FBI Warns: In-Person Data Theft by Silent Ransom Group — Dark Reading

The FBI has issued a warning about the Silent Ransom Group (SRG) targeting U.S.-based law firms with in-person data theft attacks. This extortion gang is known for sending operatives to physically insert USB drives into systems to steal sensitive data. The threat underscores the need for enhanced physical security measures and employee awareness training to prevent unauthorized access. Organizations should review their security policies and consider deploying endpoint protection solutions to detect and mitigate such threats.

CISA Mandates Immediate Patch for cPanel Plugin Vulnerability — BleepingComputer

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive requiring federal agencies to patch a critical vulnerability in a cPanel plugin within four days. The flaw, actively exploited in the wild, poses a significant risk to web hosting environments. Security teams should prioritize applying the patch to prevent potential exploitation and mitigate the risk of unauthorized access or data breaches.

GlassWorm Malware Infrastructure Disrupted — The Hacker News

CrowdStrike, in collaboration with Google and the Shadowserver Foundation, has successfully disrupted the infrastructure of the GlassWorm malware. This botnet targeted developers in software supply-chain attacks, leveraging resilient command-and-control (C2) servers. The takedown highlights the importance of monitoring supply chain components for malicious activity. Organizations should ensure their software supply chain is secure by implementing robust security measures and regularly auditing third-party dependencies.

• Malicious npm Package Stole Files From Claude AI User Directory via GitHub [The Hacker News]
• Latin American Cybercriminals Hoover Up Government Data [Dark Reading]
• GPU mining malware spreads via SEO poisoning, AI chatbots [BleepingComputer]
• Charter Communications confirms data breach, 40 million records apparently affected - TechRadar [Google News Security]
• Israeli researchers say Iran behind Los Angeles transit system attack - FOX 5 New York [Google News Security]