Headlines
- Solana Web3.js Library Supply Chain Attack
- Investigation into Data Breach at Irish Utility Company
- EU’s First Report on Cybersecurity Maturity
- Deloitte UK Allegedly Hit by Cyberattack, 1TB Data Stolen
- Phishing Campaign Uses Corrupted Word Files to Evade Detection
- SpyLoan Malware Hits 8 Million Android Users Worldwide
- Sensitive Data from Alder Hey Breach Published Online
- Police Dismantle Major German-Language Criminal Marketplace
- International Sting Shuts Down Criminal Messaging Platform
- Massive Espionage Campaign Targets Global Telecoms
Solana Web3.js Library Supply Chain Attack
The popular Solana Web3.js library was compromised in a supply chain attack, with malicious versions 1.95.6 and 1.95.7 introduced to steal users’ cryptocurrency private keys.
This backdoor exploited key functions to exfiltrate sensitive data to attacker-controlled servers, enabling wallet and fund theft. Solana identified and removed the malicious versions promptly, releasing a secure update (v1.95.8).
Developers are urged to update immediately and rotate private keys to mitigate risk.
View SourceInvestigation into Data Breach at Irish Utility Company
A woman in her 20’s has been arrested in Dublin as part of an investigation into a suspected data breach at a national utility provider. The potential breach was flagged in 2023 by the Garda National Cyber Crime Bureau and referred to the Garda National Economic Crime Bureau.
Authorities are actively liaising with the affected company while investigations continue.
View SourceEU’s First Report on Cybersecurity Maturity
The EU Agency for Cybersecurity (ENISA) released its first cybersecurity maturity report under the NIS2 Directive, assessing vulnerabilities, capabilities, and gaps across member states.
Key findings include increased cybersecurity awareness among citisens but uneven sectoral readiness and critical supply chain risks.
The report highlights policy recommendations in crisis management, skills development, and harmonisation of cybersecurity efforts. Future priorities include addressing AI, post-quantum cryptography, and enhancing competitiveness through innovation.
View SourceDeloitte UK Allegedly Hit by Cyberattack, 1TB Data Stolen
Ransomware group Brain Cipher has claimed responsibility for a cyberattack on Deloitte UK, alleging the theft of over 1TB of data. Known for using LockBit-based ransomware, the group criticised Deloitte’s cybersecurity and has threatened to release stolen data.
Deloitte has not officially confirmed the breach.
View SourcePhishing Campaign Uses Corrupted Word Files to Evade Detection
A sophisticated phishing campaign leverages corrupted Microsoft Word files to bypass email security systems.
These files, disguised as HR-related documents, prompt users to recover “damaged” content that directs them to scan a QR code. The QR code links to phishing sites designed to steal Microsoft credentials.
The files, appearing harmless to antivirus tools, evade detection effectively. Users are advised to scrutinise unexpected emails with attachments and verify legitimacy before opening.
View SourceSpyLoan Malware Hits 8 Million Android Users Worldwide
Malicious Android apps disguised as loan services on Google Play have infected over 8 million users across multiple countries.
Known as SpyLoan, the malware collects sensitive data like private photos, contacts, and financial information, often leading to extortion and harassment. These apps exploit users’ desperation for quick loans, using intrusive permissions to exfiltrate data.
Although Google has removed many of these apps, others persist. Users are urged to review app permissions and download only from trusted developers.
View SourceSensitive Data from Alder Hey Breach Published Online
Alder Hey Children’s NHS Foundation Trust has suffered a significant data breach, with sensitive information leaked online and shared on social media.
The trust is collaborating with the National Crime Agency and partners to secure systems and assess the impact. The breach is unrelated to a concurrent cyberattack on Wirral University Teaching Hospital.
Despite the breach, Alder Hey services remain operational.
View SourcePolice Dismantle Major German-Language Criminal Marketplace
Authorities have shut down Deutschland im Deep Web 3, the largest German-speaking criminal marketplace, following a coordinated international operation.
The platform facilitated illegal trade in drugs, weapons, and fraudulent documents. German police arrested a 27-year-old operator and seized extensive evidence.
This takedown marks a significant step in combating cybercrime within darknet markets, disrupting illegal networks and their operations.
View SourceInternational Sting Shuts Down Criminal Messaging Platform
An international law enforcement operation dismantled an encrypted messaging service widely used by organised crime groups.
Europol coordinated the effort, disrupting criminal communications and enabling numerous arrests across various countries.
The takedown highlights the role of secure messaging platforms in illegal activities and law enforcement’s growing ability to penetrate these networks. Investigations continue as authorities analyse seized data.
View SourceMassive Espionage Campaign Targets Global Telecoms
The Salt Typhoon campaign, attributed to China, has breached at least eight U.S. telecom giants and impacted dozens of countries.
Active for 1–2 years, the attackers exploited weaknesses to access sensitive communications, focusing on high-value targets like government officials. Despite ongoing mitigation efforts, attackers remain in some systems, posing persistent risks.
View SourceIf you would like to discover how Secora Consulting can assist you in keeping your business secure, please get in touch by filling out the form below 👇
