{"id":9014,"date":"2025-11-23T03:13:12","date_gmt":"2025-11-23T03:13:12","guid":{"rendered":"https:\/\/techtrendfeed.com\/?p=9014"},"modified":"2025-11-23T03:13:12","modified_gmt":"2025-11-23T03:13:12","slug":"in-different-information-atm-jackpotting-whatsapp-nso-lawsuit-continues-cisa-hiring","status":"publish","type":"post","link":"https:\/\/techtrendfeed.com\/?p=9014","title":{"rendered":"In Different Information: ATM Jackpotting, WhatsApp-NSO Lawsuit Continues, CISA Hiring"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div>\n<p><strong>SecurityWeek\u2019s cybersecurity information roundup gives a concise compilation of noteworthy tales that may have slipped underneath the radar.<\/strong><\/p>\n<p>We offer a worthwhile abstract of tales that will not warrant a complete article, however are nonetheless necessary for a complete understanding of the cybersecurity panorama.<\/p>\n<p><a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.securityweek.com\/topics\/in-other-news\/\">Every week<\/a>, we curate and current a group of noteworthy developments, starting from the most recent vulnerability discoveries and rising assault strategies to vital coverage modifications and trade stories.\u00a0<\/p>\n<p><strong>Listed below are this week\u2019s tales:<\/strong><\/p>\n<p><strong>Surge in Palo Alto Networks scanning<\/strong><\/p>\n<p>Risk intelligence agency GreyNoise has seen a 40x <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.greynoise.io\/blog\/palo-alto-scanning-surges-90-day-high\">surge<\/a> in scanning aimed toward Palo Alto Networks GlobalProtect portals. The corporate instructed <em>SecurityWeek<\/em> that its investigation continues to be in progress, however it has noticed brute-force makes an attempt on the login path \u2018\/global-protect\/login.esp\u2019. Palo Alto Networks has not responded to a request for remark.\u00a0<\/p>\n<p><strong>Man pleads responsible to hacking former employer<\/strong><\/p>\n<p>Maxwell Schultz, a 35-year-old man from Ohio, has <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.justice.gov\/usao-sdtx\/pr\/former-contractor-admits-hacking-employer-retaliation-termination\">pleaded responsible<\/a> to costs associated to hacking into the community of his former employer. The hacker assault came about in 2021, after the unnamed firm terminated Schultz\u2019s employment in its IT division. In response to the Justice Division, Schultz, who had labored as a contractor, impersonated one other contractor to acquire login credentials. He then used the entry to reset 2,500 customers\u2019 passwords, locking the corporate\u2019s staff and contractors out of their computer systems and inflicting losses of greater than $860,000.<\/p>\n<div class=\"zox-post-ad-wrap\"><span class=\"zox-ad-label\">Commercial. Scroll to proceed studying.<\/span><\/div>\n<p><strong>NSO desires to overturn ruling that bans it from hacking WhatsApp<\/strong><\/p>\n<p>After a choose ordered it to <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.securityweek.com\/nso-ordered-to-stop-hacking-whatsapp-but-damages-cut-to-4-million\/\">cease hacking WhatsApp<\/a>, NSO Group filed an enchantment to <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/therecord.media\/nso-seeks-to-overturn-whatsapp-case\">overturn the ruling<\/a>. The adware maker managed to persuade a court docket final month to considerably <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.securityweek.com\/nso-ordered-to-stop-hacking-whatsapp-but-damages-cut-to-4-million\/\">cut back punitive damages<\/a> awarded by a jury and now it additionally desires to overturn the order blocking it from focusing on WhatsApp customers, arguing that the corporate will \u201cundergo irreparable hurt\u201d.<\/p>\n<p><strong>WEL Firms knowledge breach impacts over 120,000 folks<\/strong><\/p>\n<p>American trucking firm WEL Firms has <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.maine.gov\/agviewer\/content\/ag\/985235c7-cb95-4be2-8792-a1252b4f8318\/f88bb0ee-a9ad-47eb-92d8-7e0a47984cd6.html\">knowledgeable<\/a> the Maine Lawyer Normal {that a} knowledge breach suffered earlier this yr has impacted greater than 120,000 people. The hack was found in late January, and the RansomHub ransomware group took credit score for the assault roughly one month later.\u00a0<\/p>\n<p><strong>ATM jackpotting\u00a0<\/strong><\/p>\n<p><a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.securityweek.com\/?s=ATM+jackpotting\">Jackpotting<\/a> continues to be used to steal cash from ATMs. Police in Fairfax County, Virginia, are <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/fcpdnews.wordpress.com\/2025\/11\/17\/detectives-ask-for-the-publics-help-identifying-atm-jackpotting-suspects\/\">in search of a gaggle of suspects<\/a> who&#8217;re believed to have put in malware on an ATM to withdraw money with out inserting a card. The suspects stole $175,000.<\/p>\n<p><strong>PlushDaemon APT makes use of new community implant in assaults<\/strong><\/p>\n<p>ESET has recognized a brand new community implant that the Chinese language APT tracked as PlushDaemon has been deploying to carry out adversary-in-the-middle (AitM) assaults. Dubbed <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.welivesecurity.com\/en\/eset-research\/plushdaemon-compromises-network-devices-for-adversary-in-the-middle-attacks\/\">EdgeStepper<\/a>, the implant directs DNS queries to a malicious node to hijack all visitors from authentic infrastructure used for software program updates and serve malicious payloads. Lively since at the very least 2018, the APT has focused entities within the US, Taiwan, China, Hong Kong, New Zealand, and Cambodia.