Jul 19, 2025

I just received some alarming news about a new phishing technique that is bypassing FIDO keys, allowing threat actors to access user accounts. This technique, used by a group known as PoisonSeed, has already been deployed in the wild. The method involves luring users to a phishing website, collecting their credentials, and then using a process called “Cross-Device Sign-In” to gain access to their accounts. This technique poses a significant risk as it targets gaps in online user authentication services, making previously unreachable accounts vulnerable to attacks.

In addition to the phishing threat, other concerning cybersecurity incidents have been reported, including a surveillance vendor exploiting an SS7 vulnerability, ransomware attacks on major companies like South Korea’s largest insurance provider and the United Australia Party, and leaks exposing sensitive data from organizations like the UK Ministry of Defense and the Seychelles Commercial Bank. These incidents highlight the pervasive nature of cyber threats and the need for robust security measures to protect sensitive information and systems.

Furthermore, the news also covers arrests and disruptions in the cybercrime world, such as the takedown of the NoName057 hacktivist group and the extradition of a member involved in Ryuk ransomware attacks. These actions demonstrate the ongoing efforts of law enforcement agencies to combat cyber threats and hold perpetrators accountable. However, the sheer scale and variety of cyber incidents indicate the complexity and evolving nature of cybersecurity challenges that require constant vigilance and proactive measures to safeguard against potential attacks.

The spread of malware, ransomware, and cryptojacking activities, as well as the exploitation of vulnerabilities in systems like Apache HTTP servers, further underscore the need for organizations and individuals to prioritize cybersecurity practices. With new threats emerging and existing ones evolving, it is crucial to stay informed, implement security best practices, and remain vigilant against potential cyber attacks. The interconnected and digital nature of our world makes it imperative to address cybersecurity issues promptly and effectively to protect sensitive data and maintain the integrity of digital infrastructure.

Stay Well!