Welcome to the Triad Situation Report, your trusted source for the latest cybersecurity and compliance news. In this edition, we bring you crucial updates on emerging cyber threats, including data breaches, phishing schemes, and sophisticated malware campaigns. Stay informed and take proactive steps to protect your business from evolving cyber risks.
Android Banking Malware Surge via NFC Relays
A new wave of Android malware—including PhantomCard, SpyBanker, and KernelSU—is exploiting NFC relay attacks to target banking apps. Distributed through illusionary “antivirus” or customer service apps, these trojans collect banking credentials, SIM data, and more—and in some cases, even hijack calls by manipulating call-forward settings. The rise of contactless payments, especially in markets like the Philippines, has made these attacks particularly hard to detect and mitigate.
Read more here.
Microsoft Teams Enhances Security Against Malicious Links and Files
Microsoft is ramping up security in Teams by blocking harmful file types (like executables) and flagging malicious URLs in chats and channels. These enhancements are now part of the Microsoft 365 roadmap and aim to raise protection levels against malware and other file-based threats.
Read more here.
Pro-Russian Hackers Implicated in Norway Dam Sabotage
Norwegian authorities suspect that pro-Russian hackers remotely opened a dam’s outflow valve in April, releasing water for four hours. Though no damage or injuries were reported, the incident marks the first public attribution of suspected cyber sabotage of critical infrastructure in Europe to pro-Russian actors.
Read more here.
Bouygues Telecom Cyberattack Exposes 6.4 Million Customers
French telecom giant Bouygues Telecom confirmed a cyberattack that resulted in unauthorized access to personal data of 6.4 million customers. The breach exposed contact details, contractual information, civil status data, and—even for business clients—IBANs. The company has notified affected individuals and is strengthening security measures.
Read more here.
Google Breach via Salesforce: Customer Data Compromised
Google revealed that its Salesforce customer database was infiltrated by hackers—believed to be the ShinyHunters group—resulting in the theft of customer data tied to small and medium-sized businesses. The breach underscores the vulnerability of CRM systems to social engineering and external threats.
Read more here.
How Triad InfoSec Can Assist Your Business:
Navigating the complexities of cybersecurity compliance can be challenging. Triad InfoSec is dedicated to helping businesses prepare for CMMC audits, ensuring compliance, and optimizing cybersecurity strategies. Our services include:
- CMMC Audit Preparation: Guiding your organization through the necessary steps to achieve CMMC certification.
- MSP Partnerships: Collaborating with Managed Service Providers to ensure your business remains compliant while reducing cyber insurance premiums.
- Comprehensive Cybersecurity Solutions: Offering a range of services tailored to meet all your cybersecurity needs.
Partner with Triad InfoSec to secure your business’s future.
