Spenser confirms customer data stolen in cyberattack."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 14 May 2025, 1538 UTC.

Content and Source:  "Dark Reading" via email subscription from https://feeedly.com.

https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.darkreading.com%2Frss%2Fall.xml

Please check email link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

 Dark Reading

168K followers35 articles per week

#security#tech

54

Today

Marks & Spencer Confirms Customer Data Stolen in Cyberattack

2 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 1h

•

M&S confirms customer data breach

The British retailer said no account passwords were compromised in last month's cyberattack, but the company will require customers to reset passwords "for extra peace of mind."

Congress Should Tackle Cyber Threats, Not Competition

by Greg Guice / 1h

Some members of Congress seem more intent on grabbing headlines than actually working to make America more cyber secure.

Orca Security Gets AI-Powered Remediation From Opus Deal

Orca Security acquires Opus for AI

•

by Jeffrey Schwartz / 2h

The acquisition will enhance Orca's CNAPP offering with autonomous vulnerability remediation and prevention technologies from Opus.

Yesterday

Hacktivists Make Little Impact During India-Pakistan Conflict

Hacktivist groups target India cyberattacks

•

by Robert Lemos, Contributing Writer / 12h

While hacktivists claimed more than 100 successful attacks against Indian government, education, and military targets, the attacks were overblown in most cases and often did not even happen.

Windows Zero-Day Bug Exploited for Browser-Led RCE

12 TTPs

•

by Tara Seals / 17h

Microsoft's May 2025 Patch Tuesday update also contains four other actively exploited zero-day security vulnerabilities, two publicly known bugs, and 12 critical patches.

Chinese Actor Hit Taiwanese Drone Makers, Supply Chains

13 TTPs

•

by Jai Vijayan, Contributing Writer / 18h

•

Earth Ammit disrupts drone supply chains

Tidrone concentrated on military entities and the satellite sector, using their associated service providers and ERP software to infect not just drones but all the entities that are part of their supply chains.

What Does EU's Bug Database Mean for Vulnerability Tracking?

CVE program funding at risk

•

by Alexander Culafi, Senior News Writer, Dark Reading / 19h

The EU cyber agency ENISA has launched its vulnerability database, the EUVD; security experts shared their thoughts regarding what this means for CVEs, as well as the larger conversation around how bugs are tracked.

CISA Warns of TeleMessage Vuln Despite Low CVSS Score

3 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 20h

Though the app claims to use end-to-end encryption, hackers have reportedly accessed archived data on the app's servers via a new vulnerability.

DeepSeek, Deep Research Mean Deep Changes for AI Security

by Liam Crilly / 1d

Why securing the inference chain is now the top priority for AI applications and infrastructure.

Google Agrees to Settle $1.375B 'Historic' Privacy Case Against Texas

Google settles Texas privacy lawsuits

•

by Kristina Beek, Associate Editor, Dark Reading / 1d

For years, Google has faced several legal battles over privacy and lost, though this one takes the cake for biggest ever settlement against a Big Tech firm.

Building Effective Security Programs Requires Strategy, Patience, and Clear Vision

by Arielle Waldman / 1d

Capital One executives share insights on how organizations should design their security programs, implement passwordless technologies, and reduce their attack surface.

Fortra Expands SSE Capabilities With Lookout's Cloud Security Business

Fortra acquires Lookout Cloud Security

•

1d

Fortra strengthens its endpoint-to-cloud security platform with the acquisition of Lookout's cloud application security broker, zero-trust network access, and secure Web gateway technologies.

May 12, 2025

North Korea's TA406 Targets Ukraine for Intel

14 TTPs

•

by Jai Vijayan, Contributing Writer / 1d

The threat group's goal is to help Pyongyang assess risk to its troops deployed in Ukraine and to figure out if Moscow might want more.

NSO Group's Legal Loss May Do Little to Curtail Spyware

WhatsApp wins $167M lawsuit against NSO

•

by Robert Lemos, Contributing Writer / 1d

The $168 million judgment against NSO Group underscores how citizens put little store in the spyware industry's justifications for circumventing security — but will it matter?

Attackers Lace Fake Generative AI Tools With 'Noodlophile' Malware

8 TTPs

•

by Alexander Culafi, Senior News Writer, Dark Reading / 1d

•

Noodlophile malware spreads via fake AI

Threat actors are scamming users by advertising legitimate-looking generative AI websites that, when visited, install credential-stealing malware onto the victim's computer.

4 Hackers Arrested After Millions Made in Global Botnet Business

FBI and Dutch police shut down botnet

•

by Kristina Beek, Associate Editor, Dark Reading / 1d

The cybercriminals infected older wireless Internet routers with Anyproxy and 5socks malware in order to reconfigure them — all without the users' knowledge.

Can Cybersecurity Keep Up In the AI Arms Race?

by Becky Bracken / 2d

New research shows China is quickly catching up with the US in AI innovation. Experts weigh in on what it means for cyber defenders.

Vulnerability Detection Tops Agentic AI at RSAC's Startup Competition

by Paul Shomo / 2d

Agentic-native startups threaten to reduce the zero-day problem to just a zero-hour issue. Of course, AI agents will accelerate offensive attacks as well.

New UK Security Guidelines Aim to Reshape Software Development

Software security code of practice

•

by Arielle Waldman / 2d

The voluntary Software Security Code of Practice is the latest initiative to come out of the United Kingdom to boost best practices in application security and software development.