<\/p>\n<p><strong>Twitter hacker ordered to repay $5.4 million<\/strong><\/p>\n<p>Joseph James O\u2019Connor, a UK nationwide convicted over the 2020 <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.securityweek.com\/twitter-hack-24-hours-phishing-employees-hijacking-accounts\/\">hacking of high-profile Twitter accounts<\/a>, has been ordered by British authorities to repay $5.4 million in Bitcoin, <a rel=\"nofollow\" target=\"_blank\" href=\"http:\/\/www.reuters.com\/technology\/uk-twitter-hacker-who-breached-obama-accounts-ordered-repay-41-million-pounds-2025-11-17\/\">Reuters stories<\/a>. O\u2019Connor, 26, was sentenced to jail within the US in 2023, after being arrested in Spain in 2021. British investigators obtained a civil order to grab 42 Bitcoin and different cryptocurrency belongings linked to O\u2019Connor\u2019s actions.\u00a0<\/p>\n<p><strong>CISA plans aggressive hiring to strengthen defenses in opposition to China<\/strong><\/p>\n<p>The US cybersecurity company CISA is planning an aggressive hiring marketing campaign to replenish its ranks within the wake of a possible battle with China, Cybersecurity Dive <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.cybersecuritydive.com\/news\/cisa-hiring-workforce-strategy\/805733\/\">stories<\/a>. The company suffers from a 40% employees scarcity in key mission areas and is seeking to rent certified personnel by the top of fiscal yr 2026, a latest inner memo reportedly reads. CISA reportedly <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.securityweek.com\/in-other-news-crowdstrike-vulnerabilities-cisa-layoffs-mango-data-breach\/\">terminated<\/a> tons of of individuals throughout the latest authorities shutdown.\u00a0<\/p>\n<p><strong>AI second-order immediate injection assault<\/strong><\/p>\n<p>AppOmni <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/appomni.com\/ao-labs\/ai-agent-to-agent-discovery-prompt-injection\/\">particulars<\/a> how second-order immediate injection assaults can be utilized to persuade ServiceNow\u2019s Now Help AI brokers to recruit extra highly effective brokers to execute malicious duties, comparable to create, learn, replace, and delete (CRUD) actions on document knowledge and sending the contents of the information to exterior e-mail addresses. The conduct is meant, however ServiceNow has up to date its documentation.\u00a0<\/p>\n<p><strong>Politically delicate subjects set off DeepSeek AI to provide weak code<\/strong><\/p>\n<p>CrowdStrike found that China\u2019s DeepSeek-R1 produces code containing extra safety vulnerabilities in response to prompts that include subjects thought-about politically delicate by Beijing. The output of code containing extreme flaws would enhance by as much as 50%, <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.crowdstrike.com\/en-us\/blog\/crowdstrike-researchers-identify-hidden-vulnerabilities-ai-coded-software\/\">CrowdStrike says<\/a>. In any other case, the standard of DeepSeek\u2019s code output is akin to that of different AI assistants utilized by builders. Comparable <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.securityweek.com\/in-other-news-600k-hit-by-healthcare-breaches-major-shinyhunters-hacks-deepseeks-coding-bias\/\">DeepSeek coding bias<\/a> was reported by CrowdStrike in September.\u00a0<\/p>\n<p><strong>Associated<\/strong>: <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.securityweek.com\/in-other-news-deepwatch-layoffs-macos-vulnerability-amazon-ai-bug-bounty\/\">In Different Information: Deepwatch Layoffs, macOS Vulnerability, Amazon AI Bug Bounty<\/a><\/p>\n<p><strong>Associated<\/strong>: <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.securityweek.com\/in-other-news-controversial-ransomware-report-gootloader-returns-more-an0m-arrests\/\">In Different Information: Controversial Ransomware Report, Gootloader Returns, Extra AN0M Arrests<\/a>\n\t\t\t<\/p>\n<\/div>\n\n","protected":false},"excerpt":{"rendered":"<p>SecurityWeek\u2019s cybersecurity information roundup gives a concise compilation of noteworthy tales that may have slipped underneath the radar. We offer a worthwhile abstract of tales that will not warrant a complete article, however are nonetheless necessary for a complete understanding of the cybersecurity panorama. Every week, we curate and current a group of noteworthy developments, [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":9016,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[58],"tags":[6555,1359,3274,2217,6556,3252,121,6557],"class_list":["post-9014","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-atm","tag-cisa","tag-continues","tag-hiring","tag-jackpotting","tag-lawsuit","tag-news","tag-whatsappnso"],"_links":{"self":[{"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/posts\/9014","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=9014"}],"version-history":[{"count":1,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/posts\/9014\/revisions"}],"predecessor-version":[{"id":9015,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/posts\/9014\/revisions\/9015"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=\/wp\/v2\/media\/9016"}],"wp:attachment":[{"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=9014"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=9014"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/techtrendfeed.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=9014"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}<!-- This website is optimized by Airlift. Learn more: https://airlift.net. Template:. Learn more: https://airlift.net. Template: 69d9690a190636c2e0989534. Config Timestamp: 2026-04-10 21:18:02 UTC, Cached Timestamp: 2026-06-13 11:24:36 UTC -->