Infosecurity News
St. Paul’s Mayor Confirms Interlock Data Leak
Mayor of St. Paul, Minnesota, Melvin Carter, confirmed that employee data was published online by the Interlock ransomware gang
US Authorities Seize $1m from BlackSuit Ransomware Group
The US Department of Justice has announced the seizure of domains, servers and $1m in proceeds from the BlackSuit ransomware group
Microsoft Fixes Over 100 CVEs on August Patch Tuesday
Microsoft announced updates for 107 vulnerabilities on Patch Tuesday, including one zero-day
Hacker Alleges Russian Government Role in Kaseya Cyber-Attack
In a new investigation launched at DEFCON 33, Analyst1’s Jon DiMaggio revealed probable Russian government involvement in the Kaseya attack
GPT-5 Safeguards Bypassed Using Storytelling-Driven Jailbreak
A new technique has bypassed GPT-5’s safety systems via narrative-driven steering to elicit harmful output
29,000 Servers Remain Unpatched Against Microsoft Exchange Flaw
Over 29,000 Microsoft Exchange servers remain unpatched against a vulnerability that could allow attackers to seize control of entire domains in hybrid cloud environments
Home Office Phishing Scam Targets UK Immigration Sponsors
The sophisticated campaign aims to steal credentials of sponsor license holders to facilitate immigration fraud, extortion and other monetization schemes
Cybercriminals Exploit Low-Cost Initial Access Broker Market
Rapid7 found that threat actors are able to purchase low-cost initial access broker services, with many packages offering a variety of options
MITRE: Russian APT28's LameHug, a Pilot for Future AI Cyber-Attacks
While “fairly primitive”, APT28’s LameHug was a testbed for future AI-powered attacks, said two MITRE experts during Black Hat USA 2025
Financial Services Could Be Next in Line for ShinyHunters
New threat intelligence points to targeting of financial services and technology sectors by ShinyHunters group
Hackers Raid Dutch Lab, Stealing Data on 500,000 Patients
Threat actors have stolen data on at least half a million cancer screening patients
Connex Credit Union Breach Exposes 172,000 Members’ Data
A cyber-attack at Connex Credit Union has compromised data of 172,000 individuals, including sensitive information
New WinRAR Zero-Day Exploited by RomCom Hackers
A flaw in WinRAR, tracked as CVE-2025-8088, has been exploited by the RomCom group to deploy malware
Ghanaian Nationals Extradited for Roles in $100M Romance and Wire Fraud Ring
Four senior members of a Ghana-based criminal network have been indicted for stealing over $100 million through romance scams and BEC frau
Embargo Ransomware Gang Amasses $34.2m in Attack Proceeds
TRM Labs observed crypto payments worth $34.2m moved from victims addresses to a range of destinations likely associated with the group
Eight Countries Face EU Action Over NIS2 Deadline Failings
Eight European countries have yet to transpose NIS2 into law, exposing them to regulatory action
UK Red Teamers “Deeply Skeptical” of AI
Commercial red team experts believe AI’s current impact on cyber is overstated
#DEFCON: AI Cyber Challenge Winners Revealed in DARPA’s $4M Cybersecurity Showdown
The winners of the AI Cybersecurity Challenge (AIxCC), Team Atlanta, won a $4m prize
#BHUSA: CISA Execs ‘Hopeful’ for Extension of Cybersecurity Information Sharing Act
Leaders of the US Cybersecurity and Infrastructure Agency (CISA) pushed back on layoff concerns and highlighted new initiatives
Australian Regulator Sues Optus Over 2022 Data Breach
The Information Commissioner has applied for a civil penalty against Optus following the 2022 data breach that exposed the personal details of 9.5 million Australians
