Major Incidents or Breaches

  • The Swiss National Cyber Security Centre (NCSC) has issued a warning about an ongoing phishing campaign targeting iPhone owners. Attackers are sending text messages claiming a lost or stolen iPhone has been found, attempting to harvest Apple ID credentials.

Newly Discovered Vulnerabilities

  • Three vulnerabilities have been disclosed in the runC container runtime, which is widely used by Docker and Kubernetes. These flaws enable attackers to escape container isolation and gain access to the underlying host system.

Notable Threat Actor Activity

  • Phishing actors are actively leveraging lost device scenarios to target iPhone users, focusing on credential theft via SMS-based social engineering.

Trends, Tools, or Tactics of Interest

  • NAKIVO has released Backup & Replication v11.1, introducing expanded disaster recovery features, including real-time replication, improved Proxmox VE support, granular physical backups, and MSP Direct Connect for secure client connectivity.

Regulatory or Policy Developments Affecting the Security Industry

  • The U.S. government is reportedly preparing a ban on the sale of networking equipment from TP-Link Systems, a major supplier with significant market share. This potential action is in response to national security concerns.