May 9, 2025

After Pahalgam Attack, Hacktivists Unite Under #OpIndia

Hacktivist groups target India cyberattacks

•

by Nate Nelson, Contributing Writer / 4d

Cybercriminals are flocking to take part in the newly inflamed fight between India and Pakistan.

Rapid7 Launches Managed Detection & Response (MDR) for Enterprise

4d

[no content]

LockBit Ransomware Gang Hacked, Operations Data Leaked

4 TTPs

•

by Rob Wright / 4d

•

LockBit ransomware gang hacked database exposed

Exposed data from LockBit's affiliate panel includes Bitcoin addresses, private chats with victim organizations, and user information such as credentials.

Cyber Then & Now: Inside a 2-Decade Industry Evolution

by Tara Seals / 4d

On Dark Reading's 19-year anniversary, Editor-in-Chief Kelly Jackson Higgins stops by Informa TechTarget's RSAC 2025 Broadcast Alley studio to discuss how things have changed since the early days of breaking Windows and browsers, lingering challenges, and what's next beyond AI.

Commvault: Vulnerability Patch Works as Intended

CVE-2025-34028

•

by Jai Vijayan, Contributing Writer / 4d

The security researcher who questioned the effectiveness of a patch for recently disclosed bug in Commvault Command Center did not test patched version, the company says.

Insight Partners Data Breach: Bigger Impact Than Anticipated

Insight Partners data breach confirmed

•

by Kristina Beek, Associate Editor, Dark Reading / 4d

The investigation is ongoing, but the VC giant intends to inform affected customers on a rolling basis as more of the breach details come to light.

How Security Has Changed the Hacker Marketplace

by Isaac Evans / 5d

Your ultimate goal shouldn't be security perfection — it should be making exploitation of your organization unprofitable.

May 8, 2025

SonicWall Issues Patch for Exploit Chain in SMA Devices

by Nate Nelson, Contributing Writer / 5d

Three vulnerabilities in SMA 100 gateways could facilitate root RCE attacks, and one of the vulnerabilities has already been exploited in the wild.

Email-Based Attacks Top Cyber-Insurance Claims

Ransomware claims stabilize but costly

•

by Rob Wright / 5d

Cyber-insurance carrier Coalition said business email compromise and funds transfer fraud accounted for 60% of claims in 2024.

Operation PowerOFF Takes Down 9 DDoS-for-Hire Domains

2 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 5d

Four different countries, including the United States and Germany, were included in the latest international operation alongside Europol's support.

Life Without CVEs? It's Time to Act

CVE program funding crisis averted

•

by Keith Ibarguen / 5d

Despite all MITRE has done for cybersecurity, it is clear we should not wait 11 months to discuss the future of the CVE database. It's simply too important for that.

Countries Begin NATO's Locked Shields Cyber-Defense Exercise

NATO Locked Shields 2025 cyber exercise

•

by Arielle Waldman / 6d

The 15th annual event helps countries test and develop defenses against current and emerging cyber threats, including disinformation, quantum computing, and AI.

AI Agents Fail in Novel Ways, Put Businesses at Risk

by Robert Lemos, Contributing Writer / 6d

Microsoft researchers identify 10 new potential pitfalls for companies that are developing or deploying agentic AI systems, with failures potentially leading to the AI becoming a malicious insider.

May 7, 2025

'Lemon Sandstorm' Underscores Risks to Middle East Infrastructure

11 TTPs

•

by Robert Lemos, Contributing Writer / 6d

•

Lemon Sandstorm targets Middle East infrastructure

The Iranian state-backed group targeted the operational technology of a critical national infrastructure (CNI) network and persisted in its network for years, but ultimately failed.

'CoGUI' Phishing Kit Helps Chinese Hackers Target Japan

7 TTPs

•

by Nate Nelson, Contributing Writer / 6d

•

CoGUI phishing kit targets Japan

Japan is being peppered with an overwhelming volume of spam, thanks to a new platform popular across the East China Sea.

TikTok Fined €530 Million Over Chinese Access to EU Data

TikTok fined for EU data violations

•

by Becky Bracken / 6d

European regulators sent an unmistakable message about messing around with GDPR-protected data. How can organizations avoid similar compliance hassles?

Meta Wins Lawsuit Against Spyware Vendor NSO Group

2 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 6d

The spyware company must pay the tech giant $168 million in punitive and compensatory damages after a 2019 attack targeting 1,400 devices.

Play Ransomware Group Used Windows Zero-Day

14 TTPs

•

by Jai Vijayan, Contributing Writer / 6d

Previously, Microsoft reported that Storm-2460 had also used the privilege escalation bug to deploy ransomware on organizations in several countries.

'Bring Your Own Installer' Attack Targets SentinelOne EDR

2 TTPs

•

by Alexander Culafi, Senior News Writer, Dark Reading / 6d

•

BYOI bypasses SentinelOne EDR

Researchers from Aon's Stroz Friedberg incident response firm discovered a new attack type, known as "Bring Your Own Installer," targeting misconfigured SentinelOne EDR installs.

Infrastructure as Code: An IaC Guide to Cloud Security

by Jatin Mannepalli / 7d

IaC is powerful. It brings speed, scale, and structure to cloud infrastructure. But none of that matters if your security can't keep up.