End-of-Day report
Timeframe: Donnerstag 03-07-2025 18:00 - Freitag 04-07-2025 18:00
Handler: Alexander Riepl
Co-Handler: n/a
News
Ingram Micro suffers global outage as internal systems inaccessible
IT giant Ingram Micro is experiencing a global outage that is impacting its websites and internal systems, with customers concerned that it may be a cyberattack after the company remains silent on the cause of the issues.
https://www.bleepingcomputer.com/news/security/ingram-micro-suffers-global-outage-as-internal-systems-inaccessible/
Hacker leaks Telefónica data allegedly stolen in a new breach
A hacker is threatening to leak 106GB of data allegedly stolen from Spanish telecommunications company Telefónica in a breach that the company did not acknowledge.
https://www.bleepingcomputer.com/news/security/hacker-leaks-telef-nica-data-allegedly-stolen-in-a-new-breach/
Rechnungshof warnt: Cybersicherheit der Bundes-IT unzureichend
Viele Rechenzentren des Bundes verfügen wohl nicht einmal über eine angemessene Notstromversorgung. Und auch an Redundanzen fehlt es häufig.
https://www.golem.de/news/rechnungshof-warnt-cybersicherheit-der-bundes-it-unzureichend-2507-197750.html
The Breach Beyond the Runway: Cybercriminals Targeted Qantas Through a Trusted Partner
On July 3, 2025, Qantas confirmed in an update statement that a cyber incident had compromised data from one of its contact centers, following the detection of suspicious activity on June 30. The breach didn-t strike at the heart of ..
https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/the-breach-beyond-the-runway-cybercriminals-targeted-qantas-through-a-trusted-partner/
Europol Dismantles $540 Million Cryptocurrency Fraud Network, Arrests Five Suspects
Europol on Monday announced the takedown of a cryptocurrency investment fraud ring that laundered -460 million ($540 million) from more than 5,000 victims across the world.The international effort, codenamed Operation Borrelli, was carried out by the ..
https://thehackernews.com/2025/06/europol-dismantles-540-million.html
"FoxyWallet": Mehr als 40 bösartige Firefox-Add-ons entdeckt
IT-Sicherheitsforscher haben eine groß angelegte Kampagne mit bösartigen Firefox-Add-ons entdeckt. Die räumen Krypto-Wallets leer.
https://www.heise.de/news/FoxyWallet-Mehr-als-40-boesartige-Firefox-Add-ons-entdeckt-10474733.html
Pet microchip scams and data leaks in the UK
TL;DR We were recently on BBC Morning Live talking about issues with pet microchip data, helping some pet owners understand how they were being billed for services which they didn-t recall signing up for. There was so much more to this piece though, so we-ve written up our findings in more detail ..
https://www.pentestpartners.com/security-blog/pet-microchip-scams-and-data-leaks-in-the-uk/
Das Facebook-Konto versendet unerwünschte Nachrichten? Phishing-Alarm & Abo-Falle!
Kriminelle nutzen die Angst vor -Account Hijacking- - also der Übernahme eines Online-Kontos durch andere - für ihre Zwecke aus. Sie versenden E-Mail-Warnungen, laut denen über den Facebook-Account des Opfers -unerwünschte Nachrichten- versendet werden. Die Lösung des vermeintlichen Problems führt direkt in eine Abo-Falle.
https://www.watchlist-internet.at/news/facebook-nachrichten-phishing-abo/
A message from Bruce the mechanical shark
This Fourth of July, Bruce, the 25-foot mechanical shark from Jaws, shares how his saltwater struggles mirror the need for real-world cybersecurity stress testing.
https://blog.talosintelligence.com/a-message-from-bruce-the-mechanical-shark/
AI Dilemma: Emerging Tech as Cyber Risk Escalates
As AI adoption accelerates, businesses face mounting cyber threats-and urgent choices about secure implementation
https://www.trendmicro.com/en_us/research/25/g/ai-cyber-risks.html
Taking over 60k spyware user accounts with SQL injection
Recently I was looking through a database of known stalkerware services and found one I wasn-t familiar with: Catwatchful. It seemed to be a full-featured Android spy app, to actually be its own service as opposed to a millionth FlexiSpy reseller, and to offer a 3-day free trial. Aside from a boilerplate disclaimer to only use it with consent ..
https://ericdaigle.ca/posts/taking-over-60k-spyware-user-accounts/
Identifying Ransomware Final Stage activities with KQL Queries
When ransomware strikes, it doesn-t just encrypt files - it often wraps up with a series of stealthy moves meant to lock you out, cover tracks, and make recovery a nightmare. That-s why it-s so important to spot these final-stage activities before the damage is permanent.
https://detect.fyi/identifying-ransomware-final-stage-activities-with-kql-queries-00b3cf0ef31b