Major Incidents or Breaches

  • WestJet, Canada’s second-largest airline, is investigating a cyberattack that has disrupted access to some internal systems. The company is responding to the breach and assessing the impact on its operations.

  • Spyware was discovered on the phones of two Italian journalists. Details on the specific spyware and attribution are not disclosed.

  • Ukraine claims to have hacked a Russian aircraft manufacturer. No further technical details were provided.

Newly Discovered Vulnerabilities

  • No newly discovered vulnerabilities reported in the provided headlines.

Notable Threat Actor Activity

  • The Anubis ransomware-as-a-service (RaaS) operation has incorporated a wiper module into its malware. The new module destroys targeted files beyond recovery, making data restoration impossible even if the ransom is paid.

Trends, Tools, or Tactics of Interest

  • Increased use of steganography in malicious Excel files has been observed. The technique is being used to conceal malicious content within seemingly benign documents.

  • Law enforcement has dismantled major infostealer infrastructure. Specific threat groups or malware families involved were not detailed.

Regulatory or Policy Developments Affecting the Security Industry

  • Robert F. Kennedy Jr. has directed the US Department of Health and Human Services (HHS) to share Medicaid data of undocumented migrants with the Department of Homeland Security (DHS). This development has potential implications for data privacy and inter-agency data sharing policies.