Storm-2657 is targeting U.S. universities to hijack employee payroll accounts. At least 11 accounts across three universities were compromised to send phishing emails to nearly 6,000 recipients across 25 universities.

A suspected cyberattack has disrupted digital services at KrasAvia, a regional Russian airline, marking another incident in a growing trend of cyber operations targeting the Russian aviation sector.

Conor Fitzpatrick, the founder and lead administrator of the notorious cybercrime marketplace BreachForums, has been resentenced to three years in prison following a judicial review that overturned a controversial early release.

In Vietnam, the CIC was breached, with attackers claiming to have stolen 160 million records. In Panama, the Ministry of Economy and Finance (MEF) was targeted by the INC ransomware group, which claims to have exfiltrated 1.5 TB of data.

The ICO analyzed 215 insider threat breach reports from the education sector between January 2022 and August 2024 and identified a pattern of student involvement in cyber incidents. Approximately 57% of these breaches were caused by students.

SwissBorg, a European cryptocurrency platform, has announced that it will fully reimburse users affected by a recent cyber incident that resulted in the theft of approximately $41 million worth of Solana (SOL) tokens.

The DOJ is pursuing civil forfeiture of approximately $5 million in Bitcoin stolen through SIM swapping attacks. These attacks targeted five victims, exploiting mobile phone number hijacking to gain unauthorized access to cryptowallets.

The Alliance for Creativity and Entertainment (ACE) said it worked with Egyptian authorities to shut down the piracy network — which had more than 80 associated domains and logged more than 1.6 billion visits over the past year.

Federal civilian agencies have until September 25 to patch a vulnerability in popular content management system Sitecore after incident responders said they disrupted a recent attack involving the bug.

A newly identified threat actor group, GhostRedirector, has launched a global "SEO fraud-as-a-service" campaign targeting Windows servers to promote gambling websites. The campaign leverages two custom backdoors - Rungan and Gamshen.