Threat Intelligence Executive Report – Volume 2025, Number 5
This issue of the Counter Threat Unit’s high-level bimonthly report discusses noteworthy updates in the threat landscape during July and August
Similar Posts
Today’s reminder not to just repeat threat actors’ claims without checking or attempting to verify them first.
Bys sHere’s today’s reminder not to just repeat threat actors’ claims without checking or attempting to verify them first: Qilin added a company to their dark web leak site that they misidentified as Richardson Sales Performance. It wasn’t Richardson Sales Performance. What they appear to have hit, based on their proof of claims screenshot, was a…
Delete your DNA from 23andMe right now
Bys sGeoffrey A. Fowler writes: If you’re one of the 15 million people who shared your DNA with 23andMe, it’s time to delete your data. The genetic information company, best known for its saliva test kits, announced Sunday that it is headed to bankruptcy court to sell its assets. And 23andMe’s financial distress prompted California Attorney General Rob…
New Research: AI Is Already the #1 Data Exfiltration Channel in the Enterprise
Bys sFor years, security leaders have treated artificial intelligence as an “emerging” technology, something to keep an eye on but not yet mission-critical. A new Enterprise AI and SaaS Data Security Report by AI & Browser Security company LayerX proves just how outdated that mindset has become. Far from a future concern, AI is already the…
Lazarus Group Deploys Marstech1 JavaScript Implant in Targeted Developer Attacks
Bys sThe North Korean threat actor known as the Lazarus Group has been linked to a previously undocumented JavaScript implant named Marstech1 as part of limited targeted attacks against developers. The active operation has been dubbed Marstech Mayhem by SecurityScorecard, with the malware delivered by means of an open-source repository hosted on GitHub that’s associated with…
Google: Hackers target Salesforce accounts in data extortion attacks
Bys sBill Toulas reports: Google has observed hackers claiming to be the ShinyHunters extortion group conducting social engineering attacks against multi-national companies to steal data from organizations’ Salesforce platforms. According to Google’s Threat Intelligence Group (GTIG), which tracks the threat cluster as ‘UNC6040,’ the attacks target English-speaking employees with voice phishing attacks to trick them into…
Washington Attorney General Sues T-Mobile Over 2021 Data Breach
Bys sWashington State Attorney General Bob Ferguson has filed a lawsuit against T-Mobile over a 2021 data breach that impacted over 76 million consumers. The post Washington Attorney General Sues T-Mobile Over 2021 Data Breach appeared first on SecurityWeek.