"Don't trust that app!"
Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents. Accessed on 07 September 2025, 1445 UTC.
Content and Source provided by email subscription from https://feedly.com.
https://feedly.com/i/subscription/feed%2Fhttps%3A%2F%2Fthecyberwire.com%2Ffeeds%2Frss.xml
Please check subscription link or scroll down to read your selections. Thanks for joining us today.
Russ Roberts (https://www.hawaiicybersecurityjournal.net).
63
Sep 5, 2025
1d
Today we are joined by Selena Larson, co-host of Only Malware in the Building and Staff Threat Researcher and Lead Intelligence Analysis and Strategy at Proofpoint, sharing their work on "Microsoft OAuth App Impersonation Campaign Leads to MFA Phishing." Proofpoint researchers have identified campaigns where threat actors use fake Microsoft OAuth apps to impersonate services like Adobe, Docu
2 TTPs
1d
Extortion group claims responsibility for Jaguar Land Rover attack. China's Salt Typhoon campaign may have impacted every American.
3 TTPs
1d
A cyberattack disrupts Bridgestone’s manufacturing operations. CISA warns of critical vulnerabilities in products used across multiple sectors. Additional cybersecurity firms confirm data exposure in the recent Salesforce–Salesloft Drift attack. A configuration vulnerability in Sitecore products leads to remote code execution. HHS promises stricter enforcement of healthcare information access rule
1d
Aron Anderson, Enterprise Security Manager at Adobe, joins Dave Bittner on the CyberWire Daily podcast for a sponsored Industry Voices. He shares lessons learned from Adobe’s zero trust journey, including how the company defines and implements the framework, common misconceptions, and practical advice for organizations beginning their own zero trust initiatives.
1d
APT28 malware uses Outlook for command-and-control. Texas sues PowerSchool over December 2024 breach.
Sep 4, 2025
2d
In this week's episode: HexStrike - the AI-powered hacking tool that can exploit zero-day vulnerabilities in minutes instead of months; Diverging expert opinions on AI consciousness and welfare; Switzerland's ambitious new open-source AI model "Apertus"; and, Taco Bell is experiencing indigestion after several embarrassing viral AI-powered drive-thru moments.
2d
Salt Typhoon marks China’s most ambitious campaign yet. A major Google outage hit Southeastern Europe. A critical zero-day flaw in FreePBX gets patched. Scattered Lapsus$ Hunters claim the Jaguar Land Rover hack. Researchers uncover a major evolution in the XWorm backdoor campaign. GhostRedirector is a new China-aligned threat actor. CISA adds a pair of TP-Link router flaws to its Known Exploited
Salt Typhoon hacks 200 US firms
2d
Extortion group claims responsibility for Jaguar Land Rover attack. XWorm RAT grows stealthier.
Sep 3, 2025
3d
AI agents are no longer a distant future concept. They have arrived, and the pace of their deployment is accelerating rapidly. In this episode of Threat Vector, David Moulton speaks with Nicole Nichols, Distinguished Engineer for Machine Learning Security at Palo Alto Networks. Nicole breaks down her new paper, Achieving a Secure AI Agent Ecosystem, where she outlines three foundational pillar
3d
This week, our hosts Dave Bittner, Joe Carrigan, and Maria Varmazis (also host of the T-Minus Space Daily show) are sharing the latest in social engineering scams, phishing schemes, and criminal exploits that are making headlines. This week’s fo
3d
Today we are joined by Elad Schindler, Product Manager of AU10TIX, sharing some details about their free assessment tool and readiness guide to help organizations navigate child safety age assurance compliance. Ben discusses some unintended consequences of age verification laws. Dave's got a look at the government’s recent acquisition of a stake in Intel.
3d
Jaguar Land Rover suffers a major cyberattack. ICE gains access to a powerful spyware tool. Researchers find Fancy Bear snuffling around a new Outlook backdoor. Cloudflare and Palo Alto Networks confirm compromised Salesforce data. A researcher discovers an unsecured Navy Federal Credit Union (NFCU) server. A new ClickFix scam spreads MetaStealer malware. Specialty healthcare providers struggle to
3d
CrowdStrike to acquire data intelligence firm Onum. Varonis acquires email security company SlashNext.
3d
Cloudflare impacted by Salesloft Drift breach. CISA names Nicholas Andersen as Executive Assistant Director of Cybersecurity.
Sep 2, 2025
4d
The Cyber Guild is built on community, helping people use technology to their advantage and ensuring that no one is left behind in the digital age. In this episode, Executive Director Debbie Sallis joins Gianna to share how that mission comes to life: through three targeted events helping people professionally develop in the cyber world. They host Uniting Women in Cyber, a flagship event that feel
4d
Researchers disrupt a cyber campaign by Russia’s Midnight Blizzard. The Salesloft Drift breach continues to ripple outward. WhatsApp patches a critical flaw in its iOS and Mac apps. A fake PDF editing tool delivers the TamperChef infostealer. A hacker finds crash data Tesla claimed not to have. Spain cancels a €10 million contract with Huawei. A fraudster bilks Baltimore for over $1.5 million. We’
4d
Salesloft Drift breach affects security firms. TamperedChef spreads via malicious PDF editor tools.
Sep 1, 2025
5d
Erez Liebermann, partner at Debevoise & Plimpton and a leading voice in cybersecurity and data privacy joins Ann on this week's episode of Afternoon Cyber Tea. Together, they unpack how legal and security teams can act as strategic partners, aligning regulatory compliance with business priorities while preparing for and responding to incidents. Erez offers actionable insights from real-world expe
5d
Welcome in! You’ve entered, Only Malware in the Building — but this time, it’s not just another episode. This is a special edition you won’t want to miss. For the first time, our hosts are together in-studio —
- Get link
- X
- Other Apps
- Get link
- X
- Other Apps
Comments
Post a Comment
Please leave a comment about our recent post.