UPDATES
threat
UPDATES
CHINA RUSSIA
Microsoft has confirmed that three hacking groups tied to China exploited vulnerabilities in on-prem SharePoint servers. Cybersecurity experts are urging organisations globally to apply emergency patches for Microsoft SharePoint Servers after two critical new vulnerabilities, including a severe“ zero-day” exploit, were found to be actively targeted by cybercriminals. The flaws could grant attackers full control over compromised systems. A report by Bitsight that unpicks the vulnerabilities, stated:“ Compromises associated with CVE-2025- 53770 and CVE-2025-53771 have affected an estimated 75 – 85 + servers globally. The impacted sectors are reported to be Education, Finance, Government, Healthcare, Energy, Telecom and Enterprise Environments. There are an estimated 9,000 services at risk globally.”
FRANCE
Naval Group, the French state-owned defence firm, has launched an urgent investigation into a cybersecurity breach after a 1-terabyte dump of allegedly stolen sensitive data surfaced on a prominent hacking forum. The leaked data, published by a hacker known as‘ Neferpitou’, reportedly includes classified materials related to submarines and frigates, alongside combat management systems, technical documents and internal communications. Naval Group has described the incident as a“ destabilisation attempt” and a“ reputational attack,” denying any compromise to its internal systems or receiving ransom demands. However, the hacker initially issued a 72-hour deadline for contact before publicly releasing the full trove of data. The investigation is ongoing, with Naval Group collaborating with French cybersecurity and legal authorities to verify the origin and authenticity of the documents. This incident underscores the escalating threat to national defence industries from sophisticated cyber actors.
Russia’ s national airline, Aeroflot, has experienced significant disruption, including the cancellation of dozens of flights, following a claimed cyberattack. The pro-Ukrainian hacking group Silent Crow, collaborating with Belarusian group Cyberpartisans, asserted responsibility on Telegram, stating they“ completely destroyed” Aeroflot’ s IT systems. While the full extent of the damage is still being assessed and hacker claims are often exaggerated, the Russian prosecutor’ s office has confirmed a“ failure in the operation of the Aeroflot information system as a result of a hacker attack” and initiated a criminal investigation. This incident highlights the ongoing digital conflict tied to the war in Ukraine and the tangible impact cyber operations can have on civilian infrastructure, affecting tens of thousands of travellers and raising concerns within the Kremlin. Silent Crow has also threatened to release personal data of all Aeroflot passengers.
UNITED STATES
McDonald’ s has faced a significant data breach, exposing the personal information of approximately 64 million job applicants globally. The breach stemmed from fundamental security weaknesses within its McHire AI chatbot platform, developed by Paradox. ai. Security researchers Ian Carroll and Sam Curry discovered that the system, which uses an AI chatbot named“ Olivia” for preliminary job screening, was deployed with default credentials and inadequate access controls, allowing them to“ crack” the chatbot with a simple password. This incident highlights the inherent risks of poorly secured AI-powered platforms handling sensitive data and the critical need for rigorous security testing, particularly for widely used consumer-facing applications. The exposed information could potentially lead to phishing attempts or identity theft for millions of prospective employees.
WWW. INTELLIGENTCISO. COM 35