Welcome to the Triad Situation Report, your trusted source for the latest cybersecurity and compliance news. In this edition, we bring you crucial updates on emerging cyber threats, including data breaches, phishing schemes, and sophisticated malware campaigns. Stay informed and take proactive steps to protect your business from evolving cyber risks.
- New Android Malware Surge via Overlays, Virtualization Fraud & NFC Theft
A fresh wave of Android malware, dubbed AntiDot, has compromised over 3,775 devices through 273 campaigns. Sold via underground forums by threat actor LARVA398, AntiDot combines screen-recording overlays, SMS interception, accessibility abuse, and command-and-control capabilities.
Additionally, a revamped GodFather trojan now employs on-device virtualization to stealthily hijack banking apps and steal credentials. A related threat, SuperCard X, targets NFC-enabled cards to relay sensitive financial data—earlier spotted targeting users in Italy.
📌 Full analysis: New Android Malware Surge Hits Devices
- Russian APT29 Exploits Gmail “App Passwords” to Bypass 2FA
The Russian-linked APT29 campaign, tracked as UNC6293, used targeted social engineering from April to June 2025 to trick high-profile academics into sharing 16-digit Gmail appspecific passwords (ASPs).
Through rapport-building phishing emails posing as the U.S. State Department, attackers gained persistent mailbox access. A secondary phishing campaign also used Ukrainian lures and residential/VPS proxies .
📌 Full story: Russian APT29 Exploits Gmail App Passwords
- Viasat Breached by China’s “Salt Typhoon” Hackers
Satellite communications provider Viasat was breached earlier this year by China-aligned cyberespionage group Salt Typhoon, which also attacked major U.S. telecoms.
Though Viasat confirmed the breach, it states no customer impact has been detected. The incident is under investigation alongside U.S. federal agencies.
📌 Read more: Telecom giant Viasat breached by China’s Salt Typhoon hackers
- Microsoft Investigates OneDrive FileSearch Bug
Users across Windows, Android, iOS, and web are experiencing blank results when searching for existing files on OneDrive.
Microsoft has acknowledged the problem, is investigating the root cause, and provided a hotfix for iOS slowmotion videos. No workaround is currently available.
📌 More details: Microsoft investigates OneDrive bug that breaks file search
- Google Scales Up AIPowered Fraud Detection & Security in India
At the June 2025 “Google for India” summit, Google unveiled its Safety Charter, emphasizing expansion of AI-driven fraud detection and cybersecurity operations for its largest market outside the U.S.
With UPI fraud in India rising 85% YoY (~₹11 billion in losses), Google is launching a local Security Engineering Center (GSec) to collaborate with stakeholders and enhance AI safety, scam detection, Play Protect, and scam messaging.
📌 Full coverage: Google to scale up AI-powered fraud detection … in India
How Triad InfoSec Can Assist Your Business:
Navigating the complexities of cybersecurity compliance can be challenging. Triad InfoSec is dedicated to helping businesses prepare for CMMC audits, ensuring compliance, and optimizing cybersecurity strategies. Our services include:
- CMMC Audit Preparation: Guiding your organization through the necessary steps to achieve CMMC certification.
- MSP Partnerships: Collaborating with Managed Service Providers to ensure your business remains compliant while reducing cyber insurance premiums.
- Comprehensive Cybersecurity Solutions: Offering a range of services tailored to meet all your cybersecurity needs.
Partner with Triad InfoSec to secure your business’s future.
Stay vigilant and proactive in addressing cybersecurity challenges to protect your business and its valuable assets.
