DataBreachToday.com

Attackers Hid Malware in Vector Image
Hackers behind a phishing campaign appear to have used artificial intelligence-generated code to hide malware behind a wall of overly complex and useless code, said Microsoft. "Not something a human would typically write from scratch due to its complexity, verbosity and lack of practical utility."

Recent Incidents Highlight Patient Record Cyber Risks Tied to Third-Party Suppliers
Vendor security risk has long been a source of pain for many healthcare providers. Veradigm - formerly Allscripts - and ApolloMD are among the latest software and services vendors reporting hacking incidents potentially triggering headaches for customers and their patients.

Passkeys to Strengthen Low-Friction Verification, Integrate With Facial Recognition
Unico has acquired San Francisco-based OwnID to enhance its identity offerings and grow its U.S. customer base. The passkey startup's low-friction login solution complements Unico's facial recognition tools and supports broader use cases with streamlined user experiences.

Researchers Uncover Covert Chinese Access to US Service Provider Infrastructure
Mandiant said it has tracked a Chinese-linked espionage campaign using BRICKSTORM malware to quietly embed within U.S. infrastructure and service providers for over a year, exploiting appliance-level blind spots to maintain persistence, evade detection and potentially develop zero-day exploits.

The AI journey has only just begun in OT. Honeywell expects this situation to quickly shift in the next one to three years.

Effects of Friday Cyberattack Still Felt in European Airports
British police arrested Tuesday night a man in his forties suspected of causing days of flight cancellations and delays at several major European airports by hacking an aviation technology company. Impacted airports include London Heathrow, Brussels Airport and Berlin Brandenburg Airport, as well as Dublin Airport.

UK High Court Overturns Home Office Request to Extradite Diogo Santos Coelho
The U.K. High Court of Justice on Sep. 11 overturned a Home Office request to extradite a Portuguese national and an alleged administrator of RaidForums who is wanted in the United States on charges of device fraud and aggravated identity theft charges.

Secret Service Disrupts Network of Telecom Devices Targeting Government Officials
The Secret Service announced Tuesday a major takedown of a telecommunications threat targeting senior U.S. government officials in New York just as President Donald Trump was delivering remarks to global leaders at the United Nations General Assembly.

Iranian Hackers Impersonate Online Recruiters
Western Europeans working in aerospace, defense manufacturing or telecoms are receiving waves of emails from putative job recruiters who actually are Iranian state hackers ready to unleash a backdoor and an infostealer. Check Point tracks the threat actor as "Nimbus Manticore."

CS4CA Europe London Event Chair Wayne Harrop on OT Risk and Collaboration
Critical infrastructure providers are facing a volatile geopolitical landscape that could lead to cyberattacks and business disruptions. In advance of the CS4CA Europe London Conference (Sept. 30 - Oct. 1, 2025), conference chair Wayne Harrop shares key cyber strategies to counter enterprise threats.

What's Left After Raking In Millions From Other People's Blood, Sweat and Tears?
Things that continue to elude scientific observation: the Loch Ness Monster, Bigfoot and the ransomware hacker who voluntarily chose retirement. "There's no such thing as 'retirement' in cybercrime," despite some ransomware hackers dangling promises to leave the field.

Illumio's Raghu Nandakumara on Seeing the Broader Implications of Cyber Incidents
Seeing risk is not the same as understanding it. Raghu Nandakumara, vice president of industry strategy at Illumio, explains how organizations can move beyond mere visibility to actionable context for building stronger resilience.

Cloudflare's Christian Reilly on Practical AI Security, Extreme AI Implementation
Christian Reilly, field CTO at Cloudflare, shares how organizations can harness artificial intelligence technology while maintaining security. He warns against extreme AI approaches and emphasizes practical security measures for enterprise adoption.

Splx Says Hardened Prompts Lower Hallucinations But Security Gaps Persist
DeepSeek is touting its newest model as its entry into the "agent era" and performance benchmarks show a notable leap in capabilities. Security testing shows progress and persistent vulnerabilities in the Chinese company's upgraded V3.1 model. The raw model swore in response to testing prompts.

Now-Dormant Gang Claimed North Carolina, Florida Groups on Data Leak Site This Year
Two medical practices - in North Carolina and Florida - are notifying a total of more than 700,000 patients whose information was potentially stolen in separate hacks earlier this year. The now-dormant ransomware gang BianLian had claimed both organizations as victims on its dark website.

Sumitomo's Sawant on the Internal Risks of Autonomous AI Agents
Autonomous AI agents are shifting the nature of insider threats by operating at machine speed and mimicking human-level access and privilege. These synthetic entities can act independently within systems and carry out actions traditionally reserved for human users, introducing new security risks.