Lightnews — Scholar-powered news

TechNadu @technadu.com · 1d

🚨 Cyber Alert: Lumma Stealer Operators Doxxed
An underground exposure campaign revealed identities tied to Lumma Stealer (Water Kurita), leading to:
📉 Decline in malware activity
🔄 Customer migration to Vidar, StealC, Amadey
⚡ Rising underground competition and innovation

#CyberSecurity #Malware

TechNadu @technadu.com · 1d

🚨 Cyber Alert: Threat actor MarlboroRed claims to have breached Insurance Office of America (IOA), leaking 100K+ internal files.
⚠️ Sector: Financial / Insurance
📅 Observed: Oct 17, 2025
🕵️‍♂️ Status: Pending Verification
Is this real intel or just digital smoke?

#CyberAttack #Hackmanac #Infosec

TechNadu @technadu.com · 1d

🚨 Texas’ app store law faces a constitutional challenge.
CCIA says it creates a broad censorship regime, forcing users to verify age and link to parental accounts for nearly every app.

Is this protecting minors or policing the internet?

#TexasLaw #TechPolicy #OnlinePrivacy

TechNadu @technadu.com · 1d

🚨 ZeroDisco: Cisco devices infected via CVE-2025-20352
Threat actors exploit SNMP + old Telnet RCE to plant rootkits on 9400/9300/3750G switches.

Universal password includes “disco”; attacks hide config, monitor UDP, and bridge VLANs. Patch & audit immediately.
#Cisco #ZeroDisco #CVE2025 #Infosec

TechNadu @technadu.com · 1d

Read the full story:
🔗 www.technadu.com/from-harvard...

#CyberSecurity #Infosec #DataBreach #QuantumThreat #Phishing #TechNadu

From Harvard to Qantas: Data Breaches, State Threats, and Phishing Takedowns Mark the Week in Cybersecurity

Law enforcement arrests, insider threats, and global breach investigations shaped one of the year’s most active cyber weeks.

www.technadu.com

TechNadu @technadu.com · 1d

From Harvard to Qantas, data breaches and phishing takedowns defined this week’s cybersecurity landscape.
Rebecca Krauthamer: “The quantum threat... is now projected to be closer to five years.”

#CyberSecurity #DataBreach #Phishing #QuantumThreat #TechNadu

1

TechNadu @technadu.com · 1d

🚨 Nintendo Under Cyber Scrutiny
The hacker group Crimson Collective claims internal access. Nintendo confirms server tampering, denies personal or development data leaks.
💬 Should companies share every cyber intrusion or only when sensitive info is at risk?
#CyberSecurity #Infosec #ThreatIntel

1 2

TechNadu @technadu.com · 1d

🌐 Crypto & Cyber Threats This Week
- US seizes $15B in BTC from Cambodian gang leader
- Khmelnytskyi crypto gang taken down
- Hackers using EtherHiding malware in Ethereum...
- Cross-chain bridge hacks: ~$2.9B lost globally
- Malicious VSCode/OpenVSX extensions stealing code & mining crypto

TechNadu @technadu.com · 1d

🚨 Microsoft revoked over 200 fake certificates used by Vanilla Tempest to deliver Rhysida ransomware via fake Teams setup files
💡 Tip: Always verify software sources & avoid suspicious search engine ads
💬 How do you defend against fake installers & supply chain attacks?

#Ransomware #CyberSecurity

1

TechNadu @technadu.com · 1d

⚖️ France says they caught the leader of ShinyHunters. His lawyer says they didn’t.

The defense? Attacks kept happening after his arrest - but could that be the group’s best cover story yet?

What’s your theory - real arrest or elaborate deception? 👇

#ShinyHunters #CyberCrime #Hackers

TechNadu @technadu.com · 1d

Envoy Air - owned by American Airlines - confirms its Oracle E-Business Suite was compromised in a global hacking campaign linked to Clop ransomware.

The airline says no sensitive or customer data was exposed, but experts fear this Oracle EBS breach could have dozens more victims.

#CyberSecurity

TechNadu @technadu.com · 2d

UK denies “categorically” that China hacked its top-secret systems in 2020 - despite former adviser Dominic Cummings’ explosive claims
Ex-NCSC head Ciaran Martin says the networks were never breached.
Is this a cover-up or a clean record?

#CyberSecurity #China #UK #CyberEspionage #InfoSec #Hacking

TechNadu @technadu.com · 2d

🔓 40 Billion Records Exposed Online
A publicly accessible Netcore Cloud database contained 40 billion email & marketing records (13TB), including sensitive notifications and account verification emails.
💬 How can AI-powered marketing platforms improve security without compromising functionality?

