Welcome to the Triad Situation Report, your trusted source for the latest cybersecurity and compliance news. In this edition, we bring you crucial updates on emerging cyber threats, including data breaches, phishing schemes, and sophisticated malware campaigns. Stay informed and take proactive steps to protect your business from evolving cyber risks.
UNC1549 Hacks 34 Devices in 11 Telecom Firms
Iranian-linked espionage group UNC1549 breached 34 devices across 11 telecom companies in the US, UK, UAE, France, and Canada. The attackers used fake LinkedIn job lures and phishing emails with a malicious ZIP file that delivered the MINIBIKE backdoor through DLL side-loading. The malware steals browser credentials, Outlook data, and sensitive files while hiding its command-and-control traffic through Azure services and using anti-sandboxing tricks to stay undetected.
Read more here
VC Giant Insight Partners Warns Thousands After Ransomware Breach
Venture capital powerhouse Insight Partners suffered a ransomware attack that began with sophisticated social engineering. Attackers exfiltrated sensitive data before encrypting servers, impacting over 12,000 individuals, including employees and partners. Exposed information includes personal data, banking details, and fund records. The firm is offering credit and identity monitoring while investigating the breach.
Read more here
Self-Propagating Supply Chain Attack Hits 187 npm Packages
A large-scale supply chain attack compromised 187 npm packages in a self-propagating campaign. Starting from the popular @ctrl/tinycolor package, the malicious code automatically infected other projects by injecting scripts that stole secrets and republished compromised versions. Legitimate tools like TruffleHog were abused to harvest credentials. Developers are urged to audit dependencies and rotate keys immediately.
Read more here
Jaguar Land Rover to Pause Production for Third Week Due to Cyberattack
Jaguar Land Rover (JLR) has halted vehicle production for a third consecutive week after a major cyberattack. Operations at multiple UK plants and some international sites remain suspended, with potential losses estimated in the tens of millions of pounds per week. The incident highlights how a cyber breach in IT systems can disrupt global manufacturing supply chains.
Read more here
ShadowLeak Zero-Click Flaw Leaks Gmail Data via ChatGPT Deep Research Agent
Researchers uncovered ShadowLeak, a zero-click vulnerability in OpenAI’s ChatGPT Deep Research agent that allowed attackers to extract Gmail data without user interaction. Hidden HTML/CSS prompt injections tricked the agent into exfiltrating emails in Base64 to attacker-controlled servers. OpenAI patched the flaw in August 2025, but the method could threaten other integrations like Dropbox or GitHub if not carefully controlled.
Read more here
How Triad InfoSec Can Assist Your Business:
Navigating the complexities of cybersecurity compliance can be challenging. Triad InfoSec is dedicated to helping businesses prepare for CMMC audits, ensuring compliance, and optimizing cybersecurity strategies. Our services include:
- CMMC Audit Preparation: Guiding your organization through the necessary steps to achieve CMMC certification.
- MSP Partnerships: Collaborating with Managed Service Providers to ensure your business remains compliant while reducing cyber insurance premiums.
- Comprehensive Cybersecurity Solutions: Offering a range of services tailored to meet all your cybersecurity needs.
Partner with Triad InfoSec to secure your business’s future
