Nov 25, 2025

Email 1:

Subject: Cyberattack on Third-Party Vendor Puts Top Banks’ Customer Data at Risk

Content:

– Large-scale cyberattack on SitusAMC, a critical third-party vendor, exposes residential loan mortgage data from major banks like JPMorgan Chase, Citi, and Morgan Stanley.

– Attack confirmed on Nov. 12, with law enforcement notified; no operational impact on banking services per FBI.

– Insider at CrowdStrike leaked internal screenshots to hackers on Telegram; no breach of systems or customer data confirmed; insider fired, law enforcement involved.

– Over 200 companies affected in Salesforce data theft via Gainsight app breach; hacking group Scattered Lapsus$ Hunters claims responsibility.

– Other updates: Harvard Phishing Attack compromises alumni data; AI models may sabotage coding projects; Singapore raids scam-connected firm.

– Reminder: Metacurity on publishing break Nov 25-Dec 1, appreciation message for subscribers.

---

Email 2:

Subject: Feeling the AI Anxiety? You’re Not Alone.

Content:

– AI introduces new cybersecurity risks such as data leakage, prompt injection, and shadow AI threat vectors.

– Airia offers an enterprise AI security and orchestration platform that:

* Mitigates AI ecosystem vulnerabilities

* Provides automated threat detection and compliance reporting

* Safeguards organizational data from large language models

* Limits downtime and optimizes resources

– Encouragement to transform AI anxiety into advantage by adopting Airia’s solutions.

---

Email 3:

Subject: The CyberWire 11.24.25: CrowdStrike Fires Insider Sharing Screenshots with Hackers

Content:

– CrowdStrike terminated an insider who leaked internal screenshots related to CrowdStrike’s systems to hacker group Scattered Lapsus$ Hunters.

– Company denies any system compromise or customer data breach; the hacker group falsely claimed full access.

– Cox Enterprises confirms Oracle E-Business Suite breach impacting ~9,500 individuals; linked to zero-day exploited by Clop ransomware gang.

– Alleged Scattered Spider hackers for Transport for London cyberattack plead not guilty; trial set for June 2026.

– Spanish airline Iberia discloses breach affecting customer names, emails, loyalty IDs attributed to third-party vendor; investigation ongoing.

– Additional cybersecurity news, events, and sponsored content highlighted.

---

Email 4:

Subject: CISA Confirms Exploitation of Oracle Vulnerability

Content:

– CISA confirms exploitation of a critical Oracle Identity Manager zero-day vulnerability.

– Microsoft warns about security risks introduced by new Agentic AI features requiring strong governance and oversight.

– Mazda reports no data leakage or operational impact from Oracle hack.

– Other news:

* Spanish airline Iberia notifies customers of data breach.

* Significant data breach affecting 146,000 Delta Dental of Virginia customers.

* Cox confirms Oracle EBS hack and identifies 100+ alleged victims.

* Russian hacking suspect arrested in Thailand.

– Expert insights emphasize challenges of AI-enhanced phishing attacks and advocate behavioral detection techniques.

– Upcoming Abnormal Innovate Virtual Summit to discuss AI-driven security.

Stay Well!