1

TechNadu @technadu.com · 2d

Full report: www.technadu.com/evolving-phi...

What are your thoughts on the abuse of Task Scheduler for persistence and detection evasion? Are organizations ready for this level of service recovery abuse?
#CyberSecurity #Phishing #Malware #APT #HoldingHands #Fortinet #Deepwatch #ThreatIntel

Evolving Phishing Campaigns Deliver HoldingHands Malware across China, Taiwan, Japan, and Malaysia

FortiGuard Labs details a hacker group's evolving phishing campaigns delivering HoldingHands malware across China, Taiwan, Japan, and Malaysia.

www.technadu.com

TechNadu @technadu.com · 2d

Evolving phishing attacks spread across Asia, delivering HoldingHands malware through advanced evasion and Task Scheduler abuse.

“What concerns me most is the evolution from direct file-dropping to service recovery abuse.” - Certis Foster, Deepwatch

#CyberSecurity #Phishing #Malware #APT #InfoSec

1

TechNadu @technadu.com · 2d

Full story:
www.technadu.com/europol-dism...

💬 Do you think global cooperation is enough to stop CaaS networks before they rebuild? Let’s discuss.
#Europol #Cybercrime #CaaS #SIMBox #Cybersecurity #Phishing #Scams #Fraud

Europol Dismantles Major SIM Box Cybercrime-as-a-Service Network, Five Arrested

A major Europol operation has taken down a cybercrime service, leading to seven arrests and the seizure of a massive SIM-box fraud network used for phishing.

www.technadu.com

TechNadu @technadu.com · 2d

Europol’s “SIMCARTEL” operation dismantles a major Cybercrime-as-a-Service network.

⚠️ 7 arrests | 1,200 SIM boxes seized | 40,000 SIMs shut down

#Europol #CaaS #CyberSecurity #SIMBox #Phishing

1

TechNadu @technadu.com · 2d

Full interview: www.technadu.com/three-contro...

#AI #ShadowAI #PromptInjection #Cybersecurity

Three Controls To Curb Shadow AI, Impact of Indirect Prompt Injection, And Why Security Teams Need AI-Specific Governance

Diana Kelley explains prompt injection risks, AI data governance, and what makes staying ahead of adversaries a difficult endeavor.

www.technadu.com

1

TechNadu @technadu.com · 2d

Diana Kelley, CISO at Noma Security, breaks down indirect prompt injection, shadow AI, and how trust grows when success is shared.

#AI #ShadowAI #PromptInjection #Cybersecurity

1 1

TechNadu @technadu.com · 2d

Read: www.technadu.com/ring-to-part...

#Ring #FlockSafety #Cybersecurity #Privacy #Surveillance

Ring to Partner with Flock to Expand Law Enforcement Video Access, Reignites Privacy Concerns

Ring is partnering with Flock Safety, allowing law enforcement to more easily request home security footage from Ring camera owners, raising new privacy concerns.

www.technadu.com

1

TechNadu @technadu.com · 2d

Ring x Flock partnership lets police request Ring footage via Flock’s system - with consent.

Critics warn of expanded surveillance risks.

#Ring #FlockSafety #Privacy #Cybersecurity #Surveillance

1 1

TechNadu @technadu.com · 2d

🔐 PowerSchool Hacker Sentenced
19-year-old Matthew Lane sentenced to 4 years for hacking PowerSchool, exposing personal data of 60M students & 9M teachers, and demanding $2.9M ransom. Lane also owes $14M in restitution.

#PowerSchoolHack #DataBreach #CyberSecurity

TechNadu @technadu.com · 2d

Full details: www.technadu.com/cl0p-ransomw...

#CyberSecurity #Ransomware #AmericanAirlines #Infosec #Cl0p

Cl0p Ransomware Group Claims American Airlines Breach

Cl0p ransomware operators claim to have breached American Airlines, signaling a growing cyber threat to global transportation systems.

www.technadu.com

1

TechNadu @technadu.com · 2d

Cl0p ransomware claims it breached American Airlines, with potential passenger data exposure. Verification pending.

#CyberSecurity #Ransomware #Cl0p #AmericanAirlines #Infosec

1 1

TechNadu @technadu.com · 2d

Details here: www.technadu.com/hackers-brea...

What are your thoughts on vendor accountability in such cases? Comment below.
#CyberSecurity #Hackers #Canada #US #AirportSecurity #SupplyChainSecurity #Infosec #CyberAttack

Hackers Breach Airport PA Systems in Canada and U.S., Broadcast Political and Anti-Israel Messages

Four airports in Canada and the U.S. were targeted in a coordinated cyberattack where hackers compromised third-party software to broadcast unauthorized messages.

www.technadu.com