Iranian Cyber Threats Intensify Against U.S. Defense and OT Networks, Warn Federal Agencies

U.S. Agencies Warn of Escalating Iranian Cyber Threats to Defense and Critical Infrastructure

Multiple U.S. cybersecurity and intelligence agencies have issued a joint advisory cautioning organizations about an uptick in malicious cyber activity tied to Iranian state-sponsored and affiliated actors.

FBI Alert: Scattered Spider's Evolving Cyber Tactics on Airlines

 

Scattered Spider Takes Flight: How Social Engineering Threatens the Skies

The FBI has issued a stark warning to the aviation sector: Scattered Spider, one of today's most dangerous cybercriminal groups, is escalating its attacks against airlines. Their weapon of choice? Not malware. Not zero-days. People.

Bank Sepah Cyberattack: Data Destruction Claims by Israeli Hackers

 

Predatory Sparrow Strikes Again: Suspected Israeli-Linked Hackers Claim Cyberattack on Iran’s Bank Sepah

A shadowy anti-Iranian hacking group, believed to have ties to Israel, has claimed responsibility for a destructive cyberattack targeting Iran’s state-owned Bank Sepah. The group, known as Gonjeshke Darande or “Predatory Sparrow,” alleged via social media on Tuesday that it had successfully infiltrated and destroyed critical data within the bank’s systems.

Report Reveals Earlier Chinese Cyberattack on U.S. Telecom Industry

 

Chinese Hackers Breached U.S. Telecom Company in 2023, Earlier Than Previously Reported

New findings reveal that Chinese state-sponsored hackers infiltrated an American telecommunications company in the summer of 2023—months earlier than officials had previously acknowledged. The breach, uncovered by corporate investigators, signals a deeper and earlier compromise of U.S. communications infrastructure than initially known.

DOJ Targets Malware Obfuscation: Four Crypting Domains Shut Down

 

Global Operation Dismantles Major Crypting Service Network Used by Cybercriminals

In a sweeping multinational law enforcement operation, authorities have dismantled a cybercrime syndicate responsible for enabling malware to bypass antivirus software and remain hidden from security defenses.

VMware Security Patch Includes NATO-Watched Zero-Day Exploit

https://www.securityweek.com

VMware Urges Immediate Updates for Critical Cloud and Virtualization Vulnerabilities

Broadcom-owned VMware issued urgent security advisories this week addressing seven high-impact vulnerabilities across its enterprise product suite, including VMware Cloud Foundation, ESXi, vCenter Server, Workstation, and Fusion. The company is strongly urging customers to patch immediately, as no temporary mitigations are available.

Dark Deals Disrupted: Telegram Blocks Massive Black Market Networks

 

Telegram Shuts Down Two Massive Digital Black Markets Tied to Cybercrime

In a significant blow to global cybercrime operations, Telegram has removed two sprawling digital black markets—Xinbi Guarantee and Huione Guarantee—from its platform, the company confirmed Thursday.