TransUnion Data Breach Impacts 4.4 Million; SquareX Reveals Passkey Vulnerability
Key Takeaways
- TransUnion data breach exposed personal data of 4.4 million customers via third-party app.
- SquareX revealed passkey flaw threatening 15 billion accounts; criticism questions real-world impact.
- Salt Typhoon APT, backed by Chinese firms, breached 600 organizations globally, targeting critical sectors.
- Silver Fox APT exploits WatchDog driver to bypass Windows security, Check Point Research reports.
- Europe faces 3-4x higher ransomware rates; Safepay group active amid 179% attack surge.
Top Stories
TransUnion reports data breach impacting 4.4 million customers with personal data stolen
On August 28, 2025, TransUnion disclosed a breach affecting 4.4 million customers, exposing personal data via a third-party app. The breach highlights ongoing risks in data security within IT and information security sectors.
SquareX reveals passkey vulnerability risking 15 billion accounts; criticism questions attack scope
At DEF CON 33, SquareX disclosed a passkey registration flaw threatening 15 billion accounts, including banking and SaaS users. Criticism argues the attack requires malicious browser extensions, limiting real-world impact on passkey security.
International coalition links Salt Typhoon APT to Chinese firms behind global cyber-espionage
In 2025, Salt Typhoon APT, supported by three Chinese companies, breached 600 organizations worldwide targeting critical sectors. This underscores persistent state-sponsored cyber threats in IT security.
Silver Fox APT exploits WatchDog antimalware driver to evade Windows EDR and antivirus
On August 28, 2025, Check Point Research revealed Silver Fox APT uses vulnerable WatchDog drivers to bypass Windows 10/11 security, illustrating advanced malware evasion tactics.
Europe faces 3-4x higher ransomware rates; Safepay group active amid 179% attack surge
Security experts warn Europe's ransomware infections exceed US rates by 3-4 times, with Safepay ransomware group active during a 179% attack increase, stressing patching and preparedness.
Data Protection
FluentPro Backup secures project management tools against hidden vulnerabilities
The Hacker News highlights vulnerabilities in Trello and Asana, recommending FluentPro Backup for automated, secure cloud backups to protect project data.
InfoSec Insights
Lares simulates Scattered Spider APT attacks to enhance detection and cloud security
Lares replicates Scattered Spider's social engineering and credential theft tactics to identify security gaps and recommend improvements in MFA and cloud defenses.
Security Breaches
Flaw in VS Code Marketplace allows ransomware extensions demanding Shiba Inu token ransom
ReversingLabs discovered attackers reuse removed VS Code extension names to deploy ransomware encrypting files and demanding Shiba Inu tokens, exposing risks in software marketplaces.
Attackers use VPS infrastructure to compromise business email sessions and evade detection
On August 21, 2025, Darktrace reported attackers leveraging anonymous VPS hosting to hijack email sessions, bypassing security and manipulating inbox rules in business environments.
Tech Updates
Cisco and NVIDIA patch high-severity vulnerabilities affecting network and AI software
On August 27-28, 2025, Cisco fixed a DoS flaw in NX-OS switches; NVIDIA patched a code injection vulnerability in NeMo Curator, emphasizing ongoing IT security patching needs.
SUSE issues critical updates fixing multiple CVEs including HTTP/2 DoS vulnerability
In August 2025, SUSE released updates for Linux distributions addressing CVE-2025-8713/14/15 and CVE-2025-5115 DoS flaws, reinforcing Linux system security.
Threat Landscape
Studies reveal AI chatbots and browser extensions vulnerable to manipulation and prompt injection
On August 28, 2025, Rutgers and Anthropic research showed AI chatbots and browser extensions can be manipulated to bypass safeguards, posing new security challenges in AI-driven IT systems.
JSCoreRunner targets Mac browsers; RingReaper exploits Linux kernel for stealthy attacks
In late August 2025, JSCoreRunner malware hijacked Chrome on Macs via deceptive PDFs, while RingReaper exploited Linux io_uring for stealthy server attacks, highlighting evolving malware threats.
IBM X-Force tracks QuirkyLoader malware spreading diverse RAT families through spam
IBM X-Force identified QuirkyLoader as a multi-stage loader malware distributing RATs like Agent Tesla and FormBook via spam emails, highlighting persistent malware threats.
Email remains top attack vector with phishing, malware, and business email compromise risks
Cybersecurity reports emphasize email as a primary entry point for phishing, malware, and business email compromise, underscoring the need for advanced email security measures.