DataBreachToday.com

Researchers Uncover Covert Chinese Access to US Service Provider Infrastructure
Mandiant said it has tracked a Chinese-linked espionage campaign using BRICKSTORM malware to quietly embed within U.S. infrastructure and service providers for over a year, exploiting appliance-level blind spots to maintain persistence, evade detection and potentially develop zero-day exploits.

The AI journey has only just begun in OT. Honeywell expects this situation to quickly shift in the next one to three years.

Effects of Friday Cyberattack Still Felt in European Airports
British police arrested Tuesday night a man in his forties suspected of causing days of flight cancellations and delays at several major European airports by hacking an aviation technology company. Impacted airports include London Heathrow, Brussels Airport and Berlin Brandenburg Airport, as well as Dublin Airport.

UK High Court Overturns Home Office Request to Extradite Diogo Santos Coelho
The U.K. High Court of Justice on Sep. 11 overturned a Home Office request to extradite a Portuguese national and an alleged administrator of RaidForums who is wanted in the United States on charges of device fraud and aggravated identity theft charges.

Secret Service Disrupts Network of Telecom Devices Targeting Government Officials
The Secret Service announced Tuesday a major takedown of a telecommunications threat targeting senior U.S. government officials in New York just as President Donald Trump was delivering remarks to global leaders at the United Nations General Assembly.

Iranian Hackers Impersonate Online Recruiters
Western Europeans working in aerospace, defense manufacturing or telecoms are receiving waves of emails from putative job recruiters who actually are Iranian state hackers ready to unleash a backdoor and an infostealer. Check Point tracks the threat actor as "Nimbus Manticore."

CS4CA Europe London Event Chair Wayne Harrop on OT Risk and Collaboration
Critical infrastructure providers are facing a volatile geopolitical landscape that could lead to cyberattacks and business disruptions. In advance of the CS4CA Europe London Conference (Sept. 30 - Oct. 1, 2025), conference chair Wayne Harrop shares key cyber strategies to counter enterprise threats.

What's Left After Raking In Millions From Other People's Blood, Sweat and Tears?
Things that continue to elude scientific observation: the Loch Ness Monster, Bigfoot and the ransomware hacker who voluntarily chose retirement. "There's no such thing as 'retirement' in cybercrime," despite some ransomware hackers dangling promises to leave the field.

Illumio's Raghu Nandakumara on Seeing the Broader Implications of Cyber Incidents
Seeing risk is not the same as understanding it. Raghu Nandakumara, vice president of industry strategy at Illumio, explains how organizations can move beyond mere visibility to actionable context for building stronger resilience.

Cloudflare's Christian Reilly on Practical AI Security, Extreme AI Implementation
Christian Reilly, field CTO at Cloudflare, shares how organizations can harness artificial intelligence technology while maintaining security. He warns against extreme AI approaches and emphasizes practical security measures for enterprise adoption.

Splx Says Hardened Prompts Lower Hallucinations But Security Gaps Persist
DeepSeek is touting its newest model as its entry into the "agent era" and performance benchmarks show a notable leap in capabilities. Security testing shows progress and persistent vulnerabilities in the Chinese company's upgraded V3.1 model. The raw model swore in response to testing prompts.

Now-Dormant Gang Claimed North Carolina, Florida Groups on Data Leak Site This Year
Two medical practices - in North Carolina and Florida - are notifying a total of more than 700,000 patients whose information was potentially stolen in separate hacks earlier this year. The now-dormant ransomware gang BianLian had claimed both organizations as victims on its dark website.

Sumitomo's Sawant on the Internal Risks of Autonomous AI Agents
Autonomous AI agents are shifting the nature of insider threats by operating at machine speed and mimicking human-level access and privilege. These synthetic entities can act independently within systems and carry out actions traditionally reserved for human users, introducing new security risks.

Juvenile Male Tied to Hack Attacks Against MGM Resorts and Caesars Entertainment
The net continues to close on suspected members of the notorious ransomware-wielding group called Scattered Spider, with Las Vegas police announcing the arrest of a teenage, juvenile male suspect tied to 2023 attacks that hit MGM Resorts and Caesars Entertainment.

CISOs, Regulators and Innovators Unite in New York to Safeguard Healthcare's Future
From discussions on health data explosion to the keynote on AI deployment, the Healthcare Security Summit: New York offered practical strategies to manage data risks, ensure continuity of patient care and prepare for a regulatory landscape that is rapidly reshaping cybersecurity priorities.

Speaker for Upcoming CS4CA Europe London Event Discusses OT Risk and Collaboration
IT and OT teams at critical infrastructure companies face the imperative of balancing digitalization and automation with cybersecurity. In advance of the CS4CA Europe London Conference (Sept. 30 - Oct. 1, 2025), event speaker Marta Majtenyi previews some of the major themes.

Major European Airports Continue to Face Service Disruptions Following Friday Hack
European cyber defenders classified as a ransomware attack an incident that disrupted several major European airports including London Heathrow resulting in flight cancelations and delays over the weekend and Monday.